feat: Add sha256, sha384 and sha512 options (#60)

Author: a-oren

nodes/DependencyAnalytics/Actions.spec.ts

@@ -409,9 +409,11 @@ describe('Tests for actions/vulnerability.ts', () => {
       });
     });
 
-    describe('inputType: sbomSha256', () => {
-      it('It should analyze vulnerabilities by SBOM SHA256', async () => {
-        ctx.getNodeParameter.mockReturnValueOnce('sbomSha256').mockReturnValueOnce('abc123def456');
+    describe('inputType: sbomSha', () => {
+      it('It should analyze vulnerabilities by SBOM SHA (prefixed)', async () => {
+        ctx.getNodeParameter
+          .mockReturnValueOnce('sbomSha')
+          .mockReturnValueOnce('sha256:abc123def456');
 
         const sbomResponse = { id: 'sbom-123' };
         const advisoryResponse = [{ id: 'ADV-1' }];
@@ -426,8 +428,7 @@ describe('Tests for actions/vulnerability.ts', () => {
           fakeCredential,
           expect.objectContaining({
             method: 'GET',
-            url: `${fakeBase}/sbom/sha256:abc123def456`,
-            qs: { query: 'abc123def456' },
+            url: `${fakeBase}/sbom/${encodeURIComponent('sha256:abc123def456')}`,
           }),
         );
         expect(authedRequest).toHaveBeenNthCalledWith(
@@ -450,22 +451,22 @@ describe('Tests for actions/vulnerability.ts', () => {
       });
 
       it('It should throw error if SBOM SHA256 is empty', async () => {
-        ctx.getNodeParameter.mockReturnValueOnce('sbomSha256').mockReturnValueOnce('  ');
+        ctx.getNodeParameter.mockReturnValueOnce('sbomSha').mockReturnValueOnce('  ');
 
         (throwError as unknown as jest.Mock).mockImplementation(() => {
-          throw new Error('SHA256 required');
+          throw new Error('SBOM SHA required');
         });
 
         await expect(vulnerability.analyze({ ctx, itemIndex: 0 })).rejects.toThrow();
         expect(throwError).toHaveBeenCalledWith(
           expect.anything(),
-          "The 'SBOM SHA-256' parameter is required.",
+          "The 'SBOM SHA' parameter is required.",
           0,
         );
       });
 
       it('It should throw error if SBOM not found', async () => {
-        ctx.getNodeParameter.mockReturnValueOnce('sbomSha256').mockReturnValueOnce('nonexistent');
+        ctx.getNodeParameter.mockReturnValueOnce('sbomSha').mockReturnValueOnce('sha256:abc123');
 
         (authedRequest as jest.Mock).mockResolvedValueOnce({});
         (throwError as unknown as jest.Mock).mockImplementation(() => {
@@ -475,7 +476,7 @@ describe('Tests for actions/vulnerability.ts', () => {
         await expect(vulnerability.analyze({ ctx, itemIndex: 0 })).rejects.toThrow();
         expect(throwError).toHaveBeenCalledWith(
           expect.anything(),
-          "No SBOM found for the provided value in 'SBOM SHA-256'.",
+          "No SBOM found for the provided value in 'SBOM SHA'.",
           0,
         );
       });

nodes/DependencyAnalytics/DependencyAnalytics.spec.ts

@@ -32,7 +32,7 @@ test('It contains all expected displayNames in properties', () => {
     'Operation',
     'Input Type',
     'PURLs',
-    'SBOM SHA-256',
+    'SBOM SHA',
     'Sorting',
     'Selected Fields',
     'Operation',

nodes/DependencyAnalytics/actions/advisory.ts

@@ -12,6 +12,20 @@ export async function get({ ctx, itemIndex }: { ctx: IExecuteFunctions; itemInde
   if (!identifierRaw)
     throwError(ctx.getNode(), "The 'Identifier' parameter is required.", itemIndex);
 
+  // If a bare SHA digest is provided without a sha* prefix, instruct the user to add it
+  if (
+    (/^[a-f0-9]{64}$/i.test(identifierRaw) ||
+      /^[a-f0-9]{96}$/i.test(identifierRaw) ||
+      /^[a-f0-9]{128}$/i.test(identifierRaw)) &&
+    !/^sha(?:256|384|512):/i.test(identifierRaw)
+  ) {
+    throwError(
+      ctx.getNode(),
+      "Provide 'SBOM SHA' with a prefix: sha256:, sha384:, or sha512:.",
+      itemIndex,
+    );
+  }
+
   const options: IHttpRequestOptions = {
     method: 'GET',
     url: `${base}/advisory/${encodeURIComponent(identifierRaw)}`,

nodes/DependencyAnalytics/actions/sbom.ts

@@ -12,11 +12,21 @@ export async function get({ ctx, itemIndex }: { ctx: IExecuteFunctions; itemInde
   if (!identifierRaw)
     throwError(ctx.getNode(), "The 'Identifier' parameter is required.", itemIndex);
 
-  const normalizedId = /^sha256:/i.test(identifierRaw)
-    ? identifierRaw
-    : /^[a-f0-9]{64}$/i.test(identifierRaw)
-      ? `sha256:${identifierRaw}`
-      : identifierRaw;
+  // If a bare SHA digest is provided without a sha* prefix, instruct the user to add it
+  if (
+    (/^[a-f0-9]{64}$/i.test(identifierRaw) ||
+      /^[a-f0-9]{96}$/i.test(identifierRaw) ||
+      /^[a-f0-9]{128}$/i.test(identifierRaw)) &&
+    !/^sha(?:256|384|512):/i.test(identifierRaw)
+  ) {
+    throwError(
+      ctx.getNode(),
+      "Provide 'SBOM SHA' with a prefix: sha256:, sha384:, or sha512:.",
+      itemIndex,
+    );
+  }
+
+  const normalizedId = identifierRaw;
 
   const options: IHttpRequestOptions = {
     method: 'GET',

nodes/DependencyAnalytics/actions/vulnerability.ts

@@ -53,7 +53,7 @@ export async function getMany({ ctx, itemIndex }: { ctx: IExecuteFunctions; item
 export async function analyze({ ctx, itemIndex }: { ctx: IExecuteFunctions; itemIndex: number }) {
   const credentialName = chooseCredential(ctx, itemIndex);
   const base = getBase(ctx, itemIndex);
-  const inputType = ctx.getNodeParameter('inputType', itemIndex) as 'sbomSha256' | 'purls';
+  const inputType = ctx.getNodeParameter('inputType', itemIndex) as 'sbomSha' | 'purls';
 
   if (inputType === 'purls') {
     const raw = ctx.getNodeParameter('purlsRaw', itemIndex) as unknown;
@@ -82,11 +82,7 @@ export async function analyze({ ctx, itemIndex }: { ctx: IExecuteFunctions; item
 
       const isPlainObject = (v: any) => v && typeof v === 'object' && !Array.isArray(v);
       if (isPlainObject(res)) {
-        // Prefer the map keyed by PURL shape: { [purl]: { details: [...] } }
         for (const [pkgPurl, data] of Object.entries(res as Record<string, any>)) {
-          // Support both shapes:
-          // 1) { details: [...] }
-          // 2) [ { ...vulnerabilityDetail... }, ... ]
           const details = Array.isArray(data)
             ? (data as any[])
             : Array.isArray((data as any)?.details)
@@ -219,22 +215,26 @@ export async function analyze({ ctx, itemIndex }: { ctx: IExecuteFunctions; item
     }
   }
 
-  // inputType === 'sbomSha256'
-  const q = (ctx.getNodeParameter('sbomSha256', itemIndex) as string)?.trim();
-  if (!q) throwError(ctx.getNode(), "The 'SBOM SHA-256' parameter is required.", itemIndex);
+  const q = (ctx.getNodeParameter('sbomSha', itemIndex) as string)?.trim();
+  if (!q) throwError(ctx.getNode(), "The 'SBOM SHA' parameter is required.", itemIndex);
+  if (!/^sha(?:256|384|512):[a-f0-9]+$/i.test(q)) {
+    throwError(
+      ctx.getNode(),
+      "Provide 'SBOM SHA' with a prefix: sha256:, sha384:, or sha512:.",
+      itemIndex,
+    );
+  }
 
-  // SBOM by sha256
   const listOpts: IHttpRequestOptions = {
     method: 'GET',
-    url: `${base}/sbom/sha256:${q}`,
-    qs: { query: q },
+    url: `${base}/sbom/${encodeURIComponent(q)}`,
     returnFullResponse: false,
   };
 
   const listResp = (await authedRequest(ctx, credentialName, listOpts)) as any;
   const sbomId = listResp?.id;
   if (!sbomId)
-    throwError(ctx.getNode(), "No SBOM found for the provided value in 'SBOM SHA-256'.", itemIndex);
+    throwError(ctx.getNode(), "No SBOM found for the provided value in 'SBOM SHA'.", itemIndex);
 
   // Advisories for SBOM
   const advOpts: IHttpRequestOptions = {

nodes/DependencyAnalytics/descriptions/advisory.properties.ts

@@ -6,6 +6,7 @@ export const advisoryProperties: INodeProperties[] = [
     name: 'advisorySelectedFields',
     type: 'multiOptions',
     default: [],
+    description: "Fields to include when 'Selected Fields' output mode is selected",
     options: [
       { name: 'Average Score', value: 'average_score' },
       { name: 'Average Severity', value: 'average_severity' },
@@ -48,6 +49,7 @@ export const advisoryProperties: INodeProperties[] = [
     name: 'sortingAdvisory',
     type: 'fixedCollection',
     placeholder: 'Add sort rule',
+    description: 'Add one or more sorting rules to order the advisories',
     typeOptions: { multipleValues: true },
     displayOptions: { show: { operation: ['getMany'], resource: ['advisory'] } },
     default: {},
@@ -60,6 +62,7 @@ export const advisoryProperties: INodeProperties[] = [
             displayName: 'Field',
             name: 'field',
             type: 'options',
+            description: 'Property to sort by',
             options: [
               { name: 'Average Score', value: 'average_score' },
               { name: 'Average Severity', value: 'average_severity' },
@@ -73,6 +76,7 @@ export const advisoryProperties: INodeProperties[] = [
             displayName: 'Direction',
             name: 'direction',
             type: 'options',
+            description: 'Sort order',
             options: [
               { name: 'Ascending', value: 'asc' },
               { name: 'Descending', value: 'desc' },

nodes/DependencyAnalytics/descriptions/common.properties.ts

@@ -32,6 +32,8 @@ export const commonProperties: INodeProperties[] = [
       { name: 'Advisory', value: 'advisory' },
     ],
     default: 'vulnerability',
+    description:
+      'Choose which Trustify resource to work with. This affects available operations and fields.',
   },
 
   // common “get” param
@@ -41,8 +43,8 @@ export const commonProperties: INodeProperties[] = [
     type: 'string',
     required: true,
     default: '',
-    description: 'The SHA-256 ID or normalized identifier',
-    placeholder: 'e.g. 3a7bd3e2360a3d...',
+    description: 'SHA ID (sha256|sha384|sha512) or a normalized identifier',
+    placeholder: 'e.g. sha256:3a7bd3e2360a3d…, CVE-2024-1234',
     displayOptions: {
       show: { operation: ['get'], resource: ['sbom', 'vulnerability', 'advisory'] },
     },

nodes/DependencyAnalytics/descriptions/sbom.properties.ts

@@ -47,6 +47,7 @@ export const sbomProperties: INodeProperties[] = [
     name: 'sortingSbom',
     type: 'fixedCollection',
     placeholder: 'Add sort rule',
+    description: 'Add one or more sorting rules to order the SBOMs',
     typeOptions: { multipleValues: true },
     displayOptions: { show: { operation: ['getMany'], resource: ['sbom'] } },
     default: {},
@@ -59,6 +60,7 @@ export const sbomProperties: INodeProperties[] = [
             displayName: 'Field',
             name: 'field',
             type: 'options',
+            description: 'Property to sort by',
             options: [
               { name: 'Name', value: 'name' },
               { name: 'Packages (Count)', value: 'number_of_packages' },
@@ -70,6 +72,7 @@ export const sbomProperties: INodeProperties[] = [
             displayName: 'Direction',
             name: 'direction',
             type: 'options',
+            description: 'Sort order',
             options: [
               { name: 'Ascending', value: 'asc' },
               { name: 'Descending', value: 'desc' },

nodes/DependencyAnalytics/descriptions/vulnerability.properties.ts

@@ -6,6 +6,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
     name: 'vulnSelectedFields',
     type: 'multiOptions',
     default: [],
+    description: "Fields to include when 'Selected Fields' output mode is selected",
     options: [
       { name: 'Advisories', value: 'advisories' },
       { name: 'CWEs', value: 'cwes' },
@@ -33,6 +34,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
     name: 'advisorySelectedFields',
     type: 'multiOptions',
     default: [],
+    description: "Advisory fields to include when 'Selected Fields' output mode is selected",
     options: [
       { name: 'CWEs', value: 'cwes' },
       { name: 'Description', value: 'description' },
@@ -59,7 +61,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
       show: {
         resource: ['vulnerability'],
         operation: ['analyze'],
-        inputType: ['purls', 'sbomSha256'],
+        inputType: ['purls', 'sbomSha'],
         outputMode: ['selected'],
       },
     },
@@ -97,9 +99,10 @@ export const vulnerabilityProperties: INodeProperties[] = [
     displayName: 'Input Type',
     name: 'inputType',
     type: 'options',
+    description: 'Analyze by providing PURLs directly or by referencing an SBOM via SHA',
     options: [
       { name: 'PURLs (Multiline)', value: 'purls' },
-      { name: 'SBOM Lookup (SHA-256)', value: 'sbomSha256' },
+      { name: 'SBOM Lookup (SHA)', value: 'sbomSha' },
     ],
     default: 'purls',
     displayOptions: { show: { resource: ['vulnerability'], operation: ['analyze'] } },
@@ -118,14 +121,15 @@ export const vulnerabilityProperties: INodeProperties[] = [
     },
   },
   {
-    displayName: 'SBOM SHA-256',
-    name: 'sbomSha256',
+    displayName: 'SBOM SHA',
+    name: 'sbomSha',
     type: 'string',
     default: '',
-    placeholder: 'e.g. 3a7bd3e2360a3d…',
-    description: 'The SHA-256 checksum of the SBOM file to analyze',
+    placeholder: 'e.g. sha256:3a7bd3…, sha384:…, or sha512:…',
+    description:
+      'SHA checksum of the SBOM to analyze. Format: sha256:[64-hex] | sha384:[96-hex] | sha512:[128-hex].',
     displayOptions: {
-      show: { resource: ['vulnerability'], operation: ['analyze'], inputType: ['sbomSha256'] },
+      show: { resource: ['vulnerability'], operation: ['analyze'], inputType: ['sbomSha'] },
     },
   },
 
@@ -134,6 +138,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
     name: 'sortingVuln',
     type: 'fixedCollection',
     placeholder: 'Add sort rule',
+    description: 'Add one or more sorting rules to order the vulnerabilities',
     typeOptions: { multipleValues: true },
     displayOptions: { show: { operation: ['getMany', 'analyze'], resource: ['vulnerability'] } },
     default: {},
@@ -146,6 +151,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
             displayName: 'Field',
             name: 'field',
             type: 'options',
+            description: 'Property to sort by',
             options: [
               { name: 'Identifier (e.g., CVE)', value: 'identifier' },
               { name: 'Title', value: 'title' },
@@ -157,6 +163,7 @@ export const vulnerabilityProperties: INodeProperties[] = [
             displayName: 'Direction',
             name: 'direction',
             type: 'options',
+            description: 'Sort order',
             options: [
               { name: 'Ascending', value: 'asc' },
               { name: 'Descending', value: 'desc' },