/** * An element which displays the vulnerabilities in an image. */ angular.module('quay').directive('imageVulnerabilityView', function () { var directiveDefinitionObject = { priority: 0, templateUrl: '/static/directives/image-vulnerability-view.html', replace: false, transclude: true, restrict: 'C', scope: { 'repository': '=repository', 'image': '=image', 'isEnabled': '=isEnabled' }, controller: function($scope, $element, Config, ApiService, VulnerabilityService, ViewArrayFactory, ImageMetadataService, TableService) { $scope.options = { 'filter': null, 'fixableVulns': false, 'predicate': 'score', 'reverse': false, }; $scope.TableService = TableService; $scope.loading = false; $scope.toggleDetails = function(vuln) { vuln.expanded = !vuln.expanded; }; $scope.getDistro = function(vuln) { if (vuln['severity'] == 'Defcon 1') { return 'the Quay Engineering Team'; } return vuln['namespace'].split(':', 1); }; $scope.getSeverityTooltip = function(vuln) { var distro = $scope.getDistro(vuln); if (vuln.scoreDivergence != 'adjusted-lower') { return 'Marked with a ' + vuln['severity'] + ' severity by ' + distro; } return 'Note: This vulnerability was originally given a CVSSv2 score ' + 'of ' + vuln['cvssScore'] + ' by NVD, but was subsequently reclassifed as a ' + vuln['severity'] + ' issue by ' + distro; }; var buildOrderedVulnerabilities = function() { if (!$scope.vulnerabilitiesInfo) { return; } var vulnerabilities = $scope.vulnerabilitiesInfo.vulnerabilities; $scope.orderedVulnerabilities = TableService.buildOrderedItems(vulnerabilities, $scope.options, ['name', 'featureName', 'imageCommand'], ['score'], function(item) { return !$scope.options.fixableVulns || item['fixedInVersion']; }) }; var buildChart = function() { var chartData = $scope.vulnerabilitiesInfo.severityBreakdown; if (chartData.length == 0) { chartData = [{ 'label': 'None', 'value': 1, 'color': '#2FC98E' }]; } var colors = []; for (var i = 0; i < chartData.length; ++i) { colors.push(chartData[i].color); } nv.addGraph(function() { var chart = nv.models.pieChart() .x(function(d) { return d.label }) .y(function(d) { return d.value }) .margin({left: -10, right: -10, top: -10, bottom: -10}) .showLegend(false) .showLabels(true) .labelThreshold(.05) .labelType("percent") .donut(true) .color(colors) .donutRatio(0.5); d3.select("#vulnDonutChart svg") .datum(chartData) .transition() .duration(350) .call(chart); return chart; }); }; var loadImageVulnerabilities = function() { if ($scope.loading) { return; } $scope.loading = true; VulnerabilityService.loadImageVulnerabilities($scope.repository, $scope.image.id, function(resp) { $scope.securityStatus = resp.status; $scope.vulnerabilitiesInfo = VulnerabilityService.buildVulnerabilitiesInfo($scope.image, resp); buildOrderedVulnerabilities(); buildChart(); return resp; }, function() { $scope.securityStatus = 'error'; }); }; $scope.$watch('options.predicate', buildOrderedVulnerabilities); $scope.$watch('options.reverse', buildOrderedVulnerabilities); $scope.$watch('options.filter', buildOrderedVulnerabilities); $scope.$watch('options.fixableVulns', buildOrderedVulnerabilities); $scope.$watch('isEnabled', function(isEnabled) { if ($scope.isEnabled && $scope.repository && $scope.image) { loadImageVulnerabilities(); } }); } }; return directiveDefinitionObject; });