automation-CheckWhitelist.yml

args:
- default: true
  description: Item to check
  name: item
  required: true
- defaultValue: Indicators Whitelist
  description: Name of whitelist to check
  name: whitelistname
comment: Check whether the given item is in the whitelist
commonfields:
  id: CheckWhitelist
  version: -1
deprecated: true
name: CheckWhitelist
outputs:
- contextPath: WhitelistCheck
  description: Returns a dictionary of indicators mapped to True if found in whitelist,
    or False otherwise.
runonce: false
script: |
  res = demisto.executeCommand("getList", {"listName": demisto.args()["whitelistname"]})
  if isError(res[0]):
      demisto.results(res)
  else:
      whitelist = res[0]['Contents']
      result = False
      answer = 'no'
      if demisto.args()['item'] in whitelist:
          answer = 'yes'
          result = True
      contextKey = "WhitelistCheck"
      contextValue = demisto.get(demisto.context(), contextKey)
      contextDic = { demisto.args()['item']: result }
      if contextValue:
          contextValue.update(contextDic)
          demisto.setContext(contextKey, contextValue)
      else:
          demisto.setContext(contextKey, contextDic)
      demisto.results(answer)
scripttarget: 0
system: true
tags:
- whitelist
type: python