Replace nmap ScanType and ParseDefinition instaltion with helm

J12934 · J12934 · commit 969a255e7867 · 2020-04-03T00:19:14.000+02:00
This will also ensure that the integrations tests are using the parser-nmap image build for this commit
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -241,7 +241,7 @@ jobs:
           npm ci
       - name: "Nmap Integration Tests"
         run: | 
-          kubectl --namespace integration-tests apply -f integrations/nmap/nmap-scan-type.yaml -f integrations/nmap/nmap-parse-definition.yaml
+          helm -n integration-tests install nmap ./integrations/nmap/ --set="parserImage.tag=sha-$(git rev-parse --short HEAD)"
           cd tests/integration/
           npx jest --ci --color nmap
       - name: "Inspect Operator"
diff --git a/README.md b/README.md
@@ -63,7 +63,7 @@ helm install persistence-elastic ./persistence/persistence-elastic/
 # Deploy definitions for the integrated scanners
 kubectl apply -f integrations/amass/amass-scan-type.yaml -f integrations/amass/amass-parse-definition.yaml
 kubectl apply -f integrations/nikto/nikto-scan-type.yaml -f integrations/nikto/nikto-parse-definition.yaml
-kubectl apply -f integrations/nmap/nmap-scan-type.yaml -f integrations/nmap/nmap-parse-definition.yaml
+helm install nmap ./integrations/nmap/
 kubectl apply -f integrations/ssh_scan/ssh-scan-scan-type.yaml -f integrations/ssh_scan/ssh-scan-parse-definition.yaml
 kubectl apply -f integrations/sslyze/sslyze-scan-type.yaml -f integrations/sslyze/sslyze-parse-definition.yaml
 kubectl apply -f integrations/zap/zap-scan-type.yaml -f integrations/zap/zap-parse-definition.yaml
diff --git a/integrations/nmap/.helmignore b/integrations/nmap/.helmignore
@@ -0,0 +1,4 @@
+.DS_Store
+
+parser/
+scanner/
diff --git a/integrations/nmap/Chart.yaml b/integrations/nmap/Chart.yaml
@@ -0,0 +1,20 @@
+apiVersion: v2
+name: nmap
+description: A Helm chart for the NMAP security Scanner that integrates with the secureCodeBox.
+
+type: application
+version: 0.1.0
+appVersion: 0.1.0
+
+keywords:
+- security
+- nmap
+- scanner
+- secureCodeBox
+home: https://www.securecodebox.io/scanner/Nmap
+icon: https://www.securecodebox.io/integrationIcons/Nmap.svg
+sources:
+- https://github.com/secureCodeBox/scanner-infrastructure-nmap
+maintainers:
+- name: iteratec GmbH
+  email: security@iteratec.com
diff --git a/integrations/nmap/templates/nmap-parse-definition.yaml b/integrations/nmap/templates/nmap-parse-definition.yaml
@@ -4,4 +4,4 @@ metadata:
   name: "nmap-xml"
 spec:
   handlesResultsType: nmap-xml
-  image: scbexperimental/parser-nmap
+  image: "{{ .Values.parserImage.registry }}/{{ .Values.parserImage.repository }}:{{ .Values.parserImage.tag }}"
diff --git a/integrations/nmap/templates/nmap-scan-type.yaml b/integrations/nmap/templates/nmap-scan-type.yaml
diff --git a/integrations/nmap/values.yaml b/integrations/nmap/values.yaml
@@ -0,0 +1,4 @@
+parserImage:
+  registry: docker.io
+  repository: scbexperimental/parser-nmap
+  tag: latest

-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +.DS_Store
++
 +parser/
 +scanner/