First release of open core

2026-04-02 10:57:36 -04:00
parent 1c94f12d1c
commit 084c1321fc
101 changed files with 8812 additions and 17 deletions
--- a/pkg/datastore/db.go
+++ b/pkg/datastore/db.go
@@ -0,0 +1,94 @@
+package datastore
+
+import (
+	"database/sql"
+	"embed"
+	_ "embed"
+	"encoding/json"
+	"log"
+	"time"
+
+	"epigas.gitea.cloud/RiskRancher/core/pkg/domain"
+	_ "github.com/mattn/go-sqlite3"
+)
+
+//go:embed schema.sql
+var schemaSQL string
+
+//go:embed defaults/*.json
+var defaultAdaptersFS embed.FS
+
+func InitDB(filepath string) *sql.DB {
+	dsn := "file:" + filepath + "?_journal=WAL&_timeout=5000&_sync=1&_fk=1"
+
+	db, err := sql.Open("sqlite3", dsn)
+	if err != nil {
+		log.Fatalf("Failed to open database: %v", err)
+	}
+
+	db.SetMaxOpenConns(25)
+	db.SetMaxIdleConns(25)
+	db.SetConnMaxLifetime(5 * time.Minute)
+
+	migrations := []string{
+		schemaSQL,
+	}
+
+	if err := RunMigrations(db, migrations); err != nil {
+		log.Fatalf("Database upgrade failed! Halting boot to protect data: %v", err)
+	}
+
+	SeedAdapters(db)
+
+	return db
+}
+
+// SeedAdapters reads the embedded JSON files and UPSERTs them into SQLite
+func SeedAdapters(db *sql.DB) {
+	files, err := defaultAdaptersFS.ReadDir("defaults")
+	if err != nil {
+		log.Printf("No default adapters found or failed to read: %v", err)
+		return
+	}
+
+	for _, file := range files {
+		data, err := defaultAdaptersFS.ReadFile("defaults/" + file.Name())
+		if err != nil {
+			log.Printf("Failed to read adapter file %s: %v", file.Name(), err)
+			continue
+		}
+
+		var adapter domain.Adapter
+		if err := json.Unmarshal(data, &adapter); err != nil {
+			log.Printf("Failed to parse adapter JSON %s: %v", file.Name(), err)
+			continue
+		}
+
+		query := `
+			INSERT INTO data_adapters (
+				name, source_name, findings_path, mapping_title, 
+				mapping_asset, mapping_severity, mapping_description, mapping_remediation
+			) VALUES (?, ?, ?, ?, ?, ?, ?, ?)
+			ON CONFLICT(name) DO UPDATE SET
+				source_name = excluded.source_name,
+				findings_path = excluded.findings_path,
+				mapping_title = excluded.mapping_title,
+				mapping_asset = excluded.mapping_asset,
+				mapping_severity = excluded.mapping_severity,
+				mapping_description = excluded.mapping_description,
+				mapping_remediation = excluded.mapping_remediation,
+				updated_at = CURRENT_TIMESTAMP;
+		`
+
+		_, err = db.Exec(query,
+			adapter.Name, adapter.SourceName, adapter.FindingsPath, adapter.MappingTitle,
+			adapter.MappingAsset, adapter.MappingSeverity, adapter.MappingDescription, adapter.MappingRemediation,
+		)
+
+		if err != nil {
+			log.Printf("Failed to seed adapter %s to DB: %v", adapter.Name, err)
+		} else {
+			log.Printf("🔌 Successfully loaded adapter: %s", adapter.Name)
+		}
+	}
+}