Add OctoLint SHA-1 certificate check

Author: harrisonmeister

domain/requests/github/copilot_request_context.py

@@ -109,6 +109,9 @@
     octolint_duplicate_variables_wrapper,
 )
 from domain.tools.wrapper.octolint_empty_projects import octolint_empty_projects_wrapper
+from domain.tools.wrapper.octolint_sha1_certificates import (
+    octolint_sha1_certificates_wrapper,
+)
 from domain.tools.wrapper.octolint_unhealthy_targets import (
     octolint_unhealthy_targets_wrapper,
 )
@@ -982,6 +985,19 @@ def build_form_tools(query, req: func.HttpRequest):
                     log_query,
                 ),
             ),
+            FunctionDefinition(
+                octolint_sha1_certificates_wrapper(
+                    octolint_callback(
+                        lambda: get_api_key_and_url(req),
+                        get_github_user_from_form(req),
+                        query,
+                        "OctoLintSha1Certificates",
+                        get_redirections(req),
+                        get_redirections_api_key(req),
+                    ),
+                    log_query,
+                ),
+            ),
             FunctionDefinition(
                 create_feed_wrapper(
                     query,

domain/tools/wrapper/octolint_sha1_certificates.py

@@ -0,0 +1,23 @@
+def octolint_sha1_certificates_wrapper(callback, logging):
+    def octolint_sha1_certificates(space=None, project=None, **kwargs):
+        """
+        Checks for uses of SHA-1 certificates for deployment targets, workers or the Octopus Server itself.
+        Example prompts include:
+        * Check for SHA-1 certificate usage in the space "MySpace".
+        * Find SHA1 certificates in the space "MySpace" to improve security.
+
+        Args:
+        space: The name of the space to run the check in.
+        project: The name of the project to run the check in.
+        """
+
+        if logging:
+            logging("Enter:", "octolint_sha1_certificates")
+
+        for key, value in kwargs.items():
+            if logging:
+                logging(f"Unexpected Key: {key}", "Value: {value}")
+
+        return callback(space, project)
+
+    return octolint_sha1_certificates