Remap the rule ID numbers (#92)

Signed-off-by: Eric Brown <eric.brown@securesauce.dev>

Author: ericwb

setup.cfg

@@ -31,79 +31,79 @@ precli.parsers =
 
 precli.rules.python =
     # precli/rules/python/stdlib/assert/assert.py
-    PRE001 = precli.rules.python.stdlib.assert.assert:Assert
+    PRE0001 = precli.rules.python.stdlib.assert.assert:Assert
 
     # precli/rules/python/stdlib/crypt/crypt_weak_hash.py
-    PRE002 = precli.rules.python.stdlib.crypt.crypt_weak_hash:CryptWeakHash
+    PRE0002 = precli.rules.python.stdlib.crypt.crypt_weak_hash:CryptWeakHash
 
     # precli/rules/python/stdlib/ftplib/ftp_cleartext.py
-    PRE003 = precli.rules.python.stdlib.ftplib.ftp_cleartext:FtpCleartext
+    PRE0003 = precli.rules.python.stdlib.ftplib.ftp_cleartext:FtpCleartext
 
     # precli/rules/python/stdlib/hashlib/hashlib_weak_hash.py
-    PRE004 = precli.rules.python.stdlib.hashlib.hashlib_weak_hash:HashlibWeakHash
+    PRE0004 = precli.rules.python.stdlib.hashlib.hashlib_weak_hash:HashlibWeakHash
 
     # precli/rules/python/stdlib/hmac/hmac_weak_hash.py
-    PRE005 = precli.rules.python.stdlib.hmac.hmac_weak_hash:HmacWeakHash
+    PRE0005 = precli.rules.python.stdlib.hmac.hmac_weak_hash:HmacWeakHash
 
     # precli/rules/python/stdlib/json/json_load.py
-    PRE006 = precli.rules.python.stdlib.json.json_load:JsonLoad
+    PRE0006 = precli.rules.python.stdlib.json.json_load:JsonLoad
 
     # precli/rules/python/stdlib/logging/insecure_listen_config.py
-    PRE007 = precli.rules.python.stdlib.logging.insecure_listen_config:InsecureListenConfig
+    PRE0007 = precli.rules.python.stdlib.logging.insecure_listen_config:InsecureListenConfig
 
     # precli/rules/python/stdlib/marshal/marshal_load.py
-    PRE008 = precli.rules.python.stdlib.marshal.marshal_load:MarshalLoad
+    PRE0008 = precli.rules.python.stdlib.marshal.marshal_load:MarshalLoad
 
     # precli/rules/python/stdlib/pickle/pickle_load.py
-    PRE009 = precli.rules.python.stdlib.pickle.pickle_load:PickleLoad
+    PRE0009 = precli.rules.python.stdlib.pickle.pickle_load:PickleLoad
 
     # precli/rules/python/stdlib/shelve/shelve_open.py
-    PRE010 = precli.rules.python.stdlib.shelve.shelve_open:ShelveOpen
+    PRE0010 = precli.rules.python.stdlib.shelve.shelve_open:ShelveOpen
 
     # precli/rules/python/stdlib/ssl/create_unverified_context.py
-    PRE011 = precli.rules.python.stdlib.ssl.create_unverified_context:CreateUnverifiedContext
+    PRE0011 = precli.rules.python.stdlib.ssl.create_unverified_context:CreateUnverifiedContext
 
     # precli/rules/python/stdlib/ssl/insecure_tls_version.py
-    PRE012 = precli.rules.python.stdlib.ssl.insecure_tls_version:InsecureTlsVersion
+    PRE0012 = precli.rules.python.stdlib.ssl.insecure_tls_version:InsecureTlsVersion
 
     # precli/rules/python/stdlib/telnetlib/telnetlib_cleartext.py
-    PRE013 = precli.rules.python.stdlib.telnetlib.telnetlib_cleartext:TelnetlibCleartext
+    PRE0013 = precli.rules.python.stdlib.telnetlib.telnetlib_cleartext:TelnetlibCleartext
 
     # precli/rules/python/third_party/cryptography/cryptography_weak_hash.py
-    PRE301 = precli.rules.python.third_party.cryptography.cryptography_weak_hash:CryptographyWeakHash
+    PRE0014 = precli.rules.python.third_party.cryptography.cryptography_weak_hash:CryptographyWeakHash
 
     # precli/rules/python/third_party/dill/dill_load.py
-    PRE302 = precli.rules.python.third_party.dill.dill_load:DillLoad
+    PRE0015 = precli.rules.python.third_party.dill.dill_load:DillLoad
 
     # precli/rules/python/third_party/httpx/no_certificate_verify.py
-    PRE303 = precli.rules.python.third_party.httpx.no_certificate_verify:NoCertificateVerify
+    PRE0016 = precli.rules.python.third_party.httpx.no_certificate_verify:NoCertificateVerify
 
     # precli/rules/python/third_party/jsonpickle/jsonpickle_decode.py
-    PRE304 = precli.rules.python.third_party.jsonpickle.jsonpickle_decode:JsonpickleDecode
+    PRE0017 = precli.rules.python.third_party.jsonpickle.jsonpickle_decode:JsonpickleDecode
 
     # precli/rules/python/third_party/pandas/pandas_read_pickle.py
-    PRE305 = precli.rules.python.third_party.pandas.pandas_read_pickle:PandasReadPickle
+    PRE0018 = precli.rules.python.third_party.pandas.pandas_read_pickle:PandasReadPickle
 
     # precli/rules/python/third_party/paramiko/paramiko_no_host_key_verify.py
-    PRE306 = precli.rules.python.third_party.paramiko.paramiko_no_host_key_verify:ParamikoNoHostKeyVerify
+    PRE0019 = precli.rules.python.third_party.paramiko.paramiko_no_host_key_verify:ParamikoNoHostKeyVerify
 
     # precli/rules/python/third_party/pyghmi/pyghmi_cleartext.py
-    PRE307 = precli.rules.python.third_party.pyghmi.pyghmi_cleartext:PyghmiCleartext
+    PRE0020 = precli.rules.python.third_party.pyghmi.pyghmi_cleartext:PyghmiCleartext
 
     # precli/rules/python/third_party/pycrypto/pycrypto_weak_hash.py
-    PRE308 = precli.rules.python.third_party.pycrypto.pycrypto_weak_hash:PycryptoWeakHash
+    PRE0021 = precli.rules.python.third_party.pycrypto.pycrypto_weak_hash:PycryptoWeakHash
 
     # precli/rules/python/third_party/pycryptodomex/pycryptodomex_weak_hash.py
-    PRE309 = precli.rules.python.third_party.pycryptodomex.pycryptodomex_weak_hash:PycryptodomexWeakHash
+    PRE0022 = precli.rules.python.third_party.pycryptodomex.pycryptodomex_weak_hash:PycryptodomexWeakHash
 
     # precli/rules/python/third_party/pyopenssl/insecure_tls_method.py
-    PRE310 = precli.rules.python.third_party.pyopenssl.insecure_tls_method:InsecureTlsMethod
+    PRE0023 = precli.rules.python.third_party.pyopenssl.insecure_tls_method:InsecureTlsMethod
 
     # precli/rules/python/third_party/PyYAML/yaml_load.py
-    PRE311 = precli.rules.python.third_party.PyYAML.yaml_load:YamlLoad
+    PRE0024 = precli.rules.python.third_party.PyYAML.yaml_load:YamlLoad
 
     # precli/rules/python/third_party/requests/no_certificate_verify.py
-    PRE312 = precli.rules.python.third_party.requests.no_certificate_verify:NoCertificateVerify
+    PRE0025 = precli.rules.python.third_party.requests.no_certificate_verify:NoCertificateVerify
 
 [build_sphinx]
 all_files = 1

tests/unit/rules/python/stdlib/ftplib/test_ftp_cleartext.py

@@ -21,8 +21,8 @@ def setUp(self):
         )
 
     def test_ftp_cleartext_rule_meta(self):
-        rule = Rule.get_by_id("PRE003")
-        self.assertEqual("PRE003", rule.id)
+        rule = Rule.get_by_id("PRE0003")
+        self.assertEqual("PRE0003", rule.id)
         self.assertEqual("cleartext_transmission", rule.name)
         self.assertEqual("", rule.help_url)
         self.assertEqual(True, rule.default_config.enabled)
@@ -34,7 +34,7 @@ def test_ftp(self):
         results = self.parser.parse(os.path.join(self.base_path, "ftp.py"))
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(6, result.location.start_column)
@@ -48,15 +48,15 @@ def test_ftp_login(self):
         )
         self.assertEqual(2, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(6, result.location.start_column)
         self.assertEqual(9, result.location.end_column)
         self.assertEqual(Level.WARNING, result.level)
         self.assertEqual(-1.0, result.rank)
         result = results[1]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(5, result.location.start_line)
         self.assertEqual(5, result.location.end_line)
         self.assertEqual(4, result.location.start_column)
@@ -74,7 +74,7 @@ def test_ftplib_ftp(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(6, result.location.start_column)
@@ -88,7 +88,7 @@ def test_ftplib_ftp_context_mgr(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(5, result.location.start_column)
@@ -102,15 +102,15 @@ def test_ftplib_ftp_login(self):
         )
         self.assertEqual(2, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(6, result.location.start_column)
         self.assertEqual(16, result.location.end_column)
         self.assertEqual(Level.WARNING, result.level)
         self.assertEqual(-1.0, result.rank)
         result = results[1]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(5, result.location.start_line)
         self.assertEqual(5, result.location.end_line)
         self.assertEqual(4, result.location.start_column)
@@ -126,15 +126,15 @@ def test_ftplib_ftp_login_single_statement(self):
         )
         self.assertEqual(2, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(32, result.location.start_column)
         self.assertEqual(37, result.location.end_column)
         self.assertEqual(Level.ERROR, result.level)
         self.assertEqual(-1.0, result.rank)
         result = results[1]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(0, result.location.start_column)
@@ -154,7 +154,7 @@ def test_ftplib_ftp_user_password(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE003", result.rule_id)
+        self.assertEqual("PRE0003", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(6, result.location.start_column)

tests/unit/rules/python/stdlib/logging/test_insecure_listen_config.py

@@ -21,8 +21,8 @@ def setUp(self):
         )
 
     def test_insecure_listen_config_rule_meta(self):
-        rule = Rule.get_by_id("PRE007")
-        self.assertEqual("PRE007", rule.id)
+        rule = Rule.get_by_id("PRE0007")
+        self.assertEqual("PRE0007", rule.id)
         self.assertEqual("code_injection", rule.name)
         self.assertEqual("", rule.help_url)
         self.assertEqual(True, rule.default_config.enabled)
@@ -38,7 +38,7 @@ def test_insecure_listen_config_empty_args(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(9, result.location.start_column)
@@ -54,7 +54,7 @@ def test_insecure_listen_config_port_verify_as_var(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(5, result.location.start_line)
         self.assertEqual(5, result.location.end_line)
         self.assertEqual(9, result.location.start_column)
@@ -70,7 +70,7 @@ def test_insecure_listen_config_port_verify_none(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(9, result.location.start_column)
@@ -84,7 +84,7 @@ def test_insecure_listen_config_port(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(9, result.location.start_column)
@@ -100,7 +100,7 @@ def test_insecure_listen_config_verify_none_port(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(9, result.location.start_column)
@@ -116,7 +116,7 @@ def test_insecure_listen_config_verify_none(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE007", result.rule_id)
+        self.assertEqual("PRE0007", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(9, result.location.start_column)

tests/unit/rules/python/stdlib/ssl/test_get_server_certificate.py

@@ -21,8 +21,8 @@ def setUp(self):
         )
 
     def test_get_server_certificate_rule_meta(self):
-        rule = Rule.get_by_id("PRE012")
-        self.assertEqual("PRE012", rule.id)
+        rule = Rule.get_by_id("PRE0012")
+        self.assertEqual("PRE0012", rule.id)
         self.assertEqual("inadequate_encryption_strength", rule.name)
         self.assertEqual("", rule.help_url)
         self.assertEqual(True, rule.default_config.enabled)
@@ -36,7 +36,7 @@ def test_get_server_certificate_sslv2(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(63, result.location.start_column)
@@ -56,7 +56,7 @@ def test_get_server_certificate_sslv3(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(63, result.location.start_column)
@@ -70,7 +70,7 @@ def test_get_server_certificate_tlsv1(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(63, result.location.start_column)
@@ -84,7 +84,7 @@ def test_get_server_certificate_tlsv11(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(5, result.location.start_line)
         self.assertEqual(5, result.location.end_line)
         self.assertEqual(40, result.location.start_column)

tests/unit/rules/python/stdlib/ssl/test_ssl_context.py

@@ -21,8 +21,8 @@ def setUp(self):
         )
 
     def test_ssl_context_rule_meta(self):
-        rule = Rule.get_by_id("PRE012")
-        self.assertEqual("PRE012", rule.id)
+        rule = Rule.get_by_id("PRE0012")
+        self.assertEqual("PRE0012", rule.id)
         self.assertEqual("inadequate_encryption_strength", rule.name)
         self.assertEqual("", rule.help_url)
         self.assertEqual(True, rule.default_config.enabled)
@@ -36,7 +36,7 @@ def test_ssl_context_sslv2(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(28, result.location.start_column)
@@ -56,7 +56,7 @@ def test_ssl_context_sslv3(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(28, result.location.start_column)
@@ -70,7 +70,7 @@ def test_ssl_context_tlsv1(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(28, result.location.start_column)
@@ -84,7 +84,7 @@ def test_ssl_context_tlsv11(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE012", result.rule_id)
+        self.assertEqual("PRE0012", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(28, result.location.start_column)

tests/unit/rules/python/stdlib/ssl/test_ssl_create_context.py

@@ -21,8 +21,8 @@ def setUp(self):
         )
 
     def test_unverified_context_rule_meta(self):
-        rule = Rule.get_by_id("PRE011")
-        self.assertEqual("PRE011", rule.id)
+        rule = Rule.get_by_id("PRE0011")
+        self.assertEqual("PRE0011", rule.id)
         self.assertEqual("improper_certificate_validation", rule.name)
         self.assertEqual("", rule.help_url)
         self.assertEqual(True, rule.default_config.enabled)
@@ -36,7 +36,7 @@ def test_create_unverified_context(self):
         )
         self.assertEqual(1, len(results))
         result = results[0]
-        self.assertEqual("PRE011", result.rule_id)
+        self.assertEqual("PRE0011", result.rule_id)
         self.assertEqual(4, result.location.start_line)
         self.assertEqual(4, result.location.end_line)
         self.assertEqual(10, result.location.start_column)