add pack-safe

Author: rl-maartenb

README.md

@@ -118,6 +118,7 @@ after the build artifact has been created.
 | `REPORT_PATH`             | **Yes**  | The location relative to the checkout where analysis reports will be stored after the scan is finished. The directory specified as `REPORT_PATH` must be empty. |
 | `RL_DIFF_WITH`            | No       | Use this parameter to specify a previously scanned package version to compare (diff) against. |
 | `RL_VERBOSE`              | No       | Set to anything but '' to provide more feedback in the output while running the scan. Disabled by default. |
+| `RL_PACK_SAFE`            | No       | Use this parameter to generate a SAFE archive (report.rl-safe) for the scan. |
 | `RLSECURE_PROXY_SERVER`   | No       | Server name for proxy configuration (IP address or DNS name). |
 | `RLSECURE_PROXY_PORT`     | No       | Network port on the proxy server for proxy configuration. Required if `RLSECURE_PROXY_SERVER` is used. |
 | `RLSECURE_PROXY_USER`     | No       | User name for proxy authentication. |

rl-scanner-cloud-gitlab-include.yml

@@ -36,6 +36,9 @@
 # - RL_DIFF_WITH: optional
 #   Do a diff scan against a previous version in the same Project/Package.
 
+# - RL_PACK_SAFE: optional
+#   Create a RL-SAFE report
+
 # If the local runner needs to access the internet via a proxy we support that using:
 # - RLSECURE_PROXY_SERVER: optional
 # - RLSECURE_PROXY_PORT: optional
@@ -116,7 +119,8 @@ job-reversinglabs-rl-scanner-cloud:
       # - RL_DIFF_WITH: optional, string, default ''.
       #   The DIFF_WITH=<version> van be used to report the differences between 2 versions.
       #   The DIFF_WITH version must have been scanned at a earlier moment (in the same Project/Package)
-      #.
+      # - RL_PACK_SAFE: optional, string, default ''.
+      #
       # E) Additional verbosity can be configured with:
       # - RL_VERBOSE: optional, default '' (anything else will be treated as true)
       #
@@ -130,6 +134,7 @@ job-reversinglabs-rl-scanner-cloud:
       RLPORTAL_GROUP:           ${RLPORTAL_GROUP:-No server name was given}
       RL_PACKAGE_URL:           ${RL_PACKAGE_URL:-No package URL given: no diff scan can be executed}
       RL_DIFF_WITH:             ${RL_DIFF_WITH:-No diff with was requested}
+      RL_PACK_SAFE:             ${RL_PACK_SAFE:-No RL-SAFE archive was requested}
       PACKAGE_PATH:             ${PACKAGE_PATH:-No path specified}
       MY_ARTIFACT_TO_SCAN:      ${MY_ARTIFACT_TO_SCAN:-No artifact specified}
       REPORT_PATH:              ${REPORT_PATH:-No path specified}
@@ -208,6 +213,10 @@ job-reversinglabs-rl-scanner-cloud:
       }
       run_scan_cloud()
       {
+          if [ ! -z "${RL_PACK_SAFE}" ]
+          then
+              RL_PACK_SAFE_STR="--pack-safe"
+          fi
           rl-scan \
               --replace \
               --rl-portal-server="${RLPORTAL_SERVER}" \
@@ -217,6 +226,7 @@ job-reversinglabs-rl-scanner-cloud:
               --file-path="./${PACKAGE_PATH}/${MY_ARTIFACT_TO_SCAN}" \
               --report-path="${REPORT_PATH}" \
               --report-format=all \
+              ${RL_PACK_SAFE_STR} \
               ${DIFF_WITH} 1>1 2>2
           RR=$?
       }