New command sfdx hardis:org:diagnose:audittrail (#482)

* Doc git clone * doc * Diagnose Audit trail v0 * v0.1 * New command sfdx hardis:org:diagnose:audittrail - New command **sfdx hardis:org:diagnose:audittrail** to detect suspect actions in major orgs - Run by default in org monitoring * Fix notifications bulletpoints * Fix Gitlab provider token collections when in monitoring mode * Fix legacy api notif indentation * Sort actions & users & add more suspect filters * cspell * trvy * [Mega-Linter] Apply linters fixes --------- Co-authored-by: nvuillam <nvuillam@users.noreply.github.com>
hardisgroupcom · Nov 14, 2023 · 051be43 · 051be43
1 parent 1358b6b
commit 051be43
Show file tree

Hide file tree

Showing 15 changed files with 485 additions and 200 deletions.
diff --git a/.github/linters/.cspell.json b/.github/linters/.cspell.json
@@ -71,6 +71,7 @@
     "MYTASK",
     "Metadatas",
     "NOPMD",
+    "Ndays",
     "OOOOOPS",
     "ORGALIAS",
     "Omnichannel",
@@ -111,6 +112,7 @@
     "Transcos",
     "Tuto",
     "Ujut",
+    "Unallowed",
     "Unstash",
     "Upsert",
     "VCAS",
@@ -167,6 +169,7 @@
     "aquasecurity",
     "astran",
     "astrea",
+    "audittrail",
     "authprovider",
     "authproviders",
     "autocleantypes",
@@ -178,6 +181,7 @@
     "boza",
     "buildargs",
     "buildx",
+    "bulletpoints",
     "cacache",
     "calcul",
     "callincallout",
@@ -186,6 +190,7 @@
     "canmodify",
     "caseentitlement",
     "certaines",
+    "changedpassword",
     "changemgmt",
     "checkcoverage",
     "checkcoverage) -- endArgs.indexOf(\"--checkcoverage\"",
@@ -211,6 +216,7 @@
     "cosmiconfig",
     "cours",
     "coverageformatters",
+    "createduser",
     "crta",
     "csvfile",
     "csvfiles",
@@ -256,6 +262,7 @@
     "everytime",
     "excludefilter",
     "excludeprofiles",
+    "excludeusers",
     "failiferror",
     "fflib",
     "fichiers",
@@ -424,6 +431,7 @@
     "keyv",
     "keyvalue",
     "kvdb",
+    "lastndays",
     "lcone",
     "lcov",
     "legacyapi",
@@ -656,6 +664,7 @@
     "trivyignore",
     "twemoji",
     "uitype",
+    "unallowed",
     "unfiled",
     "unicity",
     "uniquement",

diff --git a/.jscpd.json b/.jscpd.json
@@ -15,6 +15,8 @@
     "**/org/data/import.ts",
     "**/README.md",
     "**/commands/hardis/work/**",
+    "**/apex.ts",
+    "**/audittrail.ts",
     "**/freeze.ts",
     "**/unfreeze.ts",
     "**/redis.ts",

diff --git a/.trivyignore b/.trivyignore
@@ -46,6 +46,7 @@ CVE-2023-34104
 CVE-2023-38704
 CVE-2023-45133
 CVE-2023-45857
+CVE-2023-5363
 DS001
 DS002
 DS026

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -4,6 +4,13 @@
 
 Note: Can be used with `sfdx plugins:install sfdx-hardis@beta` and docker image `hardisgroupcom/sfdx-hardis@beta`
 
+## [4.12.0] 2023-11-14
+
+- New command **sfdx hardis:org:diagnose:audittrail** to detect suspect actions in major orgs
+  - Run by default in org monitoring
+- Fix notifications bulletpoints
+- Fix Gitlab provider token collections when in monitoring mode
+
 ## [4.11.0] 2023-11-14
 
 - If QuickDeploy failed, by default do not use delta for a deployment after a merge between a minor and a major branch