Skip to content

refactoring to identify conflict files #40

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
xrisbarney wants to merge 3 commits into from
Closed

refactoring to identify conflict files #40

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
566fcf7
refactoring to identify conflict files
xrisbarney Jun 27, 2025
68dce2e
testing rule conflicts
xrisbarney Jun 28, 2025
e4d11a5
testing rule conflicts
xrisbarney Jun 28, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 30 additions & 8 deletions check_rule_ids.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,17 +73,39 @@ def main():
print("✅ No rule files were changed in this PR.")
return

print(f"🔍 Checking these files for conflicts: {[f.name for f in changed_files]}")
# print(f"🔍 Checking these files for conflicts: {[f.name for f in changed_files]}")

# changed_ids = get_rule_ids_in_files(changed_files)
# main_ids = get_all_main_rule_ids()
# conflicts = changed_ids & main_ids

# if conflicts:
# print(f"❌ Conflicting rule IDs: {sorted(conflicts)}")
# sys.exit(1)
# else:
# print("✅ No rule ID conflicts.")

changed_ids = get_rule_ids_in_files(changed_files)
print(f"🔍 Checking these files for conflicts: {[f.name for f in changed_files]}")
main_ids = get_all_main_rule_ids()
conflicts = changed_ids & main_ids

if conflicts:
print(f"❌ Conflicting rule IDs: {sorted(conflicts)}")
sys.exit(1)
else:
print("✅ No rule ID conflicts.")
# Loop through each changed file and check for ID conflicts
for path in changed_files:
print(f"\n🔎 Checking file: {path.name}")
try:
content = path.read_text()
file_ids = extract_rule_ids_from_xml(content)
except Exception as e:
print(f"⚠️ Could not read {path.name}: {e}")
continue
conflicts = file_ids & main_ids
if conflicts:
print(f"❌ Conflicting rule IDs in {path.name} file. Rule IDs: {sorted(conflicts)}")
sys.exit(1)
else:
print(f"✅ No rule ID conflicts in {path.name}.")

print("\n✅ All checked files are conflict-free.")


if __name__ == "__main__":
main()
17 changes: 17 additions & 0 deletions rules/conflicting_rules.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
<!-- Local rules -->

<!-- Modify it at your will. -->
<!-- Copyright (C) 2015, Wazuh Inc. -->

<!-- Example -->
<group name="local,syslog,sshd,">


<rule id="100002" level="5">
<if_sid>5716</if_sid>
<srcip>1.1.1.1</srcip>
<description>sshd: authentication failed from IP 1.1.1.1.</description>
<group>authentication_failed,pci_dss_10.2.4,pci_dss_10.2.5,</group>
</rule>

</group>