Add --analysis-type flag to app process

Author: cosdon

cli/README.md

@@ -22,7 +22,7 @@ $ npm install -g @nowsecure/platform-cli
 $ ns-cli COMMAND
 running command...
 $ ns-cli (--version)
-@nowsecure/platform-cli/1.0.0-beta.3 darwin-x64 node-v16.19.1
+@nowsecure/platform-cli/1.0.0 darwin-x64 node-v16.19.1
 $ ns-cli --help [COMMAND]
 USAGE
   $ ns-cli COMMAND
@@ -86,7 +86,7 @@ DESCRIPTION
   Commands to manipulate applications for analysis
 ```
 
-_See code: [dist/commands/app/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0-beta.3/dist/commands/app/index.ts)_
+_See code: [dist/commands/app/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0/dist/commands/app/index.ts)_
 
 ## `ns-cli app archive [PLATFORM] [PACKAGENAME]`
 
@@ -332,15 +332,18 @@ Upload and analyze an application binary
 ```
 USAGE
   $ ns-cli app process BINARY [--token <value>] [--graphql <value>] [--rest <value>] [--ui <value>] [--profile
-    <value>] [--config-file <value>] [--json] [-g <value>] [--group-ref <value>] [-v <value>]
+    <value>] [--config-file <value>] [--json] [-g <value>] [--group-ref <value>] [-v <value>] [-t
+    full|static|dependencies]
 
 ARGUMENTS
   BINARY  file to send to Platform
 
 FLAGS
-  -g, --group=<value>        Group name
-  -v, --set-version=<value>  Set the version of the uploaded binary
-  --group-ref=<value>        Group reference
+  -g, --group=<value>           Group name
+  -t, --analysis-type=<option>  The type of analysis to perform
+                                <options: full|static|dependencies>
+  -v, --set-version=<value>     Set the version of the uploaded binary
+  --group-ref=<value>           Group reference
 
 GLOBAL FLAGS
   --config-file=<value>  Path to the config file
@@ -480,7 +483,7 @@ DESCRIPTION
   Commands to retrieve assessment data
 ```
 
-_See code: [dist/commands/assessment/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0-beta.3/dist/commands/assessment/index.ts)_
+_See code: [dist/commands/assessment/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0/dist/commands/assessment/index.ts)_
 
 ## `ns-cli assessment cancel ASSESSMENT`
 
@@ -810,7 +813,7 @@ FLAGS
   --ui=<value>           URL of the UI server
 ```
 
-_See code: [dist/commands/configure/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0-beta.3/dist/commands/configure/index.ts)_
+_See code: [dist/commands/configure/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0/dist/commands/configure/index.ts)_
 
 ## `ns-cli help [COMMANDS]`
 
@@ -844,7 +847,7 @@ DESCRIPTION
   Commands for the user's organization
 ```
 
-_See code: [dist/commands/organization/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0-beta.3/dist/commands/organization/index.ts)_
+_See code: [dist/commands/organization/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0/dist/commands/organization/index.ts)_
 
 ## `ns-cli organization groups`
 
@@ -1241,7 +1244,7 @@ DESCRIPTION
   Commands for users & accounts
 ```
 
-_See code: [dist/commands/user/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0-beta.3/dist/commands/user/index.ts)_
+_See code: [dist/commands/user/index.ts](https://github.com/cosdon/nowsecure-cli/blob/v1.0.0/dist/commands/user/index.ts)_
 
 ## `ns-cli user account`
 

cli/src/commands/app/process.ts

@@ -9,7 +9,7 @@ import { Args, Flags } from "@oclif/core";
 import { ProcessApplicationResponse } from "@nowsecure/platform-lib/lib/types";
 import { getGroupRef, BaseCommand, groupFlags } from "../../utils";
 import ProgressBar from "progress";
-import { RequestConfig } from "@nowsecure/platform-lib";
+import { AnalysisType, RequestConfig } from "@nowsecure/platform-lib";
 
 export default class ProcessBinary extends BaseCommand {
   static description = "Upload and analyze an application binary";
@@ -22,6 +22,11 @@ export default class ProcessBinary extends BaseCommand {
       char: "v",
       summary: "Set the version of the uploaded binary",
     }),
+    "analysis-type": Flags.string({
+      char: "t",
+      summary: "The type of analysis to perform",
+      options: Object.values(AnalysisType),
+    }),
   };
   static args = {
     binary: Args.string({
@@ -53,6 +58,7 @@ export default class ProcessBinary extends BaseCommand {
       stream,
       groupRef,
       flags["set-version"],
+      flags["analysis-type"] as AnalysisType | undefined,
       config
     );
     this.log(

lib/docs/includes/_app_processBinary.md

@@ -6,10 +6,17 @@ interface PlatformAPI {
     stream: NodeJS.ReadableStream,
     groupId?: string,
     version?: string,
+    analysisType?: AnalysisType
     config?: RequestConfig
   ): Promise<ProcessApplicationResponse>;
 }
 
+enum AnalysisType {
+  FULL = "full",
+  STATIC = "static",
+  DEPENDENCIES = "dependencies",
+}
+
 interface ProcessApplicationResponse {
   ref: string;
   application: string;
@@ -38,12 +45,13 @@ interface ProcessApplicationResponse {
 
 Upload an ipa or apk file to Platform and begin an assessment.
 
-| Parameter | Description                                                                                                                 |
-| --------- | --------------------------------------------------------------------------------------------------------------------------- |
-| stream    | The application data to send to Platform                                                                                    |
-| groupId   | The application group to use for the assessment. Required if the user is a member of more than one group                    |
-| version   | Optional version string for the build. If this field is not specified the version from the application package will be used |
-| config    | [`RequestConfig`](#requestconfig). Upload progress can be monitored via the `onUploadProgress` callback.                    |
+| Parameter    | Description                                                                                                                        |
+| ------------ | ---------------------------------------------------------------------------------------------------------------------------------- |
+| stream       | The application data to send to Platform                                                                                           |
+| groupId      | The application group to use for the assessment. Required if the user is a member of more than one group                           |
+| version      | Optional version string for the build. If this field is not specified the version from the application package will be used        |
+| analysisType | If specified, the type of analysis to run. "static" runs a static-only analysis, "dependencies" returns the SBOM dependency graph. |
+| config       | [`RequestConfig`](#requestconfig). Upload progress can be monitored via the `onUploadProgress` callback.                           |
 
 `ProcessApplicationResponse`
 

lib/src/api/app/upload-binary.ts

@@ -10,14 +10,36 @@ import {
   UploadApplicationResponse,
 } from "../../types/platform";
 
-function queryParams(groupId?: string, version?: string) {
+export enum AnalysisType {
+  FULL = "full",
+  STATIC = "static",
+  DEPENDENCIES = "dependencies",
+}
+
+function queryParams(
+  groupId?: string,
+  version?: string,
+  analysisType?: AnalysisType
+) {
   const args: string[] = [];
   if (groupId) {
     args.push("group=" + encodeURIComponent(groupId));
   }
   if (version) {
     args.push("version=" + encodeURIComponent(version));
   }
+  if (analysisType) {
+    switch (analysisType) {
+      case AnalysisType.FULL:
+        break;
+      case AnalysisType.DEPENDENCIES:
+        args.push("analysisType=sbom");
+        break;
+      case AnalysisType.STATIC:
+        args.push("analysisType=static");
+        break;
+    }
+  }
 
   return args.length > 0 ? "?" + args.join("&") : "";
 }
@@ -31,9 +53,10 @@ export /*async*/ function processBinary(
   stream: NodeJS.ReadableStream,
   groupId?: string,
   version?: string,
+  analysisType?: AnalysisType,
   config?: RequestConfig
 ): Promise<ProcessApplicationResponse> {
-  const paramStr = queryParams(groupId, version);
+  const paramStr = queryParams(groupId, version, analysisType);
   return client.postStream<ProcessApplicationResponse>(
     `/build/${paramStr}`,
     stream,

lib/src/platform.ts

@@ -57,6 +57,7 @@ import {
   updateAnalysisConfig,
   resetAnalysisConfig,
   UpdateConfigOptions,
+  AnalysisType,
 } from "./api";
 
 export interface PlatformAPI {
@@ -90,6 +91,7 @@ export interface PlatformAPI {
     stream: NodeJS.ReadableStream,
     groupId?: string,
     version?: string,
+    analysisType?: AnalysisType,
     config?: RequestConfig
   ): Promise<ProcessApplicationResponse>;
 
@@ -207,9 +209,17 @@ export class Platform implements PlatformAPI {
     stream: NodeJS.ReadableStream,
     groupId?: string,
     version?: string,
+    analysisType?: AnalysisType,
     config?: RequestConfig
   ): Promise<ProcessApplicationResponse> {
-    return processBinary(this._client, stream, groupId, version, config);
+    return processBinary(
+      this._client,
+      stream,
+      groupId,
+      version,
+      analysisType,
+      config
+    );
   }
 
   uploadBinary(