Init

Signed-off-by: Hadi <112569860+anotherhadi@users.noreply.github.com>

internal/db/findings.go

@@ -0,0 +1,63 @@
+package db
+
+import "time"
+
+var findingTimeFormats = []string{time.RFC3339, "2006-01-02 15:04:05"}
+
+type Finding struct {
+	ID          int64
+	PluginName  string
+	DedupKey    string
+	Title       string
+	Description string
+	Severity    string
+	CreatedAt   time.Time
+}
+
+// UpsertFinding inserts the finding if the (plugin_name, dedup_key) pair does
+// not already exist. Returns true when the row was actually inserted.
+func (d *DB) UpsertFinding(f Finding) (bool, error) {
+	res, err := d.conn.Exec(
+		`INSERT OR IGNORE INTO findings (plugin_name, dedup_key, title, description, severity, dismissed, created_at)
+		 VALUES (?, ?, ?, ?, ?, 0, ?)`,
+		f.PluginName, f.DedupKey, f.Title, f.Description, f.Severity,
+		f.CreatedAt.UTC().Format(time.RFC3339),
+	)
+	if err != nil {
+		return false, err
+	}
+	n, _ := res.RowsAffected()
+	return n > 0, nil
+}
+
+func (d *DB) LoadFindings() ([]Finding, error) {
+	rows, err := d.conn.Query(
+		`SELECT id, plugin_name, dedup_key, title, description, severity, created_at
+		 FROM findings WHERE dismissed = 0 ORDER BY id DESC`,
+	)
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+	var out []Finding
+	for rows.Next() {
+		var f Finding
+		var ts string
+		if err := rows.Scan(&f.ID, &f.PluginName, &f.DedupKey, &f.Title, &f.Description, &f.Severity, &ts); err != nil {
+			return nil, err
+		}
+		for _, layout := range findingTimeFormats {
+			if t, err := time.Parse(layout, ts); err == nil {
+				f.CreatedAt = t
+				break
+			}
+		}
+		out = append(out, f)
+	}
+	return out, rows.Err()
+}
+
+func (d *DB) DismissFinding(id int64) error {
+	_, err := d.conn.Exec(`UPDATE findings SET dismissed = 1 WHERE id = ?`, id)
+	return err
+}