[FEATURE] Grab information from Snyk

[guibranco]

Description:

We need to create an integration with the Snyk API to retrieve security vulnerability information for each of our repositories. This integration should query the repositories table to get the list of repositories, call the Snyk API, and store the results in a new dedicated table. The table will contain only key information from Snyk (e.g., vulnerability count, severity levels), without the full detailed data, to keep the data lightweight and easy to query.

Objectives:

1. Create Snyk API Integration:

   • Develop a PHP integration class to interact with the Snyk API.

2. Query the Repositories Table:

   • Retrieve the list of repositories from the existing repositories table.

3. Call the Snyk API for Each Repository:

   • Use the new Snyk integration to fetch security vulnerability data for each repository.

4. Create a New Database Table:

   • Design a new table to store only the relevant security information fetched from the Snyk API.

5. Store Relevant Data:

   • Parse the Snyk API response and insert key data into the new table.

Tasks:

• [ ] Develop a PHP class to integrate with the Snyk API.
• [ ] Query the repositories table to fetch the list of repositories.
• [ ] Use the Snyk API to get security data for each repository.
• [ ] Create a new database table to store relevant data such as vulnerability count, severity levels, etc.
• [ ] Insert parsed Snyk data into the new table.
• [ ] Set up a process to periodically update the Snyk data for each repository.

Code Example:

Here’s a pseudo-code example of how the integration might work:

// Fetch repositories from the database
$repositories = $database->query('SELECT id, name FROM repositories');

// Instantiate Snyk integration class
$snyk = new SnykIntegration('YOUR_API_KEY');

foreach ($repositories as $repository) {
    // Call Snyk API for each repository
    $snykData = $snyk->fetchRepositoryVulnerabilities($repository['name']);

    // Parse relevant fields from the Snyk API response
    $vulnerabilityCount = $snykData['vulnerabilities']['count'];
    $criticalIssues = $snykData['vulnerabilities']['critical'];
    $highIssues = $snykData['vulnerabilities']['high'];

    // Store relevant data in the new table
    $database->query('INSERT INTO snyk_info (repository_id, vulnerability_count, critical_issues, high_issues) 
                      VALUES (?, ?, ?, ?)', 
                      [$repository['id'], $vulnerabilityCount, $criticalIssues, $highIssues]);
}

Acceptance Criteria:

• [ ] A PHP integration class with the Snyk API is created.
• [ ] The repositories table is queried to retrieve the list of repositories.
• [ ] Snyk data (vulnerability count, severity levels) is fetched and stored in a new table.
• [ ] The new table is created with relevant fields to store Snyk information.
• [ ] The process runs periodically to keep the data updated.

Additional Context:

By integrating with Snyk, we will be able to monitor security vulnerabilities across our repositories. This will help in identifying critical and high-severity issues in a lightweight manner and enable quick action based on the reported vulnerabilities.

[gitauto-ai[bot]]

Hey, I'm a bit lost here! Not sure which file I should be fixing. Could you give me a bit more to go on? Maybe add some details to the issue or drop a comment with some extra hints? Thanks!

Have feedback or need help? Feel free to email info@gitauto.ai.