feat(apps::vmware::vsphere8::vcenter::plugin): new plugin

Open omercier opened this issue 8 months ago • 1 comments

Modes:

vm-count
datastore-usage
list-datastores

Description

PLEASE MAKE SURE THAT THE BRANCH PR INCLUDES JIRA TICKET ID

Please include a short resume of the changes and what is the purpose of this pull request. Any relevant information should be added to help reviewers to understand what are the stakes of the pull request.

Fixes # (issue) If you are fixing a github Issue already existing, mention it here. If you are fixing one or more JIRA ticket, mention it here too.

Type of change

[ ] Patch fixing an issue (non-breaking change)
[x] New functionality (non-breaking change)
[ ] Functionality enhancement or optimization (non-breaking change)
[ ] Breaking change (patch or feature) that might cause side effects breaking part of the Software

How this pull request can be tested ?

Please describe the procedure to verify that the goal of the PR is matched. Provide clear instructions so that it can be correctly tested. Mention the automated tests included in this FOR (what they test like mode/option combinations).

Checklist

[ ] I have followed the coding style guidelines provided by Centreon
[ ] I have commented my code, especially hard-to-understand areas of the PR.
[ ] I have rebased my development branch on the base branch (develop).
[ ] In case of a new plugin, I have created the new packaging directory accordingly.
[ ] I have implemented automated tests related to my commits.
- [ ] Data used for automated tests are anonymized.
[ ] I have reviewed all the help messages in all the .pm files I have modified.
- [ ] All sentences begin with a capital letter.
- [ ] All sentences end with a period.
- [ ] I am able to understand all the help messages, if not, exchange with the PO or TW to rewrite them.
[ ] After having created the PR, I will make sure that all the tests provided in this PR have run and passed.

Jun 03 '25 14:06 omercier

Checkmarx One – Scan Summary & Details – b0372a2a-bd0a-4333-ad35-ab3b01b27788

New Issues (24)

Checkmarx found the following issues in this Pull Request

Issue	Source File / Package	Checkmarx Insight
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 27	details The dangerous function, strcpy, was found in use at line 27 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: %2Bs%2BdtOTDTS0pY7f6EWQryJhws9Y%3D` Attack Vector
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 21	details The dangerous function, strcpy, was found in use at line 21 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: fjZBzFlj3A6iYPo7Yb%2BTcoEI0qs%3D` Attack Vector
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 20	details The dangerous function, strcpy, was found in use at line 20 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: xWrpITI%2BsrCHa4fefQHt3WNOM6A%3D` Attack Vector
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 52	details The dangerous function, strcpy, was found in use at line 52 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: gzvBNrCfhraACCZ2YDg0k6foQsk%3D` Attack Vector
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 54	details The dangerous function, strcpy, was found in use at line 54 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: PNP312vMK9lhaLnehIkicEwl9N8%3D` Attack Vector
Dangerous_Functions	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 49	details The dangerous function, strcpy, was found in use at line 49 in /dependencies/perl-filesys-smbclient/src/libauthSamba.c file. Such functions may... `ID: 78IUK8t3ietNFerVhWJJnAMZR4A%3D` Attack Vector
Use_of_Broken_or_Risky_Cryptographic_Algorithm	/as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java: 66	details In decrypt, the application protects sensitive data using a cryptographic algorithm, getInstance, that is considered weak or even trivially broken,... `ID: MFsux2jPCARnm70Vt9zQRR0O278%3D` Attack Vector
Use_of_Broken_or_Risky_Cryptographic_Algorithm	/as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java: 74	details In encrypt, the application protects sensitive data using a cryptographic algorithm, getInstance, that is considered weak or even trivially broken,... `ID: YXdlUT4yNfblbRIR2YuaXF7OffU%3D` Attack Vector
Use_of_Hard_coded_Cryptographic_Key	/as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java: 35	details The variable ""3fe7b4d9e0b50a"" at line 35 of /as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java is assig... `ID: 2MhVgNfoZAP%2BbVWCXkq4GJvATQ0%3D` Attack Vector
Use_of_Hard_coded_Cryptographic_Key	/as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java: 35	details The variable ""3fe7b4d9e0b50a"" at line 35 of /as400/connector.as400/src/main/java/com/centreon/connector/as400/utils/BlowFishUtils.java is assig... `ID: fOokBgPT391Uv7I00Pz5Pl3TfVo%3D` Attack Vector
Heap_Inspection	/as400/connector.as400/src/main/java/com/centreon/connector/as400/parser/OptionFactory.java: 55	details Method addAs400Options at line 55 of /as400/connector.as400/src/main/java/com/centreon/connector/as400/parser/OptionFactory.java defines password... `ID: zgrpr0usveB7%2FWZBkCUUWRoh0qw%3D` Attack Vector
Heap_Inspection	/as400/connector.as400/src/main/java/com/centreon/connector/as400/daemon/MapIdentityManager.java: 75	details Method verifyCredential at line 75 of /as400/connector.as400/src/main/java/com/centreon/connector/as400/daemon/MapIdentityManager.java defines pa... `ID: 0t9ypv09nwBVmOpNx7Dd2SQMNUI%3D` Attack Vector
Heap_Inspection	/as400/connector.as400/src/main/java/com/centreon/connector/as400/daemon/MapIdentityManager.java: 76	details Method verifyCredential at line 76 of /as400/connector.as400/src/main/java/com/centreon/connector/as400/daemon/MapIdentityManager.java defines ex... `ID: Jywe88g%2Bq%2FcWwE78LYohTqX3RCk%3D` Attack Vector
Heap_Inspection	/dependencies/perl-filesys-smbclient/src/libauthSamba.c: 6	details Method at line 6 of /dependencies/perl-filesys-smbclient/src/libauthSamba.c defines Password, which is designated to contain user passwords. H... `ID: E%2F2PQs6mhCM0yRsNsoU77NQx2mA%3D` Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector
Permissive_Regular_Expression	/src/centreon/common/powershell/exchange/powershell.pm: 65	Attack Vector

Fixed Issues (159)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	~~Second_Order_SQL_Injection~~	/src/database/oracle/mode/tablespaceusage.pm: 557
	~~Second_Order_SQL_Injection~~	/src/apps/centreon/sql/mode/multiservices.pm: 380
	~~Second_Order_SQL_Injection~~	/src/apps/centreon/sql/mode/multiservices.pm: 445
	~~Second_Order_SQL_Injection~~	/src/database/oracle/mode/tablespaceusage.pm: 265
	~~Second_Order_SQL_Injection~~	/src/centreon/common/protocols/sql/mode/collection.pm: 219
	~~Second_Order_SQL_Injection~~	/src/apps/backup/arcserve/udp/mssql/mode/jobstatus.pm: 155
	~~Path_Traversal~~	/.github/scripts/plugins-source.container.pl: 21
	~~Path_Traversal~~	/.github/scripts/plugins-source.container.pl: 60
	~~Privacy_Violation~~	/connectors/vmware/src/centreon/script/centreon_vmware.pm: 270
	~~Privacy_Violation~~	/connectors/vmware/src/centreon/script/centreon_vmware.pm: 282
	~~Privacy_Violation~~	/tests/cpan-libraries/json-path.pl: 13
	~~Privacy_Violation~~	/tests/cpan-libraries/json-path.pl: 11
	~~Privacy_Violation~~	/tests/cpan-libraries/json-path.pl: 12
	~~Privacy_Violation~~	/src/cloud/aws/custom/paws.pm: 110
	~~Privacy_Violation~~	/tests/cpan-libraries/json-path.pl: 10
	~~Privacy_Violation~~	/src/cloud/aws/custom/paws.pm: 107
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 210
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 211
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 212
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 127
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 124
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 127
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 124
	~~Privacy_Violation~~	/src/cloud/aws/custom/awscli.pm: 124
	~~Privacy_Violation~~	/src/cloud/aws/custom/paws.pm: 110
	~~Privacy_Violation~~	/src/cloud/aws/custom/paws.pm: 107
	~~Privacy_Violation~~	/src/cloud/aws/custom/paws.pm: 107
	~~Resource_Injection~~	/connectors/vmware/src/centreon/script/centreon_vmware.pm: 669
	~~Use_Of_Hardcoded_Password~~	/tests/cpan-libraries/libssh-session.pl: 83
	~~Use_Of_Hardcoded_Password~~	/src/centreon/plugins/backend/ssh/libssh.pm: 88
	~~Use_Of_Hardcoded_Password~~	/tests/cpan-libraries/crypt-argon2.pl: 8
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/tests/scripts/slim_walk.pl: 225
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/purestorage/flashblade/v2/restapi/custom/api.pm: 127
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/purestorage/flashblade/v2/restapi/custom/api.pm: 124
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/purestorage/flasharray/v2/restapi/custom/api.pm: 127
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/purestorage/flasharray/v2/restapi/custom/api.pm: 124
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/nimble/restapi/custom/api.pm: 147
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/hp/storeonce/4/restapi/custom/api.pm: 123
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/hp/primera/restapi/custom/api.pm: 106
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/hp/p2000/xmlapi/custom/api.pm: 265
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/dell/me4/restapi/custom/api.pm: 142
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/storage/dell/me4/restapi/custom/api.pm: 136
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/network/cisco/meraki/cloudcontroller/restapi/custom/api.pm: 246
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/network/cisco/meraki/cloudcontroller/restapi/custom/api.pm: 232
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/network/cisco/meraki/cloudcontroller/restapi/custom/api.pm: 114
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/cloud/vmware/velocloud/restapi/custom/api.pm: 361
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/cloud/vmware/velocloud/restapi/custom/api.pm: 166
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/vmware/vsphere8/custom/api.pm: 137
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/proxmox/ve/restapi/custom/api.pm: 144
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/veeam/vbem/restapi/custom/api.pm: 233
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/veeam/vbem/restapi/custom/api.pm: 223
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/veeam/vbem/restapi/custom/api.pm: 135
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/rubrik/restapi/custom/api.pm: 196
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/rubrik/restapi/custom/api.pm: 394
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/rubrik/restapi/custom/api.pm: 404
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/rubrik/restapi/custom/api.pm: 193
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/rubrik/restapi/custom/api.pm: 147
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/netapp/snapcenter/restapi/custom/api.pm: 151
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/commvault/commserve/restapi/custom/api.pm: 297
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/commvault/commserve/restapi/custom/api.pm: 276
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/commvault/commserve/restapi/custom/api.pm: 289
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/commvault/commserve/restapi/custom/api.pm: 176
	~~Use_of_Broken_or_Risky_Cryptographic_Algorithm~~	/src/apps/backup/commvault/commserve/restapi/mode/alerts.pm: 149

More results are available on the CxOne platform

Jun 03 '25 14:06 github-actions[bot]