CM-42035 - Add AI remediations for IaC and SAST (#120)

Author: MarshalX

CHANGELOG.md

@@ -2,6 +2,11 @@
 
 ## [Unreleased]
 
+## [v1.13.0]
+
+- Add AI remediations for IaC and SAST
+- Add code highlighting for Violation Cards
+
 ## [v1.12.0]
 
 - Add support for Swift Package Manager in SCA
@@ -119,6 +124,8 @@
 
 The first stable release with the support of Secrets, SCA, TreeView, Violation Card, and more.
 
+[v1.13.0]: https://github.com/cycodehq/vscode-extension/releases/tag/v1.13.0
+
 [v1.12.0]: https://github.com/cycodehq/vscode-extension/releases/tag/v1.12.0
 
 [v1.11.2]: https://github.com/cycodehq/vscode-extension/releases/tag/v1.11.2
@@ -163,4 +170,4 @@ The first stable release with the support of Secrets, SCA, TreeView, Violation C
 
 [v1.0.0]: https://github.com/cycodehq/vscode-extension/releases/tag/v1.0.0
 
-[Unreleased]: https://github.com/cycodehq/vscode-extension/compare/v1.12.0...HEAD
+[Unreleased]: https://github.com/cycodehq/vscode-extension/compare/v1.13.0...HEAD

package.json

@@ -1,7 +1,7 @@
 {
   "name": "cycode",
   "displayName": "Cycode",
-  "version": "1.12.0",
+  "version": "1.13.0",
   "publisher": "cycode",
   "description": "Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning.",
   "repository": {
@@ -295,6 +295,7 @@
     "semver": "7.5.4",
     "shelljs": "0.8.5",
     "showdown": "^2.1.0",
+    "showdown-highlight": "^3.1.0",
     "tsyringe": "^4.8.0"
   }
 }

src/cli/constants.ts

@@ -4,9 +4,9 @@ export enum CliCommands {
   Path = 'path',
   Scan = 'scan',
   Auth = 'auth',
-  AuthCheck = 'auth check',
   Ignore = 'ignore',
-  Version = 'version',
+  Status = 'status',
+  AiRemediation = 'ai_remediation',
 }
 
 export enum CommandParameters {

src/cli/models/ai-remediation-result.ts

@@ -0,0 +1,13 @@
+import { Type } from 'class-transformer';
+
+export class AiRemediationResultData {
+  remediation: string;
+  isFixAvailable: boolean;
+}
+
+export class AiRemediationResult {
+  result: boolean;
+  message: string;
+  @Type(() => AiRemediationResultData)
+  data?: AiRemediationResultData;
+}

src/cli/models/auth-check-result.ts

@@ -1,6 +1,7 @@
 import { ScanDetectionDetailsBase } from './scan-detection-details-base';
 
 export abstract class DetectionBase {
+  public abstract id: string;
   public abstract severity: string;
   public abstract detectionDetails: ScanDetectionDetailsBase;
 

src/cli/models/scan-result/detection-base.ts

@@ -3,6 +3,7 @@ import { Type } from 'class-transformer';
 import { DetectionBase } from '../detection-base';
 
 export class IacDetection extends DetectionBase {
+  id: string;
   message: string;
   @Type(() => IacDetectionDetails)
   detectionDetails: IacDetectionDetails;

src/cli/models/scan-result/iac/iac-detection.ts

@@ -3,6 +3,7 @@ import { SastDetectionDetails } from './sast-detection-details';
 import { DetectionBase } from '../detection-base';
 
 export class SastDetection extends DetectionBase {
+  id: string;
   message: string;
   @Type(() => SastDetectionDetails)
   detectionDetails: SastDetectionDetails;

src/cli/models/scan-result/sast/sast-detection.ts

@@ -3,6 +3,7 @@ import { DetectionBase } from '../detection-base';
 import { Type } from 'class-transformer';
 
 export class ScaDetection extends DetectionBase {
+  id: string;
   message: string;
   @Type(() => ScaDetectionDetails)
   detectionDetails: ScaDetectionDetails;

src/cli/models/scan-result/sca/sca-detection.ts

@@ -5,6 +5,7 @@ import { Type } from 'class-transformer';
 const IDE_ENTRY_LINE_NUMBER = 1;
 
 export class SecretDetection extends DetectionBase {
+  id: string;
   message: string;
 
   @Type(() => SecretDetectionDetails)