46eec328d2
- pkg/importer/importer.go: shared Importer interface (Name, Import) - pkg/importer/trufflehog.go: TruffleHogImporter with v3 JSON decoding, detector-name normalization (OpenAI/GithubV2/AWS -> canonical ids), SourceMetadata path+line extraction for Git/Filesystem/Github - pkg/importer/testdata/trufflehog-sample.json: 3-record fixture - pkg/importer/trufflehog_test.go: Name, Import, NormalizeName, EmptyArray, InvalidJSON tests -- all passing
25 lines
914 B
Go
25 lines
914 B
Go
// Package importer provides adapters that parse output from external secret
|
|
// scanners (TruffleHog, Gitleaks, ...) and normalize them into KeyHunter's
|
|
// engine.Finding model so they can be inserted into the unified storage layer.
|
|
package importer
|
|
|
|
import (
|
|
"io"
|
|
|
|
"github.com/salvacybersec/keyhunter/pkg/engine"
|
|
)
|
|
|
|
// Importer parses output from an external secret scanner and returns
|
|
// normalized engine.Finding records. Implementations must be stateless
|
|
// and safe for reuse across calls.
|
|
type Importer interface {
|
|
// Name returns the short identifier of the source format
|
|
// (e.g. "trufflehog", "gitleaks"). Used by the CLI --format flag.
|
|
Name() string
|
|
|
|
// Import reads scanner output from r and returns the normalized findings.
|
|
// Implementations should return a wrapped error on malformed input and an
|
|
// empty slice with nil error on empty input.
|
|
Import(r io.Reader) ([]engine.Finding, error)
|
|
}
|