feat: run ui

Dockerfile

@@ -7,7 +7,7 @@ RUN apt-get update && \
     git \
     nodejs \
     npm && \
-    npm install -g npm@latest && \
+    npm install -g npm@9.6.7 && \
     apt-get clean && \
     rm -rf /var/lib/apt/lists/*
 
@@ -25,4 +25,4 @@ COPY . .
 EXPOSE 7860
 
 # Set the command to run the Gradio app
-CMD ["python", "agentpimentbleu/app/app.py"]
+CMD ["python", "main.py", "ui"]

agentpimentbleu/app/app.py

@@ -21,37 +21,37 @@ API_URL = os.environ.get("APB_API_URL", "http://127.0.0.1:8000")
 def scan_repository(repo_source: str) -> Tuple[str, str]:
     """
     Scan a repository for vulnerabilities.
-    
+
     Args:
         repo_source (str): URL or local path to the repository
-        
+
     Returns:
         Tuple[str, str]: Formatted results as Markdown and raw JSON
     """
     logger.info(f"Scanning repository: {repo_source}")
-    
+
     try:
         # Prepare the payload
         payload = {"repo_source": repo_source}
-        
+
         # Make the API request
         response = requests.post(f"{API_URL}/scan/", json=payload)
-        
+
         # Check if the request was successful
         if response.status_code == 200:
             # Parse the JSON response
             result = response.json()
-            
+
             # Format the results as Markdown
             markdown_result = format_results_as_markdown(result)
-            
+
             # Return both the formatted results and the raw JSON
             return markdown_result, json.dumps(result, indent=2)
         else:
             error_message = f"Error: {response.status_code} - {response.text}"
             logger.error(error_message)
             return f"## Error\n\n{error_message}", "{}"
-            
+
     except Exception as e:
         error_message = f"Error scanning repository: {e}"
         logger.error(error_message)
@@ -61,86 +61,86 @@ def scan_repository(repo_source: str) -> Tuple[str, str]:
 def format_results_as_markdown(result: dict) -> str:
     """
     Format scan results as Markdown.
-    
+
     Args:
         result (dict): Scan results
-        
+
     Returns:
         str: Formatted results as Markdown
     """
     # Start with a header
     markdown = f"# Scan Results for {result.get('repo_source', 'Unknown Repository')}\n\n"
-    
+
     # Add scan status
     markdown += f"**Status:** {result.get('status', 'Unknown')}\n\n"
-    
+
     # Add overall summary if available
     if result.get('overall_summary'):
         markdown += f"**Summary:** {result['overall_summary']}\n\n"
-    
+
     # Add error message if available
     if result.get('error_message'):
         markdown += f"**Error:** {result['error_message']}\n\n"
         return markdown
-    
+
     # Add SCA results if available
     sca_results = result.get('sca_results')
     if sca_results:
         markdown += "## Software Composition Analysis (SCA) Results\n\n"
-        
+
         # Add dependency file information if available
         if sca_results.get('dependency_file_found'):
             markdown += f"**Dependency File:** {sca_results['dependency_file_found']}\n\n"
-        
+
         # Add issues summary if available
         if sca_results.get('issues_summary'):
             markdown += f"**Issues Summary:** {sca_results['issues_summary']}\n\n"
-        
+
         # Add vulnerabilities if available
         vulnerabilities = sca_results.get('vulnerabilities', [])
         if vulnerabilities:
             markdown += f"### Vulnerabilities ({len(vulnerabilities)})\n\n"
-            
+
             for i, vuln in enumerate(vulnerabilities, 1):
                 markdown += f"#### {i}. {vuln.get('package_name', 'Unknown Package')} - {vuln.get('cve_id', 'Unknown CVE')}\n\n"
-                
+
                 # Add CVE link if available
                 if vuln.get('cve_link'):
                     markdown += f"**CVE Link:** [{vuln['cve_id']}]({vuln['cve_link']})\n\n"
-                
+
                 # Add CVE description if available
                 if vuln.get('cve_description'):
                     markdown += f"**Description:** {vuln['cve_description']}\n\n"
-                
+
                 # Add version information
                 markdown += f"**Vulnerable Version Range:** {vuln.get('vulnerable_version_range', 'Unknown')}\n"
                 markdown += f"**Analyzed Project Version:** {vuln.get('analyzed_project_version', 'Unknown')}\n\n"
-                
+
                 # Add danger rating
                 markdown += f"**Danger Rating:** {vuln.get('danger_rating', 'Unknown')}\n\n"
-                
+
                 # Add impact summary
                 if vuln.get('impact_in_project_summary'):
                     markdown += f"**Impact:** {vuln['impact_in_project_summary']}\n\n"
-                
+
                 # Add evidence if available
                 if vuln.get('evidence') and vuln['evidence'][0] != 'No evidence available':
                     markdown += "**Evidence:**\n\n"
                     for evidence in vuln['evidence']:
                         markdown += f"```\n{evidence}\n```\n\n"
-                
+
                 # Add fix information
                 if vuln.get('proposed_fix_summary'):
                     markdown += f"**Proposed Fix:** {vuln['proposed_fix_summary']}\n\n"
-                
+
                 if vuln.get('detailed_fix_guidance'):
                     markdown += f"**Detailed Guidance:** {vuln['detailed_fix_guidance']}\n\n"
-                
+
                 # Add separator between vulnerabilities
                 markdown += "---\n\n"
         else:
             markdown += "No vulnerabilities found.\n\n"
-    
+
     return markdown
 
 
@@ -149,13 +149,13 @@ with gr.Blocks(title="AgentPimentBleu - Smart Security Scanner") as app:
     gr.Markdown("# AgentPimentBleu - Smart Security Scanner for Git Repositories")
     gr.Markdown("""
     Enter a Git repository URL or a local path to an example project to scan for vulnerabilities.
-    
+
     Example inputs:
     - `https://github.com/username/repository`
     - `examples/python_example_vulnerable_project_1`
     - `examples/javascript_example_vulnerable_project_1`
     """)
-    
+
     with gr.Row():
         repo_input = gr.Textbox(
             label="Repository URL or Local Path",
@@ -163,13 +163,13 @@ with gr.Blocks(title="AgentPimentBleu - Smart Security Scanner") as app:
             lines=1
         )
         scan_button = gr.Button("Scan Repository", variant="primary")
-    
+
     with gr.Row():
         with gr.Column():
             results_md = gr.Markdown(label="Scan Results")
         with gr.Column():
             results_json = gr.JSON(label="Raw JSON Output")
-    
+
     scan_button.click(
         fn=scan_repository,
         inputs=repo_input,
@@ -178,4 +178,4 @@ with gr.Blocks(title="AgentPimentBleu - Smart Security Scanner") as app:
 
 
 if __name__ == "__main__":
-    app.launch()
+    app.launch(server_name="0.0.0.0")

agentpimentbleu/config/settings.yaml

@@ -4,10 +4,10 @@
 llm_providers:
   gemini:
     api_key: 'YOUR_GEMINI_API_KEY'
-    model: 'gemini-pro'
+    model: 'gemini-2.0-flash'
   ollama:
     base_url: 'http://localhost:11434'
-    model: 'llama2'
+    model: 'llama3.2:1b'
 
 # Dependency Parsers Configuration
 dependency_parsers:

agentpimentbleu/core/graphs/sca_impact_graph.py

@@ -4,7 +4,7 @@ AgentPimentBleu - SCA Impact Graph
 This module defines the LangGraph for SCA and impact analysis.
 """
 
-from typing import Dict, List, Optional, TypedDict, Partial, Any, Callable
+from typing import Dict, List, Optional, TypedDict, Any, Callable
 import os
 
 from langgraph.graph import StateGraph, END
@@ -37,7 +37,7 @@ class ScaImpactState(TypedDict, total=False):
     error_message: Optional[str]  # Error message if any
 
 
-def prepare_scan_environment(state: ScaImpactState) -> Partial[ScaImpactState]:
+def prepare_scan_environment(state: ScaImpactState) -> Dict[str, Any]:
     """
     Prepare the scan environment by cloning the repository.
 
@@ -45,7 +45,7 @@ def prepare_scan_environment(state: ScaImpactState) -> Partial[ScaImpactState]:
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info(f"Preparing scan environment for {state['repo_source']}")
 
@@ -67,7 +67,7 @@ def prepare_scan_environment(state: ScaImpactState) -> Partial[ScaImpactState]:
         return {"cloned_repo_path": None, "error_message": error_message}
 
 
-def identify_project_and_run_audit_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def identify_project_and_run_audit_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Identify the project type and run the security audit.
 
@@ -75,7 +75,7 @@ def identify_project_and_run_audit_node(state: ScaImpactState) -> Partial[ScaImp
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info(f"Identifying project type and running audit for {state['cloned_repo_path']}")
 
@@ -134,7 +134,7 @@ def identify_project_and_run_audit_node(state: ScaImpactState) -> Partial[ScaImp
         }
 
 
-def build_rag_index_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def build_rag_index_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Build a RAG index for the project code.
 
@@ -142,7 +142,7 @@ def build_rag_index_node(state: ScaImpactState) -> Partial[ScaImpactState]:
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info(f"Building RAG index for {state['cloned_repo_path']}")
 
@@ -180,7 +180,7 @@ def build_rag_index_node(state: ScaImpactState) -> Partial[ScaImpactState]:
         return {"project_code_index_path": None, "error_message": error_message}
 
 
-def select_next_vulnerability_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def select_next_vulnerability_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Select the next vulnerability to process.
 
@@ -188,7 +188,7 @@ def select_next_vulnerability_node(state: ScaImpactState) -> Partial[ScaImpactSt
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Selecting next vulnerability to process")
 
@@ -222,7 +222,7 @@ def select_next_vulnerability_node(state: ScaImpactState) -> Partial[ScaImpactSt
         }
 
 
-def analyze_cve_description_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def analyze_cve_description_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Analyze the CVE description using LLM.
 
@@ -230,7 +230,7 @@ def analyze_cve_description_node(state: ScaImpactState) -> Partial[ScaImpactStat
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Analyzing CVE description")
 
@@ -317,7 +317,7 @@ def analyze_cve_description_node(state: ScaImpactState) -> Partial[ScaImpactStat
         return {"current_cve_analysis_results": None, "error_message": error_message}
 
 
-def search_codebase_for_impact_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def search_codebase_for_impact_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Search the codebase for impact of the vulnerability.
 
@@ -325,7 +325,7 @@ def search_codebase_for_impact_node(state: ScaImpactState) -> Partial[ScaImpactS
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Searching codebase for impact")
 
@@ -499,7 +499,7 @@ def search_codebase_for_impact_node(state: ScaImpactState) -> Partial[ScaImpactS
         return {"error_message": error_message}
 
 
-def evaluate_impact_and_danger_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def evaluate_impact_and_danger_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Evaluate the impact and danger of the vulnerability.
 
@@ -507,7 +507,7 @@ def evaluate_impact_and_danger_node(state: ScaImpactState) -> Partial[ScaImpactS
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Evaluating impact and danger")
 
@@ -611,7 +611,7 @@ def evaluate_impact_and_danger_node(state: ScaImpactState) -> Partial[ScaImpactS
         return {"error_message": error_message}
 
 
-def propose_fix_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def propose_fix_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Propose a fix for the vulnerability.
 
@@ -619,7 +619,7 @@ def propose_fix_node(state: ScaImpactState) -> Partial[ScaImpactState]:
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Proposing fix")
 
@@ -717,7 +717,7 @@ def propose_fix_node(state: ScaImpactState) -> Partial[ScaImpactState]:
         return {"error_message": error_message}
 
 
-def aggregate_cve_results_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def aggregate_cve_results_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Aggregate the results of the CVE analysis.
 
@@ -725,7 +725,7 @@ def aggregate_cve_results_node(state: ScaImpactState) -> Partial[ScaImpactState]
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Aggregating CVE results")
 
@@ -768,7 +768,7 @@ def aggregate_cve_results_node(state: ScaImpactState) -> Partial[ScaImpactState]
         return {"error_message": error_message}
 
 
-def cleanup_scan_environment_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def cleanup_scan_environment_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Clean up the scan environment.
 
@@ -776,7 +776,7 @@ def cleanup_scan_environment_node(state: ScaImpactState) -> Partial[ScaImpactSta
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Cleaning up scan environment")
 
@@ -794,7 +794,7 @@ def cleanup_scan_environment_node(state: ScaImpactState) -> Partial[ScaImpactSta
         return {"error_message": error_message}
 
 
-def compile_final_report_node(state: ScaImpactState) -> Partial[ScaImpactState]:
+def compile_final_report_node(state: ScaImpactState) -> Dict[str, Any]:
     """
     Compile the final report.
 
@@ -802,7 +802,7 @@ def compile_final_report_node(state: ScaImpactState) -> Partial[ScaImpactState]:
         state (ScaImpactState): Current state
 
     Returns:
-        Partial[ScaImpactState]: Updated state
+        Dict[str, Any]: Updated state
     """
     logger.info("Compiling final report")
 

flake.nix

@@ -38,8 +38,6 @@
             llama-index-embeddings-huggingface
             python-dotenv
             pyyaml
-            langchain-google-genai
-            pip-audit
           ];
 
           # No need for custom postInstall, entry_points in setup.py handles this

main.py

@@ -24,7 +24,7 @@ def run_ui():
     """Run the Gradio UI."""
     logger.info("Starting Gradio UI")
     from agentpimentbleu.app.app import app
-    app.launch()
+    app.launch(server_name="0.0.0.0")
 
 
 def run_api():
@@ -36,18 +36,18 @@ def run_api():
 def run_scan(repo_source):
     """
     Run a direct scan of a repository.
-    
+
     Args:
         repo_source (str): URL or local path to the repository
     """
     logger.info(f"Running scan on {repo_source}")
-    
+
     # Get the application configuration
     app_config = get_settings()
-    
+
     # Run the scan
     result = run_sca_scan(repo_source, app_config)
-    
+
     # Print the results
     print(json.dumps(result, indent=2))
 
@@ -56,20 +56,20 @@ def main():
     """Main entry point."""
     parser = argparse.ArgumentParser(description="AgentPimentBleu - Smart Security Scanner for Git Repositories")
     subparsers = parser.add_subparsers(dest="command", help="Command to run")
-    
+
     # UI command
     ui_parser = subparsers.add_parser("ui", help="Run the Gradio UI")
-    
+
     # API command
     api_parser = subparsers.add_parser("api", help="Run the FastAPI server")
-    
+
     # Scan command
     scan_parser = subparsers.add_parser("scan", help="Run a direct scan of a repository")
     scan_parser.add_argument("--repo_source", required=True, help="URL or local path to the repository")
-    
+
     # Parse arguments
     args = parser.parse_args()
-    
+
     # Run the appropriate command
     if args.command == "ui":
         run_ui()
@@ -83,4 +83,4 @@ def main():
 
 
 if __name__ == "__main__":
-    main()
+    main()