Skip to content

Commit

Permalink
Merge pull request #717 from m-1-k-3/gpt_looping
Browse files Browse the repository at this point in the history 
GPT rating improvements
  • Loading branch information
@m-1-k-3
m-1-k-3 authored Jul 24, 2023
2 parents 4ad8756 + a8d53ee commit 4f82ad6
Show file tree
Hide file tree
Showing 11 changed files with 102 additions and 41 deletions.
7 changes: 7 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,13 @@ For further details on EMBA's system-emulation engine check the [wiki](https://g
sudo ./emba -l ~/log -f ~/firmware -p ./scan-profiles/default-scan-emulation.emba

```
## Quick start with AI-assisted analysis enabled
For further details on EMBA's AI analysis engine check the [wiki](https://github.com/e-m-b-a/emba/wiki/AI-supported-firmware-analysis).
```console
sudo ./emba -l ~/log -f ~/firmware -p ./scan-profiles/default-scan-gpt.emba

```

---
*EMBA* supports multiple testing and reporting [options](https://github.com/e-m-b-a/emba/wiki/Usage#arguments). For more details check the [wiki](https://github.com/e-m-b-a/emba/wiki/Usage).

Expand Down
2 changes: 1 addition & 1 deletion helpers/helpers_emba_defaults.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -71,7 +71,7 @@ set_defaults() {
export QUEST_CONTAINER=""
export GPT_OPTION=0 # 0 -> off 1-> unpayed plan 2 -> no rate-limit
export GPT_QUESTION="For the following code I need you to tell me how an attacker could exploit it and point out all vulnerabilities:"
export MINIMUM_GPT_PRIO=2 # [3 downto 0] 3 -> everything gets checked; 0 -> nothing gets checked
export MINIMUM_GPT_PRIO=1 # everything above this value gets checked

export SHORT_PATH=0 # short paths in cli output
export THREADED=0 # 0 -> single thread
Expand Down
4 changes: 2 additions & 2 deletions helpers/helpers_emba_print.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -834,7 +834,7 @@ print_notification() {
}

# writes inputs into csv for chatgpt
# Args: "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "${GPT_RESPONSE_}"
# Args: "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "${GPT_RESPONSE_}"
write_csv_gpt() {
local CSV_ITEMS=("$@")
if ! [[ -d "$CSV_DIR" ]]; then
Expand All @@ -846,7 +846,7 @@ write_csv_gpt() {
}

# writes inputs into tmp csv for chatgpt
# Args: "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "${GPT_RESPONSE_}"
# Args: "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "${GPT_RESPONSE_}"
write_csv_gpt_tmp() {
local CSV_ITEMS=("$@")
if ! [[ -d "$CSV_DIR" ]]; then
Expand Down
6 changes: 3 additions & 3 deletions modules/F05_qs_resolver.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ F05_qs_resolver() {
grep -q "Q02_openai_question finished" "${LOG_DIR}"/"${MAIN_LOG_FILE}" || sleep 1m
fi

local _GPT_INPUT_FILE_=""
# local _GPT_INPUT_FILE_=""
local GPT_ANCHOR_=""
local _GPT_PRIO_=3
local GPT_QUESTION_=""
Expand All @@ -38,13 +38,13 @@ F05_qs_resolver() {
while IFS=";" read -r COL1_ COL2_ COL3_ COL4_ COL5_ COL6_ COL7_; do
GPT_INPUT_FILE_="${COL1_}"
GPT_ANCHOR_="${COL2_}"
_GPT_PRIO_="${COL3_//GPT-Prio-/}"
_GPT_PRIO_="${COL3_}"
GPT_QUESTION_="${COL4_}"
GPT_OUTPUT_FILE_="${COL5_}"
GPT_TOKENS_="${COL6_//cost\=/}"
GPT_RESPONSE_="${COL7_//\"/}"

print_output "[*] Trying to resolve Anchor=${GPT_ANCHOR_} in Output_file=${GPT_OUTPUT_FILE_}"
print_output "[*] Trying to resolve ${ORANGE}Anchor ${GPT_ANCHOR_}${NC} in ${ORANGE}Output_file ${GPT_OUTPUT_FILE_}${NC}."

if [[ ${GPT_TOKENS_} -ne 0 ]]; then
if ! [ -f "${GPT_OUTPUT_FILE_}" ]; then
Expand Down
2 changes: 1 addition & 1 deletion modules/F50_base_aggregator.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -110,7 +110,7 @@ output_overview() {
fi

if [[ -f "${LOG_DIR}"/"${Q02_LOG}" ]] && [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_RESULTS=$(grep -c "OpenAI responded with the following details" "${LOG_DIR}"/"${Q02_LOG}" || true)
GPT_RESULTS=$(grep -c "AI-assisted analysis results via OpenAI ChatGPT" "${LOG_DIR}"/"${Q02_LOG}" || true)
if [[ "${GPT_RESULTS}" -gt 0 ]]; then
print_output "[+] EMBA AI analysis enabled."
write_link "q02"
Expand Down
74 changes: 55 additions & 19 deletions modules/Q02_openai_question.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,7 @@ Q02_openai_question() {
done
fi

export GTP_CHECKED_ARR=()
while ! grep -q "Testing phase ended" "${LOG_DIR}"/"${MAIN_LOG_FILE}"; do
if [[ "${CHATGPT_RESULT_CNT}" -ge 0 ]]; then
ask_chatgpt
Expand Down Expand Up @@ -64,36 +65,58 @@ ask_chatgpt() {
mkdir "${GPT_FILE_DIR_}"
fi

while IFS=";" read -r COL1_ COL2_ COL3_ COL4_ COL5_ COL6_ COL7_; do
SCRIPT_PATH_TMP_="${COL1_}"
GPT_ANCHOR_="${COL2_}"
GPT_PRIO_="${COL3_//GPT-Prio-/}"
GPT_QUESTION_="${COL4_}"
GPT_OUTPUT_FILE_="${COL5_}"
GPT_TOKENS_="${COL6_//cost\=/}"
GPT_RESPONSE_="${COL7_}"
# generating Array for GPT requests - sorting according the prio in field 3
# this array gets regenerated on every round
readarray -t Q02_OPENAI_QUESTIONS < <(sort -u -k 3 -t ';' -r "${CSV_DIR}/q02_openai_question.csv.tmp")

for (( ELE_INDEX=0; ELE_INDEX<"${#Q02_OPENAI_QUESTIONS[@]}"; ELE_INDEX++ )); do
ELEM="${Q02_OPENAI_QUESTIONS["${ELE_INDEX}"]}"
SCRIPT_PATH_TMP_="$(echo "${ELEM}" | cut -d\; -f1)"

# as we always start with the highest rated entry, we need to check if this entry was already tested:
if [[ " ${GTP_CHECKED_ARR[*]} " =~ ${SCRIPT_PATH_TMP_} ]]; then
print_output "[*] GPT - Already tested ${SCRIPT_PATH_TMP_}" "no_log"
# lets test the next entry
continue
fi

GPT_ANCHOR_="$(echo "${ELEM}" | cut -d\; -f2)"
GPT_PRIO_="$(echo "${ELEM}" | cut -d\; -f3)"
# GPT_PRIO_="${GPT_PRIO_//GPT-Prio-/}"
GPT_QUESTION_="$(echo "${ELEM}" | cut -d\; -f4)"
GPT_OUTPUT_FILE_="$(echo "${ELEM}" | cut -d\; -f5)"
GPT_TOKENS_="$(echo "${ELEM}" | cut -d\; -f6)"
GPT_TOKENS_="${GPT_TOKENS_//cost\=/}"
GPT_RESPONSE_="$(echo "${ELEM}" | cut -d\; -f7)"
GPT_INPUT_FILE_="$(basename "${SCRIPT_PATH_TMP_}")"

# in case we have nothing we are going to move on
[[ -z "${SCRIPT_PATH_TMP_}" ]] && continue
print_output "[*] Trying to check inside ${ORANGE}${LOG_DIR}/firmware${NC}" "no_log"
print_output "[*] Identification of ${ORANGE}${SCRIPT_PATH_TMP_} / ${GPT_INPUT_FILE_}${NC} inside ${ORANGE}${LOG_DIR}/firmware${NC}" "no_log"
SCRIPT_PATH_TMP_="$(find "${LOG_DIR}/firmware" -wholename "*${SCRIPT_PATH_TMP_}")"

# in case we have nothing we are going to move on
! [[ -f "${SCRIPT_PATH_TMP_}" ]] && continue
[[ -f "${SCRIPT_PATH_TMP_}" ]] && cp "${SCRIPT_PATH_TMP_}" "${GPT_FILE_DIR_}/${GPT_INPUT_FILE_}.log"

print_output "[*] Trying to check ${ORANGE}${SCRIPT_PATH_TMP_}${NC} with Question ${ORANGE}${GPT_QUESTION_}${NC}" "no_log"
print_output "[*] Prio for testing is ${GPT_PRIO_}" "no_log"
print_output "[*] AI-Assisted analysis of script ${ORANGE}${SCRIPT_PATH_TMP_}${NC} with question ${ORANGE}${GPT_QUESTION_}${NC}" "no_log"
print_output "[*] Current priority for testing is ${GPT_PRIO_}" "no_log"

if [[ -z ${GPT_RESPONSE_} ]] && [[ ${GPT_PRIO_} -le ${MINIMUM_GPT_PRIO} ]] && [[ "${SCRIPT_PATH_TMP_}" != '' ]]; then
if [[ -z ${GPT_RESPONSE_} ]] && [[ ${GPT_PRIO_} -ge ${MINIMUM_GPT_PRIO} ]] && [[ "${SCRIPT_PATH_TMP_}" != '' ]]; then
if [[ -f "${SCRIPT_PATH_TMP_}" ]]; then
# add navbar-item for file
sub_module_title "${GPT_INPUT_FILE_}"
print_output "[*] Asking ChatGPT about ${ORANGE}$(print_path "${SCRIPT_PATH_TMP_}")${NC}" "" "${GPT_FILE_DIR_}/${GPT_INPUT_FILE_}.log"

print_output "[*] AI-Assisted analysis for ${ORANGE}$(print_path "${SCRIPT_PATH_TMP_}")${NC}" "" "${GPT_FILE_DIR_}/${GPT_INPUT_FILE_}.log"
head -n -2 "${CONFIG_DIR}/gpt_template.json" > "${TMP_DIR}/chat.json"
CHATGPT_CODE_=$(sed 's/\\//g;s/"/\\\"/g' "${SCRIPT_PATH_TMP_}" | tr -d '[:space:]')
printf '"%s %s"\n}]}' "${GPT_QUESTION_}" "${CHATGPT_CODE_}" >> "${TMP_DIR}/chat.json"
print_output "[*] The Combined Cost of the OpenAI request / the length is: ${ORANGE}${#GPT_QUESTION_} + ${#CHATGPT_CODE_}${NC}" "no_log"
if [[ "${#CHATGPT_CODE_}" -gt 4561 ]]; then
print_output "[-] GPT request is too big ... skipping it now"
continue
fi

HTTP_CODE_=$(curl https://api.openai.com/v1/chat/completions -H "Content-Type: application/json" \
-H "Authorization: Bearer ${OPENAI_API_KEY}" \
-d @"${TMP_DIR}/chat.json" -o "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json" --write-out "%{http_code}" || true)
Expand All @@ -104,7 +127,7 @@ ask_chatgpt() {
print_output "[-] ERROR response: $(cat "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json")"

if jq '.error.type' "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json" | grep -q "insufficient_quota" ; then
print_output "[-] Stopping OpenAI requests since the API key has reached its quota"
print_output "[-] Stopping OpenAI requests since the API key has reached its quota limit"
CHATGPT_RESULT_CNT=-1
sleep 20
break
Expand Down Expand Up @@ -132,6 +155,7 @@ ask_chatgpt() {
fi
sleep 1
done
# TODO: now we should redo the last test
else
print_output "[-] Stopping OpenAI requests since the API key has reached its rate_limit"
CHATGPT_RESULT_CNT=-1
Expand All @@ -140,6 +164,9 @@ ask_chatgpt() {
fi

cat "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json" >> "${GPT_FILE_DIR_}/openai_server_errors.log"
readarray -t Q02_OPENAI_QUESTIONS < <(sort -u -k 3 -t ';' -r "${CSV_DIR}/q02_openai_question.csv.tmp")
# reset the array index to start again with the highest rated entry
ELE_INDEX=0
sleep 30s
continue
fi
Expand All @@ -150,16 +177,18 @@ ask_chatgpt() {
print_output "[-] Something went wrong with the ChatGPT request for ${GPT_INPUT_FILE_}"
break
fi

GPT_RESPONSE_=("$(jq '.choices[] | .message.content' "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json")")
GPT_RESPONSE_CLEANED_="${GPT_RESPONSE_[*]//\;/}" #remove ; from response
GPT_TOKENS_=$(jq '.usage.total_tokens' "${TMP_DIR}/${GPT_INPUT_FILE_}_response.json")

if [[ ${GPT_TOKENS_} -ne 0 ]]; then
GTP_CHECKED_ARR+=("${SCRIPT_PATH_TMP_}")
# write new into done csv
write_csv_gpt "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "'${GPT_RESPONSE_CLEANED_//\'/}'"
write_csv_gpt "${GPT_INPUT_FILE_}" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION_}" "${GPT_OUTPUT_FILE_}" "cost=${GPT_TOKENS_}" "'${GPT_RESPONSE_CLEANED_//\'/}'"
# print openai response
print_ln
print_output "[*] ${ORANGE}OpenAI responded with the following details:${NC}"
print_output "[*] ${ORANGE}AI-assisted analysis results via OpenAI ChatGPT:${NC}\\n"
echo -e "${GPT_RESPONSE_[*]}" | tee -a "${LOG_FILE}"
# add proper module link
print_ln
Expand Down Expand Up @@ -187,11 +216,18 @@ ask_chatgpt() {
if [[ "${GPT_OPTION}" -ne 2 ]]; then
sleep 20s
fi
done < "${CSV_DIR}/q02_openai_question.csv.tmp"

# reload q02 results:
print_output "[*] Regenerate analysis array ..." "no_log"
readarray -t Q02_OPENAI_QUESTIONS < <(sort -u -k 3 -t ';' -r "${CSV_DIR}/q02_openai_question.csv.tmp")
# reset the array index to start again with the highest rated entry
ELE_INDEX=0
done

if [[ -f "${CSV_DIR}/q02_openai_question.csv" ]]; then
while IFS=";" read -r COL1_ COL2_ COL3_ COL4_ COL5_ COL6_ COL7_; do
GPT_ANCHOR_="${COL2_}"
local GPT_ENTRY_LINE=""
while read -r GPT_ENTRY_LINE; do
GPT_ANCHOR_="$(echo "${GPT_ENTRY_LINE}" | cut -d ';' -f2)"
sed -i "/${GPT_ANCHOR_}/d" "${CSV_DIR}/q02_openai_question.csv.tmp"
# TODO remove [CHATGPT] line in output file
done < "${CSV_DIR}/q02_openai_question.csv"
Expand Down
4 changes: 2 additions & 2 deletions modules/S15_radare_decompile_checks.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,8 +196,8 @@ radare_decomp_print_top10_statistics() {
if [[ "${GPT_OPTION}" -gt 0 ]]; then
print_output "[*] Asking OpenAI chatbot about ${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt"
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt" "${GPT_ANCHOR}" "GPT-Prio-${GPT_PRIO}" "Can you give me a side by side desciption of the following code in a table, where on the left is the code and on the right the desciption. And please use proper spacing and | to make it terminal friendly:" "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt" "" ""
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt" "${GPT_ANCHOR}" "${GPT_PRIO}" "Can you give me a side by side desciption of the following code in a table, where on the left is the code and on the right the desciption. And please use proper spacing and | to make it terminal friendly:" "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt" "" ""
# add ChatGPT link
printf '%s\n\n' "" >> "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt"
write_anchor_gpt "${GPT_ANCHOR_}" "${LOG_PATH_MODULE}/vul_func_${F_COUNTER}_${FUNCTION}-${SEARCH_TERM}.txt"
Expand Down
23 changes: 19 additions & 4 deletions modules/S20_shell_check.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -115,17 +115,29 @@ S20_shell_check()
s20_eval_script_check() {
local SH_SCRIPTS_=("${@}")
local SH_SCRIPT=""
local GPT_PRIO_=3
local GPT_ANCHOR_=""

sub_module_title "Check shell scripts for eval usage"

for SH_SCRIPT in "${SH_SCRIPTS_[@]}" ; do
print_output "[*] Testing ${ORANGE}${SH_SCRIPT}${NC} for eval usage" "no_log"
if grep "eval " "${SH_SCRIPT}" | grep -q -v "^#.*"; then
SH_SCRIPT_NAME="$(basename "${SH_SCRIPT}")"
local SHELL_LOG="$LOG_PATH_MODULE"/sh_eval_sources/"${SH_SCRIPT_NAME}".log
! [[ -d "$LOG_PATH_MODULE"/sh_eval_sources/ ]] && mkdir "$LOG_PATH_MODULE"/sh_eval_sources/
[[ -f "${SH_SCRIPT}" ]] && cp "${SH_SCRIPT}" "$LOG_PATH_MODULE"/sh_eval_sources/"${SH_SCRIPT_NAME}".log
sed -i -r "s/.*eval\ .*/\x1b[32m&\x1b[0m/" "$LOG_PATH_MODULE"/sh_eval_sources/"${SH_SCRIPT_NAME}".log
print_output "[+] Found ${ORANGE}eval${GREEN} usage in ${ORANGE}${SH_SCRIPT_NAME}${NC}" "" "${LOG_PATH_MODULE}/sh_eval_sources/${SH_SCRIPT_NAME}.log"
[[ -f "${SH_SCRIPT}" ]] && cp "${SH_SCRIPT}" "${SHELL_LOG}"
sed -i -r "s/.*eval\ .*/\x1b[32m&\x1b[0m/" "${SHELL_LOG}"
print_output "[+] Found ${ORANGE}eval${GREEN} usage in ${ORANGE}${SH_SCRIPT_NAME}${NC}" "" "${SHELL_LOG}"

if [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${SH_SCRIPT}")" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION}" "${SHELL_LOG}" "" ""
# add ChatGPT link
printf '%s\n\n' "" >> "${SHELL_LOG}"
write_anchor_gpt "${GPT_ANCHOR_}" "${SHELL_LOG}"
fi
fi
done
}
Expand All @@ -151,6 +163,7 @@ s20_reporter() {
local SHELL_LOG="${3:0}"
local GPT_PRIO_=2
local GPT_ANCHOR_=""

if [[ "$VULNS" -ne 0 ]] ; then
# check if this is common linux file:
local COMMON_FILES_FOUND
Expand All @@ -172,14 +185,16 @@ s20_reporter() {
print_output "[+] Found ""$ORANGE""$VULNS"" issues""$GREEN"" in script ""$COMMON_FILES_FOUND"":""$NC"" ""$(print_path "$SH_SCRIPT")" "" "$SHELL_LOG"
fi
write_csv_log "$(print_path "$SH_SCRIPT")" "$VULNS" "$CFF" "NA"

if [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${SH_SCRIPT}")" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION}" "${SHELL_LOG}" "" ""
write_csv_gpt_tmp "$(cut_path "${SH_SCRIPT}")" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION}" "${SHELL_LOG}" "" ""
# add ChatGPT link
printf '%s\n\n' "" >> "${SHELL_LOG}"
write_anchor_gpt "${GPT_ANCHOR_}" "${SHELL_LOG}"
fi

echo "$VULNS" >> "$TMP_DIR"/S20_VULNS.tmp
fi
}
6 changes: 3 additions & 3 deletions modules/S21_python_check.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,7 +77,7 @@ s21_script_bandit() {
local NAME=""
local PY_LOG=""
local VULNS=""
local GPT_PRIO_=3
local GPT_PRIO_=2
local GPT_ANCHOR_=""

NAME=$(basename "$PY_SCRIPT_" 2> /dev/null | sed -e 's/:/_/g')
Expand Down Expand Up @@ -110,8 +110,8 @@ s21_script_bandit() {
write_csv_log "$(print_path "$PY_SCRIPT_")" "$VULNS" "$CFF" "NA"
if [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${PY_SCRIPT_}")" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION}" "${PY_LOG}" "" ""
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${PY_SCRIPT_}")" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION}" "${PY_LOG}" "" ""
# add ChatGPT link to output file
printf '%s\n\n' "" >> "${PY_LOG}"
write_anchor_gpt "${GPT_ANCHOR_}" "${PY_LOG}"
Expand Down
8 changes: 4 additions & 4 deletions modules/S22_php_check.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -93,7 +93,7 @@ s22_vuln_check_semgrep() {
local SEMG_SOURCE_FILE=""
local SEMG_SOURCE_FILE_NAME=""
local SEMG_LINE_NR=""
local GPT_PRIO_=2
local GPT_PRIO_=3
local GPT_ANCHOR_=""

! [[ -d "$LOG_PATH_MODULE"/semgrep_sources/ ]] && mkdir "$LOG_PATH_MODULE"/semgrep_sources/
Expand All @@ -115,8 +115,8 @@ s22_vuln_check_semgrep() {

if [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${SEMG_SOURCE_FILE}")" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION} And I think there might be something in line ${SEMG_LINE_NR}" "${LOG_PATH_MODULE}/semgrep_sources/${SEMG_SOURCE_FILE_NAME}.log" "" ""
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${SEMG_SOURCE_FILE}")" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION} And I think there might be something in line ${SEMG_LINE_NR}" "${LOG_PATH_MODULE}/semgrep_sources/${SEMG_SOURCE_FILE_NAME}.log" "" ""
# add ChatGPT link
printf '%s\n\n' "" >> "${LOG_PATH_MODULE}/semgrep_sources/${SEMG_SOURCE_FILE_NAME}.log"
write_anchor_gpt "${GPT_ANCHOR_}" "${LOG_PATH_MODULE}/semgrep_sources/${SEMG_SOURCE_FILE_NAME}.log"
Expand Down Expand Up @@ -207,7 +207,7 @@ s22_vuln_check() {
if [[ "${GPT_OPTION}" -gt 0 ]]; then
GPT_ANCHOR_="$(openssl rand -hex 8)"
# "${GPT_INPUT_FILE_}" "$GPT_ANCHOR_" "GPT-Prio-$GPT_PRIO_" "$GPT_QUESTION_" "$GPT_OUTPUT_FILE_" "cost=$GPT_TOKENS_" "$GPT_RESPONSE_"
write_csv_gpt_tmp "$(cut_path "${PHP_SCRIPT_}")" "${GPT_ANCHOR_}" "GPT-Prio-${GPT_PRIO_}" "${GPT_QUESTION}" "${TMP_DIR}/S22_VULNS.tmp" "" ""
write_csv_gpt_tmp "$(cut_path "${PHP_SCRIPT_}")" "${GPT_ANCHOR_}" "${GPT_PRIO_}" "${GPT_QUESTION}" "${TMP_DIR}/S22_VULNS.tmp" "" ""
# add ChatGPT link
printf '%s\n\n' "" >> "${TMP_DIR}"/S22_VULNS.tmp
write_anchor_gpt "${GPT_ANCHOR_}" "${TMP_DIR}"/S22_VULNS.tmp
Expand Down
Loading

0 comments on commit 4f82ad6

Please sign in to comment.