feat: add support for remote-repo-url UNIFY-506

adrobuta · gergo-papp · commit 802479f42238 · 2025-05-02T15:36:57.000+03:00
diff --git a/lib/response-builder.ts b/lib/response-builder.ts
@@ -20,6 +20,7 @@ async function buildResponse(
   excludeBaseImageVulns: boolean,
   names?: string[],
   ociDistributionMetadata?: OCIDistributionMetadata,
+  remoteUrl?: string | undefined,
 ): Promise<types.PluginResponse> {
   const deps = depsAnalysis.depTree.dependencies;
   const dockerfilePkgs = collectDockerfilePkgs(dockerfileAnalysis, deps);
@@ -208,6 +209,12 @@ async function buildResponse(
     ...applicationDependenciesScanResults,
   ];
 
+  if (remoteUrl) {
+    scanResults.forEach((scanResult) => {
+      scanResult.target.remoteUrl = remoteUrl;
+    });
+  }
+
   return {
     scanResults,
   };
diff --git a/lib/static.ts b/lib/static.ts
@@ -66,11 +66,14 @@ export async function analyzeStatically(
     });
   }
 
+  const remoteUrl = options["remote-repo-url"];
+
   return buildResponse(
     analysis,
     dockerfileAnalysis,
     excludeBaseImageVulns,
     names,
     ociDistributionMetadata,
+    remoteUrl,
   );
 }
diff --git a/lib/types.ts b/lib/types.ts
@@ -102,6 +102,8 @@ export interface AutoDetectedUserInstructions {
 
 export interface ContainerTarget {
   image: string;
+  /** Set the remote URL for a container image image. */
+  remoteUrl?: string;
 }
 
 /**
@@ -225,6 +227,8 @@ export interface PluginOptions {
 
   /** The default is "false". */
   "collect-application-files": boolean | string;
+
+  "remote-repo-url"?: string;
 }
 
 export interface DepTreeDep {
diff --git a/test/system/plugin-option.spec.ts b/test/system/plugin-option.spec.ts
@@ -60,3 +60,18 @@ it("provides imageName fact with imageNameAndDigest and imageNameAndTag scan opt
     ]),
   );
 });
+
+it("remoteUrl is set in ContainerTarget when remote-repo-url scan option is provided", async () => {
+  const fixturePath = getFixture(["/docker-archives", "alpine-arm64.tar"]);
+  const imagePath = `docker-archive:${fixturePath}`;
+
+  const pluginResponse = await plugin.scan({
+    path: imagePath,
+    "remote-repo-url": "https://github.com/org/my-repo-test",
+  });
+  pluginResponse.scanResults.forEach((scanResult) => {
+    expect(scanResult.target.remoteUrl).toEqual(
+      "https://github.com/org/my-repo-test",
+    );
+  });
+});

Original file line number	Diff line number	Diff line change
`@@ -66,11 +66,14 @@ export async function analyzeStatically(`
`66`	`66`	`});`
`67`	`67`	`}`
`68`	`68`
	`69`	`+ const remoteUrl = options["remote-repo-url"];`
	`70`	`+`
`69`	`71`	`return buildResponse(`
`70`	`72`	`analysis,`
`71`	`73`	`dockerfileAnalysis,`
`72`	`74`	`excludeBaseImageVulns,`
`73`	`75`	`names,`
`74`	`76`	`ociDistributionMetadata,`
	`77`	`+ remoteUrl,`
`75`	`78`	`);`
`76`	`79`	`}`
Original file line number	Diff line number	Diff line change
`@@ -102,6 +102,8 @@ export interface AutoDetectedUserInstructions {`
`102`	`102`
`103`	`103`	`export interface ContainerTarget {`
`104`	`104`	`image: string;`
	`105`	`+ /** Set the remote URL for a container image image. */`
	`106`	`+ remoteUrl?: string;`
`105`	`107`	`}`
`106`	`108`
`107`	`109`	`/**`
`@@ -225,6 +227,8 @@ export interface PluginOptions {`
`225`	`227`
`226`	`228`	`/** The default is "false". */`
`227`	`229`	`"collect-application-files": boolean \| string;`
	`230`	`+`
	`231`	`+ "remote-repo-url"?: string;`
`228`	`232`	`}`
`229`	`233`
`230`	`234`	`export interface DepTreeDep {`