feat(compliance): Loader and Execute (#1465)

2026-02-11 23:35:07 +00:00 · 2022-11-23 15:53:53 +01:00
parent 1a70a45805
commit b3e57ca3e5
515 changed files with 6018 additions and 5614 deletions
--- a/lib/check/checks_loader.py
+++ b/lib/check/checks_loader.py
@@ -1,6 +1,7 @@
 from config.config import groups_file
-from lib.check.check import (
+from lib.check.check import (  # load_checks_to_execute_from_compliance_framework,
    load_checks_to_execute_from_groups,
+    parse_checks_from_compliance_framework,
    parse_checks_from_file,
    parse_groups_from_file,
    recover_checks_from_provider,
@@ -8,18 +9,20 @@ from lib.check.check import (
 from lib.logger import logger


-#  Generate the list of checks to execute
-# test this function
+# Generate the list of checks to execute
+# PENDING Test for this function
 def load_checks_to_execute(
    bulk_checks_metadata: dict,
+    bulk_compliance_frameworks: dict,
    checks_file: str,
    check_list: list,
    service_list: list,
    group_list: list,
    severities: list,
+    compliance_frameworks: list,
    provider: str,
 ) -> set:
-
+    """Generate the list of checks to execute based on the cloud provider and input arguments specified"""
    checks_to_execute = set()

    # Handle if there are checks passed using -c/--checks
@@ -39,7 +42,7 @@ def load_checks_to_execute(
        try:
            checks_to_execute = parse_checks_from_file(checks_file, provider)
        except Exception as e:
-            logger.error(f"{e.__class__.__name__} -- {e}")
+            logger.error(f"{e.__class__.__name__}[{e.__traceback__.tb_lineno}] -- {e}")

    # Handle if there are services passed using -s/--services
    elif service_list:
@@ -65,7 +68,16 @@ def load_checks_to_execute(
                available_groups, group_list, provider
            )
        except Exception as e:
-            logger.error(f"{e.__class__.__name__} -- {e}")
+            logger.error(f"{e.__class__.__name__}[{e.__traceback__.tb_lineno}] -- {e}")
+
+    # Handle if there are compliance frameworks passed using --compliance
+    elif compliance_frameworks:
+        try:
+            checks_to_execute = parse_checks_from_compliance_framework(
+                compliance_frameworks, bulk_compliance_frameworks
+            )
+        except Exception as e:
+            logger.error(f"{e.__class__.__name__}[{e.__traceback__.tb_lineno}] -- {e}")

    # If there are no checks passed as argument
    else:
@@ -73,7 +85,7 @@ def load_checks_to_execute(
            # Get all check modules to run with the specific provider
            checks = recover_checks_from_provider(provider)
        except Exception as e:
-            logger.error(f"{e.__class__.__name__} -- {e}")
+            logger.error(f"{e.__class__.__name__}[{e.__traceback__.tb_lineno}] -- {e}")
        else:
            for check_name in checks:
                # Recover check name from import path (last part)