Design the structure of the tables in the database that will store the information generated by the SATs about uc-masters-software-vulnerabilities HOT 7 CLOSED

@joseadp

from uc-masters-software-vulnerabilities.

@joaohenggeler , let me know when the adjustments that we discussed in our last meeting are performed, so I can review it.

from uc-masters-software-vulnerabilities.

@joseadp I updated the ER diagram based on the feedback of last week's meeting and after reading CppCheck and Flawfinder's documentation.

from uc-masters-software-vulnerabilities.

@joaohenggeler it seems good. Have you created the script to generate the tables?

from uc-masters-software-vulnerabilities.

@joseadp I created a script called "add-sat-results.py" to generate the tables and import some test data. While adding support for Flawfinder, I noticed that it would be useful to add an extra table between the 'rule' and 'cwe_info' so we could store multiple CWEs per Rule. I updated the ER diagram to reflect this by adding a new table called 'rule_cwe_info'. The "add-sat-results.py" script was also updated to take this into account. Note that, for testing purposes, this script currently only reads the Cppcheck Excel file I was sent, and the CSV files from Flawfinder (though it can be easily updated to support Cppcheck's CSV files).

from uc-masters-software-vulnerabilities.

I will validate this issue.

from uc-masters-software-vulnerabilities.

@joaohenggeler , this seems to be working. I couldn't run as the "database.config" file was not available. (https://github.com/joaohenggeler/estagio-software-vulnerabilities-2020-2021/blob/e3e552a7807d71ec1a3ad9f8f87b02de2106defc/scripts/estagio.py#L7)
Closing this issue for now.

from uc-masters-software-vulnerabilities.