Typo fixes, CSS bug fixes, course suggestions #229
Description
Here is a list of inconsistencies I found:
- The table under "Defaults" has a table row that is green/transparent to the background component, but the other table rows are opaque and light gray. Url: https://mitre.github.io/saf-training/courses/user/06.html#_6-2-the-inspec-command-formula
- Inconsistent acronym spelling: "saf hardening page" should say "SAF hardening page" ("SAF" is previously used in that section). Url: https://mitre.github.io/saf-training/courses/user/10.html#_10-1-find-the-hardening-content
- Unclear as to where
tree nginxis executed. Url: https://mitre.github.io/saf-training/courses/beginner/02.html#inspec-profile-structure - "For our next control we require specific modules" doesn't end with a period- was there supposed to be a list or should this have ended with a period? Url: https://mitre.github.io/saf-training/courses/beginner/06.html#refactoring-the-code-to-use-inputs
- The comment on line 1 says SHA12 instead of SHA512 (the preceding paragraph refers to SHA512). Url: https://mitre.github.io/saf-training/courses/beginner/07.html#expect-syntax-and-password-hashes
- Says "json". Url: https://mitre.github.io/saf-training/courses/beginner/09.html#heimdall-lite
- Expand on acronyms. Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/03.html#what-is-the-security-automation-framework
- Says "Typescript". Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/09.html#reference-existing-solutions
- All of the code blocks in light mode use white text instead of black text. Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/05.html
- Modify the comment under "Remaining Gosec source data", which says "How sure that the identified issue if applicable", under the Issues.severity. Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/11.html#mapping-version-1
- Says "note that these mapping are informal". Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/11.html#mapping-version-1-1
- Extra period in the skeleton convert command file under "Integration" step 1;
const converter = new Mapper(input, flags.['with-raw']). Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/16.html#integration - This says "generated by HDF converters". Url: https://deploy-preview-155--mitre-saf-training.netlify.app/courses/mappers/06.html#profiles
- The Skeleton Convert Command File contains SonarCloud code smells on the variables that are prefixed with the
statictoken. - There is another
switchblock that needs to be edited parallel of step 4 under Integration. This switch block is inside theConvert.run()method. - There is a code typo in the JSON Mapper Skeleton under the Mapper File section of Implementing a Mapper.
- There should be an additional step regarding changes to make in the relevant Vue.js frontend component that refers to Heimdall2's supported mappers, perhaps after the Fingerprinting section.
Potential solutions:
- Change the transparent table row to white
- Change "saf" to "SAF"
- Do
pwdand list the directory wheretree nginxis executed - Terminate the sentence accordingly or remove it
- Change "SHA12" to "SHA512"
- Change "json" to "JSON"
- Provide definitions for acronyms- ATO - authority/authorization to operate (?), POAM - plan of action and milestones, eMASS - enterprise mission assurance support service
- Change to "TypeScript"
- Fix CSS style for table
- Change "if" to "is"
- Change "mapping" to "mappings"
- Remove period right after
flags - Change to "OHDF"?
- Update the skeleton convert command file like so:
import {Command, Flags} from '@oclif/core' import fs from 'fs' import {SKELETONMapper as Mapper} from '@mitre/hdf-converters' import {checkInput, checkSuffix} from '../../utils/global' export default class SKELETON2HDF extends Command { readonly static usage = 'convert SKELETON2hdf -i <SKELETON-json> -o <hdf-scan-results-json>' readonly static description = 'Translate a SKELETON output file into an HDF results set' readonly static examples = ['saf convert SKELETON2hdf -i SKELETON.json -o output-hdf-name.json'] readonly static flags = { help: Flags.help({char: 'h'}), input: Flags.string({char: 'i', required: true, description: 'Input SKELETON file'}), output: Flags.string({char: 'o', required: true, description: 'Output HDF file'}), 'with-raw': Flags.boolean({char: 'w', required: false}), } async run() { const {flags} = await this.parse(SKELETON2HDF) const input = fs.readFileSync(flags.input, 'utf8') checkInput( {data: input, filename: flags.input}, 'SKELETON_DATA', 'SKELETON results JSON', ) const converter = new Mapper(input, flags.['with-raw']) fs.writeFileSync(checkSuffix(flags.output), JSON.stringify(converter.toHdf())) } }
- Inject a step 5 in-between the current steps 4 and 5 under the Integration section. Suggestion of what to write:
Under the switch block in the
runmethod, add your mapper class like so:switch (Convert.detectedType) { ... case {YOUR-EXPORT-SERVICE-NAME-HERE}: { converter = new {YOUR-CLI-CONVERT-CLASS}(fs.readFileSync(flags.input, 'utf8')) fs.writeFileSync( checkSuffix(flags.output), JSON.stringify(converter.toHdf(), null, 2), ) break } ... }
- Change this code
constructor(exportJson: string, withRaw = false) { super(JSON.parse(exportJson), true); this.withRaw = withRaw; }to
constructor(exportJson: string, withRaw = false) { super(JSON.parse(exportJson)); this.withRaw = withRaw; }
- Make these changes under the Fingerprinting section:
Frontend changes
Update
apps/frontend/src/components/global/upload_tabs/FileReader.vuewith a bullet point referring to your mapper by its formal name, like so:<li>{SKELETON}</li>
Related GitHub PR: #155