export function findingsToGuardianFormat()

in packages/cloudbuster/src/findings.ts [6:30]

• 25 lines of code
• 1 McCabe index (conditional complexity)

export function findingsToGuardianFormat(
	finding: SecurityHubFinding,
): cloudbuster_fsbp_vulnerabilities[] {
	return finding.resources.map((r) => {
		return {
			severity: finding.severity.Label,
			control_id: finding.product_fields.ControlId,
			title: finding.title,
			aws_region: r.Region,
			repo: r.Tags?.['gu:repo'] ?? null,
			stack: r.Tags?.['Stack'] ?? null,
			stage: r.Tags?.Stage ?? null,
			app: r.Tags?.App ?? null,
			first_observed_at: finding.first_observed_at,
			arn: r.Id, // even though we're mapping, I've never observed an FSBP finding with multiple resources,so this will pretty much always be a single-element array
			aws_account_name: finding.aws_account_name,
			aws_account_id: finding.aws_account_id,
			within_sla: isWithinSlaTime(
				finding.first_observed_at,
				stringToSeverity(finding.severity.Label),
			),
			remediation: finding.remediation.Recommendation.Url,
		};
	});
}