commit 2b50f1c5937af7bd152780b6bfb08e720b3e5d87
author Vladislav Naumov <vnaumov@mirantis.com> Thu Oct 14 18:50:56 2021 +0000
committer Gerrit Code Review <gerrit@172.18.228.131> Thu Oct 14 18:50:56 2021 +0000
tree 482584d7c6d69eca427f62a9bf95921ffc941674
parent 9d49332266916627d783af047697e1a21aca8fbe
parent 82305e945a62c8eec4e9509f233b4ae6558ae730

Merge "[fix][core] proper triggers naming for equinixmetalv2"

src/com/mirantis/mk/DockerImageScanner.groovy

diff --git a/src/com/mirantis/mk/DockerImageScanner.groovy b/src/com/mirantis/mk/DockerImageScanner.groovy
index 15bbefd..60a1332 100644
--- a/src/com/mirantis/mk/DockerImageScanner.groovy
+++ b/src/com/mirantis/mk/DockerImageScanner.groovy
@@ -5,7 +5,7 @@
 import groovy.json.JsonSlurper
 import groovy.json.JsonOutput
 
-def callREST (String uri, String auth,
+def callREST(String uri, String auth,
               String method = 'GET', String message = null) {
     String authEnc = auth.bytes.encodeBase64()
     def req = new URL(uri).openConnection()
@@ -25,7 +25,7 @@
     return [ 'responseCode': responseCode, 'responseText': responseText ]
 }
 
-def getTeam (String image = '') {
+def getTeam(String image = '') {
     def team_assignee = ''
     switch(image) {
         case ~/^openstack\/extra\/xrally-openstack\/.*$/:
@@ -57,7 +57,7 @@
     return team_assignee
 }
 
-def updateDictionary (String jira_issue_key, Map dict, String uri, String auth, String jira_user_id) {
+def updateDictionary(String jira_issue_key, Map dict, String uri, String auth, String jira_user_id) {
     def response = callREST("${uri}/${jira_issue_key}", auth)
     if ( response['responseCode'] == 200 ) {
         def issueJSON = new JsonSlurper().parseText(response["responseText"])
@@ -200,10 +200,25 @@
     return cveArr
 }
 
+def nvdCacheLookUp(Map dict, String cveId) {
+    if (dict.containsKey(cveId)) {
+        return dict[cveId]
+    }
+    return false
+}
+
+def nvdUpdateDictionary(Map dict, String cveId, List cveArr) {
+    if (!dict.containsKey(cveId)) {
+        dict[cveId] = cveArr
+    }
+    return dict
+}
+
 
 def reportJiraTickets(String reportFileContents, String jiraCredentialsID, String jiraUserID, String productName = '', String ignoreImageListFileContents = '[]', Integer retryTry = 0, String nvdApiUrl = '', jiraNamespace = 'PRODX', nvdNistGovCveUrl = 'https://nvd.nist.gov/vuln/detail/') {
 
     def dict = [:]
+    def nvdDict = [:]
 
     def common = new com.mirantis.mk.Common()
     def cred = common.getCredentialsById(jiraCredentialsID)
@@ -332,7 +347,13 @@
                             if (nvdApiUrl) {
                                 def cveId = cve.replaceAll(/(^\[|\|.*$)/, '')
                                 if (cveId.startsWith('CVE-')) {
-                                    jira_description_nvd_scoring = getNvdInfo(nvdApiUrl, cveId)
+                                    jira_description_nvd_scoring = nvdCacheLookUp(nvdDict, cveId)
+                                    if (!jira_description_nvd_scoring) {
+                                        jira_description_nvd_scoring = getNvdInfo(nvdApiUrl, cveId)
+                                        if (jira_description_nvd_scoring) {
+                                            nvdDict = nvdUpdateDictionary(nvdDict, cveId, jira_description_nvd_scoring)
+                                        }
+                                    }
                                     jira_description_nvd_scoring.each {
                                         jira_description += 'CVSS ' + it.join(' ') + '\n'
                                         // According to Vikram there will be no fixes for