Update AWS SecurityHub ASFF Parser to include Impact (#10984)

testaccount90009 · web-flow · commit 6fd69fc74b56 · 2024-10-07T09:14:43.000-05:00
* add impact

add impact since it is unused

* Update test_asff_parser.py

* Update parser.py

* Update parser.py
diff --git a/dojo/tools/asff/parser.py b/dojo/tools/asff/parser.py
@@ -69,8 +69,10 @@ def get_findings(self, file, test):
             if resource_arns:
                 resource_arn_strings = ", ".join(resource_arns)
                 full_description = f"**AWS resource ARN:** {resource_arn_strings}\n\n{control_description}"
+                impact = resource_arn_strings
             else:
                 full_description = control_description
+                impact = None
 
             finding = Finding(
                 title=item.get("Title"),
@@ -81,6 +83,7 @@ def get_findings(self, file, test):
                 severity=self.get_severity(item.get("Severity")),
                 active=active,
                 unique_id_from_tool=item.get("Id"),
+                impact=impact,
             )
 
             if "Resources" in item:
