add test description for AWS SecurityHub Scan (DefectDojo#9904)

* add test description for AWS SecurityHub Scan

* ruff, W293

* Update dojo/tools/awssecurityhub/parser.py

Co-authored-by: Charles Neill <[email protected]>

* ruff

---------

Co-authored-by: Charles Neill <[email protected]>

dojo/tools/awssecurityhub/parser.py

@@ -3,9 +3,11 @@
 from dojo.tools.awssecurityhub.compliance import Compliance
 from dojo.tools.awssecurityhub.guardduty import GuardDuty
 from dojo.tools.awssecurityhub.inspector import Inspector
+from dojo.tools.parser_test import ParserTest
 
 
 class AwsSecurityHubParser:
+    ID = "AWS Security Hub"
 
     def get_scan_types(self):
         return ["AWS Security Hub Scan"]
@@ -16,6 +18,26 @@ def get_label_for_scan_types(self, scan_type):
     def get_description_for_scan_types(self, scan_type):
         return "AWS Security Hub exports in JSON format."
 
+    def get_tests(self, scan_type, scan):
+        data = json.load(scan)
+        findings = data.get("Findings", data.get("findings", None))
+        if not isinstance(findings, list):
+            msg = "Incorrect Security Hub report format"
+            raise TypeError(msg)
+        prod = []
+        aws_acc = []
+        for finding in findings:
+            prod.append(finding.get("ProductName", "AWS Security Hub Ruleset"))
+            aws_acc.append(finding.get("AwsAccountId"))
+        report_date = data.get("createdAt")
+        test = ParserTest(
+            name=self.ID, type=self.ID, version=""
+        )
+        test.description = "**AWS Accounts:** " + ', '.join(set(aws_acc)) + "\n"
+        test.description += "**Finding Origins:** " + ', '.join(set(prod)) + "\n"
+        test.findings = self.get_items(data, report_date)
+        return [test]
+
     def get_findings(self, filehandle, test):
         tree = json.load(filehandle)
         if not isinstance(tree, dict):