Merge pull request #207 from CybercentreCanada/feature/whitelist

Feature/whitelist
CybercentreCanada · Jun 24, 2021 · 4bd4def · 4bd4def
2 parents dd8bf08 + 37641b5
commit 4bd4def
Show file tree

Hide file tree

Showing 12 changed files with 842 additions and 31 deletions.
diff --git a/assemblyline_ui/api/v4/file.py b/assemblyline_ui/api/v4/file.py
@@ -491,7 +491,9 @@ def get_file_results(sha256, **kwargs):
 
                 if sec.get('heuristic', False):
                     # Get the heuristics data
-                    if sec['heuristic']['score'] < 100:
+                    if sec['heuristic']['score'] < 0:
+                        h_type = "safe"
+                    elif sec['heuristic']['score'] < 100:
                         h_type = "info"
                     elif sec['heuristic']['score'] < 1000:
                         h_type = "suspicious"
@@ -521,7 +523,7 @@ def get_file_results(sha256, **kwargs):
                 # Process tags
                 for t in sec['tags']:
                     output["tags"].setdefault(t['type'], [])
-                    t_item = (t['value'], h_type)
+                    t_item = (t['value'], h_type, t['safelisted'])
                     if t_item not in output["tags"][t['type']]:
                         output["tags"][t['type']].append(t_item)