Sourcery refactored main branch #22
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Version 0.39. See CHANGELOG.md
Version 0.43. See CHANGELOG.md
Version 0.44. See CHANGELOG.md
Version 0.44. See CHANGELOG.md
![sourcery-ai[bot]](https://avatars.githubusercontent.com/in/48477?s=60&v=4){kind=small}
certCheck.py
Outdated
Comment on lines
-33
to
+35
| parser = argparse.ArgumentParser(description='Certificate Checker v' + scriptVersion) | ||
| parser = argparse.ArgumentParser( | ||
| description=f'Certificate Checker v{scriptVersion}' | ||
| ) |
Author
There was a problem hiding this comment.
Function parseArguments refactored with the following changes:
- Use f-string instead of string concatenation (
use-fstring-for-concatenation)
Comment on lines
197
to
201
| # Create the json script structure with all the meta data. | ||
| myData = myDetails.combineData(__certResults, __mySystemInfo, __scriptStartTime, __scriptEndTime) | ||
|
|
||
| return myData | ||
| return myDetails.combineData( | ||
| __certResults, __mySystemInfo, __scriptStartTime, __scriptEndTime | ||
| ) |
Author
There was a problem hiding this comment.
Function gatherData refactored with the following changes:
- Inline variable that is immediately returned (
inline-immediately-returned-variable)
This removes the following comments ( why? ):
# Create the json script structure with all the meta data.
certCheck.py
Outdated
Comment on lines
310
to
311
| print(uploadTime + " - " + str(uploadResult)) | ||
| print(f"{uploadTime} - {str(uploadResult)}") |
Author
There was a problem hiding this comment.
Function processQueryFile refactored with the following changes:
- Use f-string instead of string concatenation [×2] (
use-fstring-for-concatenation)
certCheck.py
Outdated
Comment on lines
321
to
322
| if args.contextVariables: | ||
| contextVariables = 1 | ||
| else: | ||
| contextVariables = 0 | ||
|
|
||
| contextVariables = 1 if args.contextVariables else 0 |
Author
There was a problem hiding this comment.
Function processHostname refactored with the following changes:
- Replace if statement with if expression (
assign-if-exp) - Use f-string instead of string concatenation [×2] (
use-fstring-for-concatenation)
| # Determine which context to create | ||
| if __hostinfo['options'] is not None and \ | ||
| "local_untrusted_allow" in __hostinfo['options']: | ||
| "local_untrusted_allow" in __hostinfo['options']: |
Author
There was a problem hiding this comment.
Function certificateModule.getCertificate refactored with the following changes:
- Use f-string instead of string concatenation [×5] (
use-fstring-for-concatenation)
Comment on lines
142
to
144
| certSKI = __sslCertificate.extensions.get_extension_for_oid(ExtensionOID.SUBJECT_KEY_IDENTIFIER) | ||
|
|
||
| return certSKI | ||
| return __sslCertificate.extensions.get_extension_for_oid( | ||
| ExtensionOID.SUBJECT_KEY_IDENTIFIER | ||
| ) |
Author
There was a problem hiding this comment.
Function getCertificateChain.returnCertSKI refactored with the following changes:
- Inline variable that is immediately returned (
inline-immediately-returned-variable)
certificate/getCertificateChain.py
Outdated
Comment on lines
168
to
173
| dataAIA = [x for x in certValue or []] | ||
| for item in dataAIA: | ||
| if item.access_method._name == "caIssuers": | ||
| aiaUriList.append(item.access_location._value) | ||
|
|
||
| dataAIA = list(certValue or []) | ||
| aiaUriList.extend( | ||
| item.access_location._value | ||
| for item in dataAIA | ||
| if item.access_method._name == "caIssuers" | ||
| ) |
Author
There was a problem hiding this comment.
Function getCertificateChain.returnCertAIAList refactored with the following changes:
- Replace identity comprehension with call to collection constructor (
identity-comprehension) - Replace a for append loop with list extend (
for-append-to-extend)
Comment on lines
185
to
243
| if __depth <= self.maxDepth: | ||
| # Retrive the AKI from the certificate. | ||
| certAKI = self.returnCertAKI(__sslCertificate) | ||
| # Retrieve the SKI from the certificate. | ||
| certSKI = self.returnCertSKI(__sslCertificate) | ||
| if __depth > self.maxDepth: | ||
| return | ||
| # Retrive the AKI from the certificate. | ||
| certAKI = self.returnCertAKI(__sslCertificate) | ||
| # Retrieve the SKI from the certificate. | ||
| certSKI = self.returnCertSKI(__sslCertificate) | ||
|
|
||
| # Sometimes the AKI can be none. Lets handle this accordingly. | ||
| if certAKI is not None: | ||
| certAKIValue = certAKI._value.key_identifier | ||
| else: | ||
| certAKIValue = None | ||
|
|
||
| # Get the value of the SKI from certSKI | ||
| certSKIValue = certSKI._value.digest | ||
|
|
||
| # Sometimes the AKI can be none. Lets handle this accordingly. | ||
| if certAKIValue is not None: | ||
| aiaUriList = self.returnCertAIAList(__sslCertificate) | ||
| if aiaUriList != []: | ||
| # Iterate through the aiaUriList list. | ||
| for item in aiaUriList: | ||
| # get the certificate for the item element. | ||
| nextCert = self.getCertificateFromUri(item) | ||
|
|
||
| # If the certificate is not none (great), append it to the certChain, increase the __depth and run the walkTheChain subroutine again. | ||
| if nextCert is not None: | ||
| self.certChain.append(nextCert) | ||
| __depth += 1 | ||
| self.walkTheChain(nextCert, __depth) | ||
| else: | ||
| print("Could not retrieve certificate.") | ||
| sys.exit(1) | ||
| else: | ||
| """Now we have to go on a hunt to find the root from a standard root store.""" | ||
| print("Certificate didn't have AIA...ruh roh.") | ||
|
|
||
| # Load the Root CA Cert Chain. | ||
| caRootStore = self.loadRootCACertChain("cacert.pem") | ||
|
|
||
| # Assume we cannot find a Root CA | ||
| rootCACN = None | ||
|
|
||
| # Iterate through the caRootStore object. | ||
| for rootCA in caRootStore: | ||
| try: | ||
| rootCACertificatePEM = caRootStore[rootCA] | ||
| rootCACertificate = x509.load_pem_x509_certificate(rootCACertificatePEM.encode('ascii')) | ||
| rootCASKI = self.returnCertSKI(rootCACertificate) | ||
| rootCASKI_Value = rootCASKI._value.digest | ||
| if rootCASKI_Value == certAKIValue: | ||
| rootCACN = rootCA | ||
| print(f"Root CA Found - {rootCACN}") | ||
| self.certChain.append(rootCACertificate) | ||
| break | ||
| except x509.extensions.ExtensionNotFound: | ||
| # Apparently some Root CA's don't have a SKI? | ||
| pass | ||
|
|
||
| if rootCACN is None: | ||
| print("ERROR - Root CA NOT found.") | ||
| certAKIValue = certAKI._value.key_identifier if certAKI is not None else None | ||
| # Get the value of the SKI from certSKI | ||
| certSKIValue = certSKI._value.digest | ||
|
|
||
| # Sometimes the AKI can be none. Lets handle this accordingly. | ||
| if certAKIValue is not None: | ||
| aiaUriList = self.returnCertAIAList(__sslCertificate) | ||
| if aiaUriList != []: | ||
| # Iterate through the aiaUriList list. | ||
| for item in aiaUriList: | ||
| # get the certificate for the item element. | ||
| nextCert = self.getCertificateFromUri(item) | ||
|
|
||
| # If the certificate is not none (great), append it to the certChain, increase the __depth and run the walkTheChain subroutine again. | ||
| if nextCert is not None: | ||
| self.certChain.append(nextCert) | ||
| __depth += 1 | ||
| self.walkTheChain(nextCert, __depth) | ||
| else: | ||
| print("Could not retrieve certificate.") | ||
| sys.exit(1) | ||
| else: | ||
| """Now we have to go on a hunt to find the root from a standard root store.""" | ||
| print("Certificate didn't have AIA...ruh roh.") | ||
|
|
||
| # Load the Root CA Cert Chain. | ||
| caRootStore = self.loadRootCACertChain("cacert.pem") | ||
|
|
||
| # Assume we cannot find a Root CA | ||
| rootCACN = None | ||
|
|
||
| # Iterate through the caRootStore object. | ||
| for rootCA in caRootStore: | ||
| try: | ||
| rootCACertificatePEM = caRootStore[rootCA] | ||
| rootCACertificate = x509.load_pem_x509_certificate(rootCACertificatePEM.encode('ascii')) | ||
| rootCASKI = self.returnCertSKI(rootCACertificate) | ||
| rootCASKI_Value = rootCASKI._value.digest | ||
| if rootCASKI_Value == certAKIValue: | ||
| rootCACN = rootCA | ||
| print(f"Root CA Found - {rootCACN}") | ||
| self.certChain.append(rootCACertificate) | ||
| break | ||
| except x509.extensions.ExtensionNotFound: | ||
| # Apparently some Root CA's don't have a SKI? | ||
| pass | ||
|
|
||
| if rootCACN is None: | ||
| print("ERROR - Root CA NOT found.") | ||
| sys.exit(1) |
Author
There was a problem hiding this comment.
Function getCertificateChain.walkTheChain refactored with the following changes:
- Add guard clause (
last-if-guard) - Replace if statement with if expression (
assign-if-exp)
certificate/getCertificateChain.py
Outdated
Comment on lines
264
to
262
| for counter, certificateItem in enumerate(myCertChain): | ||
| for certificateItem in myCertChain: |
Author
There was a problem hiding this comment.
Function getCertificateChain.writeChainToFile refactored with the following changes:
- Remove unnecessary calls to
enumeratewhen the index is not used (remove-unused-enumerate)
Comment on lines
39
to
46
| for field in myDateTime: | ||
| if myDateTime[field] > 1: | ||
| for field, value in myDateTime.items(): | ||
| if value > 1: | ||
| humanReadable = f"{myDateTime[field]} {field}" | ||
| timeYMDHMS.append(humanReadable) | ||
| else: | ||
| if myDateTime[field] == 1: | ||
| humanReadable = f"{myDateTime[field]} {field[:-1]}" | ||
| timeYMDHMS.append(humanReadable) | ||
| myDateTimeString = ', '.join(timeYMDHMS) | ||
|
|
||
| # Return the human readable form string. | ||
| return myDateTimeString | ||
| elif myDateTime[field] == 1: | ||
| humanReadable = f"{myDateTime[field]} {field[:-1]}" | ||
| timeYMDHMS.append(humanReadable) | ||
| return ', '.join(timeYMDHMS) |
Author
There was a problem hiding this comment.
Function calculateStats.convertTimeIntoHumanReadable refactored with the following changes:
- Use items() to directly unpack dictionary values (
use-dict-items) - Inline variable that is immediately returned (
inline-immediately-returned-variable) - Merge else clause's nested if statement into elif (
merge-else-if-into-elif)
This removes the following comments ( why? ):
# Return the human readable form string.
data/calculateStats.py
Outdated
Comment on lines
96
to
98
| if lowestCertificateTemplateTime > item["certificateTemplateTime"]: | ||
| lowestCertificateTemplateTime = item["certificateTemplateTime"] | ||
|
|
||
| lowestCertificateTemplateTime = min( | ||
| lowestCertificateTemplateTime, item["certificateTemplateTime"] | ||
| ) | ||
| # Calculate highest certificate template time. | ||
| if highestCertificateTemplateTime < item["certificateTemplateTime"]: | ||
| highestCertificateTemplateTime = item["certificateTemplateTime"] | ||
|
|
||
| highestCertificateTemplateTime = max( | ||
| highestCertificateTemplateTime, item["certificateTemplateTime"] | ||
| ) |
Author
There was a problem hiding this comment.
Function calculateStats.calculateStatistics refactored with the following changes:
- Replace comparison with min/max call [×2] (
min-max-identity)
Comment on lines
-173
to
+169
| # Create the json script structure with all the meta data. | ||
| myData = { | ||
| return { |
Author
There was a problem hiding this comment.
Function calculateStats.combineData refactored with the following changes:
- Inline variable that is immediately returned (
inline-immediately-returned-variable)
This removes the following comments ( why? ):
# Create the json script structure with all the meta data.
data/certData.py
Outdated
| tmpData = ['URL Redirects too many'] | ||
| except requests.exceptions.ConnectionError: | ||
| print('Could not connect to URL - ' + fileURL + '\n') | ||
| print(f'Could not connect to URL - {fileURL}' + '\n') |
Author
There was a problem hiding this comment.
Function certData.getFileFromURL refactored with the following changes:
- Use f-string instead of string concatenation (
use-fstring-for-concatenation)
| line, options = line.split('[', 1) | ||
| # Remove the closing bracket and convert to a list | ||
| options = ast.literal_eval('[' + options) | ||
| options = ast.literal_eval(f'[{options}') |
Author
There was a problem hiding this comment.
Function certData.parse_line refactored with the following changes:
- Use f-string instead of string concatenation (
use-fstring-for-concatenation)
Comment on lines
98
to
109
| elif path.exists(queriesFile) and not (queriesFile.startswith('http://') or queriesFile.startswith('https://')): | ||
| elif ( | ||
| path.exists(queriesFile) | ||
| and not queriesFile.startswith('http://') | ||
| and not queriesFile.startswith('https://') | ||
| ): | ||
| with open(queriesFile, "r", encoding="utf-8") as f_queryFile: | ||
| queryFile = f_queryFile.readlines() | ||
| for line in queryFile: | ||
| hostEntry = certData.parse_line(line) | ||
| queries.append(hostEntry) | ||
| else: | ||
| print('I cannot get file ' + queriesFile) | ||
| print(f'I cannot get file {queriesFile}') |
Author
There was a problem hiding this comment.
Function certData.loadQueriesFile refactored with the following changes:
- Simplify logical expression using De Morgan identities (
de-morgan) - Use f-string instead of string concatenation (
use-fstring-for-concatenation)
Comment on lines
-34
to
+38
| __myDeviceId = "" | ||
| if "myDeviceId" in self.myConfigJson: | ||
| __myDeviceId = self.myConfigJson["myDeviceId"] | ||
| return __myDeviceId | ||
| return ( | ||
| self.myConfigJson["myDeviceId"] | ||
| if "myDeviceId" in self.myConfigJson | ||
| else "" | ||
| ) |
Author
There was a problem hiding this comment.
Function systemInfo.getDeviceId refactored with the following changes:
- Move setting of default value for variable into
elsebranch (introduce-default-else) - Replace if statement with if expression (
assign-if-exp) - Inline variable that is immediately returned (
inline-immediately-returned-variable)
Comment on lines
-41
to
+42
| __myTags = [] | ||
|
|
||
| # First check to see if the myTags element is in the myConfigJson variable. | ||
| if "myTags" in self.myConfigJson: | ||
| __myTags = self.myConfigJson["myTags"] | ||
|
|
||
| # Return the value of __myTags | ||
| return __myTags | ||
| return self.myConfigJson["myTags"] if "myTags" in self.myConfigJson else [] |
Author
There was a problem hiding this comment.
Function systemInfo.getTag refactored with the following changes:
- Move setting of default value for variable into
elsebranch (introduce-default-else) - Replace if statement with if expression (
assign-if-exp) - Inline variable that is immediately returned (
inline-immediately-returned-variable)
This removes the following comments ( why? ):
# First check to see if the myTags element is in the myConfigJson variable.
# Return the value of __myTags
Comment on lines
98
to
92
| result = False | ||
| if "myTenantId" in __myConfigJson and __myConfigJson["myTenantId"] != "": | ||
| result = True | ||
| return result | ||
| return "myTenantId" in __myConfigJson and __myConfigJson["myTenantId"] != "" |
Author
There was a problem hiding this comment.
Function systemInfo.checkMyTenantId refactored with the following changes:
- Move setting of default value for variable into
elsebranch (introduce-default-else) - Simplify boolean if expression (
boolean-if-exp-identity) - Replace if statement with if expression (
assign-if-exp) - Remove unnecessary casts to int, str, float or bool (
remove-unnecessary-cast) - Inline variable that is immediately returned (
inline-immediately-returned-variable)
Comment on lines
-110
to
+101
| result = bool("myTags" in __myConfigJson) | ||
| return result | ||
| return "myTags" in __myConfigJson |
Author
There was a problem hiding this comment.
Function systemInfo.checkMyTags refactored with the following changes:
- Inline variable that is immediately returned (
inline-immediately-returned-variable) - Remove unnecessary casts to int, str, float or bool (
remove-unnecessary-cast)
Comment on lines
120
to
110
| result = False | ||
| if "myDeviceId" in __myConfigJson and __myConfigJson["myDeviceId"] != "": | ||
| result = True | ||
| return result | ||
| return "myDeviceId" in __myConfigJson and __myConfigJson["myDeviceId"] != "" |
Author
There was a problem hiding this comment.
Function systemInfo.checkMyDeviceId refactored with the following changes:
- Move setting of default value for variable into
elsebranch (introduce-default-else) - Simplify boolean if expression (
boolean-if-exp-identity) - Replace if statement with if expression (
assign-if-exp) - Remove unnecessary casts to int, str, float or bool (
remove-unnecessary-cast) - Inline variable that is immediately returned (
inline-immediately-returned-variable)
TheScriptGuy
force-pushed
the
main
branch
2 times, most recently
from
389d558 to
da7c802
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Branch
mainrefactored by Sourcery.If you're happy with these changes, merge this Pull Request using the Squash and merge strategy.
See our documentation here.
Run Sourcery locally
Reduce the feedback loop during development by using the Sourcery editor plugin:
Review changes via command line
To manually merge these changes, make sure you're on the
mainbranch, then run:Help us improve this pull request!