hippox-drivers 0.3.3

🦛All indivisible atomic driver units in Hippox.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

//! Security policy assessment Driver

use anyhow::Result;
use serde_json::{Value, json};
use std::collections::HashMap;

use crate::{
    DriverCallback, DriverCategory, DriverContext,
    operating_system_security::common::check_security_policies,
    types::{Driver, DriverParameter},
};

#[derive(Debug)]
pub struct SecurityPolicyCheckDriver;

#[async_trait::async_trait]
impl Driver for SecurityPolicyCheckDriver {
    fn name(&self) -> &str {
        "security_policy_check"
    }

    fn description(&self) -> &str {
        "Assess system security policy compliance"
    }

    fn usage_hint(&self) -> &str {
        "Use this skill to check if security policies are properly configured."
    }

    fn parameters(&self) -> Vec<DriverParameter> {
        vec![]
    }

    fn example_call(&self) -> Value {
        json!({
            "action": "security_policy_check"
        })
    }

    fn example_output(&self) -> String {
        "Security Policy Assessment Results:\n password_min_length: Compliant\n mfa_required: Non-compliant (current: false, expected: true)\n...".to_string()
    }

    fn category(&self) -> DriverCategory {
        DriverCategory::OperatingSystemSecurity
    }

    async fn execute(
        &self,
        parameters: &HashMap<String, Value>,
        callback: Option<&dyn DriverCallback>,
        context: Option<&DriverContext>,
    ) -> Result<String> {
        let policies = check_security_policies();
        if policies.is_empty() {
            return Ok("No security policies found".to_string());
        }
        let mut result = "Security Policy Assessment Results:\n\n".to_string();
        let mut compliant_count = 0;
        let mut non_compliant_count = 0;
        for policy in policies {
            let status = if policy.is_compliant {
                compliant_count += 1;
                "Yes"
            } else {
                non_compliant_count += 1;
                "No"
            };
            result.push_str(&format!(
                "{} {}: {} (current: {}, expected: {}) [Severity: {}]\n",
                status,
                policy.policy_name,
                if policy.is_compliant {
                    "Compliant"
                } else {
                    "Non-compliant"
                },
                policy.current_value,
                policy.expected_value,
                policy.severity
            ));
            if !policy.is_compliant {
                result.push_str(&format!("   Recommendation: {}\n", policy.recommendation));
            }
        }
        result.push_str(&format!(
            "\nSummary: {} compliant, {} non-compliant",
            compliant_count, non_compliant_count
        ));
        if non_compliant_count > 0 {
            result.push_str(&format!(
                "\n{} policies need attention",
                non_compliant_count
            ));
        } else {
            result.push_str("\nAll policies are compliant!");
        }
        Ok(result)
    }
}