DefectDojo
diff --git a/‎dojo/tools/zora/__init__.py‎
Lines changed: 1 addition & 0 deletions b/‎dojo/tools/zora/__init__.py‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎dojo/tools/zora/parser.py‎
Lines changed: 62 additions & 0 deletions b/‎dojo/tools/zora/parser.py‎
Lines changed: 62 additions & 0 deletions
diff --git a/‎unittests/scans/zora/scan_empty.csv‎
Lines changed: 1 addition & 0 deletions b/‎unittests/scans/zora/scan_empty.csv‎
Lines changed: 1 addition & 0 deletions
@@ -0,0 +1 @@
+__author__ = "manuel-sommer"
@@ -0,0 +1,62 @@
+
+import csv
+import logging
+
+from dojo.models import Finding, Test
+
+logger = logging.getLogger(__name__)
+
+
+class ZoraParser:
+
+    """Parser for Zora combined CSV export."""
+
+    def get_scan_types(self):
+        return ["Zora Parser"]
+
+    def get_label_for_scan_types(self, scan_type):
+        return "Zora Parser"
+
+    def get_description_for_scan_types(self, scan_type):
+        return "Zora Parser scan results in csv file format."
+
+    def get_findings(self, test: Test, reader: csv.DictReader) -> list[Finding]:
+        findings = []
+
+        for row in reader:
+            title = row.get("title")
+            severity = row.get("severity", "Info").capitalize()
+
+            # Build description using correct headers
+            description = f"**Source**: {row.get('source')}\n"
+            description += f"**Image**: {row.get('image')}\n"
+            description += f"**ID**: {row.get('id')}\n"
+            description += f"**Details**: {row.get('description')}\n"
+            if row.get("fixVersion"):
+                description += f"**Fix Version**: {row.get('fixVersion')}\n"
+
+            mitigation = row.get("description", "")
+            unique_id = f"{row.get('source')}-{row.get('image')}-{row.get('id')}"
+
+            # Determine status
+            status = row.get("status", "").upper()
+            is_mitigated = status in {"PASS", "OK", "FIXED"}
+
+            # Determine if fix is available
+            fix_available = bool(row.get("fixVersion"))
+
+            findings.append(
+                Finding(
+                    title=title,
+                    description=description,
+                    severity=severity,
+                    mitigation=mitigation,
+                    static_finding=False,
+                    dynamic_finding=True,
+                    unique_id_from_tool=unique_id,
+                    test=test,
+                    is_mitigated=is_mitigated,
+                    fix_available=fix_available,
+                ),
+            )
+        return findings
@@ -0,0 +1 @@
+source,checkID,title,severity,status,remediation
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+source,checkID,title,severity,status,remediation`