delete ThreatImpact from e2etests, scripts

dejima-shikou · dejima-shikou · commit 5f965c9a91c7 · 2024-12-13T15:36:14.000+09:00
diff --git a/e2etests/constants.py b/e2etests/constants.py
@@ -55,7 +55,6 @@
     "topic_id": uuid4(),
     "title": "topic one",
     "abstract": "abstract one",
-    "threat_impact": 1,
     "tags": [TAG1],
     "misp_tags": [MISPTAG1],
     "actions": [],
@@ -64,7 +63,6 @@
     "topic_id": uuid4(),
     "title": "topic two",
     "abstract": "abstract two",
-    "threat_impact": 2,
     "tags": [TAG1],
     "misp_tags": [],
     "actions": [],
@@ -73,7 +71,6 @@
     "topic_id": uuid4(),
     "title": "topic three",
     "abstract": "abstract three",
-    "threat_impact": 1,
     "tags": [TAG1, TAG3],
     "misp_tags": [],
     "actions": [],
@@ -82,7 +79,6 @@
     "topic_id": uuid4(),
     "title": "topic four",
     "abstract": "abstract four",
-    "threat_impact": 2,
     "tags": [TAG3],
     "misp_tags": [],
     "actions": [],
diff --git a/scripts/get_misp_status.py b/scripts/get_misp_status.py
@@ -284,7 +284,6 @@ def main(args: argparse.Namespace) -> None:
         print(f"==[ {idx} ]==")
         print(f"Title: {topic['title']}")
         print(f"TopicID: {topic['topic_id']}")
-        print(f"ThreatImpact: {impact_labels.get(topic['threat_impact'])}")
         print("Artifact tags & statuses")
         str_statuses = []
         for status in statuses:
diff --git a/scripts/sample-data/topics.json b/scripts/sample-data/topics.json
@@ -3,7 +3,6 @@
     "topic_id": "4c7807ea-2b97-47e5-b499-6d893e44d6a7",
     "title": "npmjs-websocket-extensions: ReDoS vulnerability in Sec-WebSocket-Extensions parser",
     "abstract": "websocket-extensions npm module prior to 0.1.4 allows Denial of Service (DoS) via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other character. This could be abused by an attacker to conduct Regex Denial Of Service (ReDoS) on a single-threaded server by providing a malicious payload with the Sec-WebSocket-Extensions header.",
-    "threat_impact": 2,
     "tags": ["websocket-extensions:npm:"],
     "misp_tags": ["CVE-2020-7662"],
     "zone_names": [],
@@ -38,7 +37,6 @@
     "topic_id": "fdd35bfb-f47c-4275-b1bc-e6e34ea8cf80",
     "title": "A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments  ...",
     "abstract": "A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.",
-    "threat_impact": 3,
     "tags": ["pygments:pypi:"],
     "misp_tags": ["CVE-2022-40896"],
     "zone_names": [],
diff --git a/scripts/trivydb2tc.py b/scripts/trivydb2tc.py
@@ -533,7 +533,6 @@ def main() -> None:
                     abstract = "\n".join(vuln_details["References"])
                 else:
                     abstract = "There is no description."
-                severity = vuln_details["Severity"]
 
                 if (
                     "CVSS" in vuln_details
@@ -547,7 +546,6 @@ def main() -> None:
             else:
                 title = vuln_id
                 abstract = "This Vuln is not yet published."
-                severity = "UNKNOWN"
                 cvss_v3_score = None
             if vuln_content["tags"]:
                 tags = list(vuln_content["tags"])
@@ -568,11 +566,9 @@ def main() -> None:
                 for x in vuln_content["actions"].values()
             ]
 
-            convert_impact = {"CRITICAL": 1, "HIGH": 2, "MEDIUM": 3, "LOW": 3, "UNKNOWN": 4}
             topics[topic_id] = {
                 "title": title,
                 "abstract": abstract,
-                "threat_impact": convert_impact.get(severity, 4),
                 "tags": tags,
                 "misp_tags": misp_tags,
                 "actions": actions,
