HTML template files for the new HTML report

Author: llavarello

src/gitxray/include/html_report/__init__.py

@@ -0,0 +1,7 @@
+<div id="contributor-section-{{contributor_id}}">
+    <h3>Contributor: {{contributor_name}}</h3>
+	 <p>This section provides findings on the activity for this specific Contributor within the repository. The data presented here has been gathered through a thorough inspection of the repository's activity, specifically focusing on contributions made by this account. While some of the GitHub APIs used to gather information may return universal or cross-repository data (e.g. such as 90-day activity metrics that cover all of a contributor’s activity across all repositories), most of the findings presented in this report are exclusively tied to their interactions within this particular repository. Put another way; this is focused to this repository; it is NOT a full analysis on the account nor on its interactions with other repositories.</p>
+
+    {{contributor_tables}}    
+</div>
+<p>&nbsp;</p>

src/gitxray/include/html_report/template_contributor.html

@@ -0,0 +1,199 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Gitxray Report</title>
+    <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css" integrity="sha384-T3c6CoIi6uLrA9TneNEoa7RxnatzjcDSCmG1MXxSR1GAsXEV/Dwwykc2MPK8M2HN" crossorigin="anonymous">
+
+
+    <style>
+        body {
+            padding-top: 20px;
+            padding-bottom: 20px;
+        }
+        .sidebar {
+            position: fixed;
+            top: 0;
+            left: 0;
+            height: 100%;
+            width: 260px;
+            background-color: #f8f9fa;
+            padding-top: 20px;
+            box-shadow: 2px 0 5px rgba(0,0,0,0.1);
+            overflow-y: auto;
+        }
+        .sidebar a {
+            display: block;
+            padding: 10px 20px;
+            color: #333;
+            text-decoration: none;
+        }
+        .sidebar a:hover {
+            background-color: #e9ecef;
+            color: #000;
+        }
+
+	.sidebar-header {
+	font-weight: bold;
+	padding: 0.5rem 1rem;
+	color: #ffffff;
+	background-color: #007bff;
+	border-radius: 0.25rem;
+        }
+        @media (max-width: 768px) {
+            .sidebar {
+                width: 100%;
+                height: auto;
+                position: relative;
+            }
+            .content {
+                margin-left: 0;
+            }
+        }
+        .highlight-warning {
+           background-color: yellow !important;  
+        }
+    </style>
+</head>
+<body>
+    <nav class="sidebar bg-light border-end">
+	<h6 class="text-muted px-2 fw-bold text-uppercase"><a href='#introduction'>Introduction &#127968;</a></h6>
+        <hr class="my-3">
+
+	<h6 class="px-2 fw-bold text-uppercase">Repository Results</h6>
+        {{repository_sidebar_links}}
+        <hr class="my-3">
+
+        <h6 class="px-2 fw-bold text-uppercase">Contributor Results</h6>
+
+        <ul class="nav flex-column mb-0"><li class="nav-item"><a class="nav-link collapsed" data-bs-toggle="collapse" role="button" aria-expanded="false" aria-controls="nav_bycategory" href="#nav_bycategory">By Category &#128193;</a><div class="px-3 collapse" id="nav_bycategory">
+        	{{category_sidebar_links}}
+	</div></li></ul>
+
+        <ul class="nav flex-column mb-0"><li class="nav-item"><a class="nav-link collapsed" data-bs-toggle="collapse" role="button" aria-expanded="false" aria-controls="nav_bycontributor" href="#nav_bycontributor">By Contributor &#128193;</a><div class="px-3 collapse" id="nav_bycontributor">
+        	{{contributor_sidebar_links}}
+	</div></li></ul>
+
+        <hr class="my-3">
+        <h6 class="px-2 fw-bold text-uppercase">Non-Contributor Results</h6>
+        {{more_sidebar_links}}
+      </div>
+
+    </nav>
+
+    <!-- Main Content -->
+    <div class="content container">
+
+	<a id="introduction"></a>
+	<div class="card mb-3">
+	  <div class="row no-gutters">
+	    <div class="col-md-12">
+	      <div class="card-header">
+		<h1 class="text-center">Gitxray Report</h1>
+	      </div>
+	      <div class="card-body">
+	    	<div class="row">
+	    	<div class="col-md-4">
+	      		<img src="https://raw.githubusercontent.com/kulkansecurity/gitxray/refs/heads/main/docs/images/logo_gitxray.png" class="img-fluid" alt="Gitxray Logo" style="max-width: 350px"/>
+	    	</div>
+	    	<div class="col-md-8 py-4">
+		<h5 class="card-title">About this HTML report generated by Gitxray</h5>
+		<p class="card-text">The report was generated as a result of using the HTML output format of Gitxray. Other output formats are available and documented at <a href='https://github.com/kulkansecurity/gitxray/'>https://github.com/kulkansecurity/gitxray</a> and <a href='https://www.gitxray.com'>www.gitxray.com</a>.</p>
+		<p class="card-text">The information contained in this HTML report is exactly the same information displayed in other formats (eg. text and json). Additional processing was implemented to create the "By Category" option on the sidemenu, which merges all Contributor result categories, making it easier to navigate through specific categories across a given repository.</p>
+
+		<h5 class="card-title">About Gitxray</h5>
+		<p class="card-text">Gitxray (short for Git X-Ray) is a multifaceted security tool designed for use on GitHub repositories. It can serve many purposes, including OSINT and Forensics. gitxray leverages public GitHub REST APIs to gather information that would otherwise be very time-consuming to obtain manually. Additionally, it seeks out information in unconventional places.</p>
+
+	    	</div> <!-- md-8-->
+	    	</div> <!-- row -->
+	      </div>
+	      <div class="card-footer"><i>This HTML report was generated on {{report_date}}{{filters_html_text}}.</i></div>
+	    </div>
+	  </div>
+	</div>
+
+	<div class="card">
+  	<h5 class="card-header">Findings specific to the repository</h5>
+	  <div class="card-body">
+            {{repository_sections}}
+	  </div>
+	</div>
+
+	<p>&nbsp;</p>
+	<div class="card">
+  	<h5 class="card-header">Contributor findings by Category</h5>
+	  <div class="card-body">
+            {{category_sections}}
+	  </div>
+	</div>
+
+	<p>&nbsp;</p>
+	<div class="card">
+  	<h5 class="card-header">Contributor findings by Contributor</h5>
+	  <div class="card-body">
+            {{contributor_sections}}
+	  </div>
+	</div>
+
+	<p>&nbsp;</p>
+	<div class="card">
+  	<h5 class="card-header">Non-Contributor findings by Contributor</h5>
+	  <div class="card-body">
+		  <p>This section includes results for non-contributors who have interacted with the Repository (these are, for example, GitHub accounts who have added comments or triggered workflows in the Repository but have never contributed to the Repository) as well as for contributors marked as "Anonymous" by GitHub. <a href='https://docs.github.com/en/rest/repos/repos?apiVersion=2022-11-28#list-repository-contributors'>GitHub links only the first 500 author email addresses</a> in a repository to actual GitHub users or accounts. Additionally, any commit where the author's email address is not associated with a GitHub account will also be considered anonymous.</p>
+            {{more_sections}}
+	  </div>
+	</div>
+
+	<p>&nbsp;</p>
+	<div class="card">
+	  <div class="card-body">
+		<h5 class="card-title">Terms of Use</h5>
+		<p class="text-muted">The user is solely responsible for ensuring that this tool is used in compliance with applicable laws and regulations, including obtaining proper authorization for repository scanning and the distribution of any results generated. Unauthorized use or sharing of results may violate local, national, or international laws.</p>
+	  </div>
+    </div>
+	</div>
+
+	<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js" integrity="sha384-C6RzsynM9kWDrMNeT87bh95OGNyZPhcTNXj1NW7RuBCsyN/o0jlpcV8Qyq46cDfL" crossorigin="anonymous"></script>
+
+
+	<script>
+    document.addEventListener('DOMContentLoaded', function () {
+        document.querySelectorAll('table').forEach((table) => {
+            const searchContainer = document.createElement('div');
+            searchContainer.className = 'search-container';
+
+            const searchInput = document.createElement('input');
+            searchInput.className = 'form-control searchInput';
+            searchInput.placeholder = `Search table rows for..`;
+
+            table.parentNode.insertBefore(searchContainer, table);
+            searchContainer.appendChild(searchInput);
+
+            // Search functionality
+            searchInput.addEventListener('input', function () {
+                const filter = searchInput.value.toLowerCase();
+                const rows = table.querySelectorAll('tbody tr');
+
+                rows.forEach(row => {
+                    const text = row.textContent.toLowerCase();
+                    row.style.display = text.includes(filter) ? '' : 'none';
+                });
+            });
+
+            // Highlight 'WARNING' cells
+            const rows = table.querySelectorAll('tbody tr');
+            rows.forEach(row => {
+                row.querySelectorAll('td').forEach(td => {
+                    if (td.textContent.includes('WARNING')) {
+                        td.classList.add('highlight-warning'); // Add class to cells with 'WARNING'
+                    }
+                });
+            });
+        });
+    });
+	</script>
+
+</body>
+</html>
+

src/gitxray/include/html_report/template_main.html

@@ -0,0 +1,4 @@
+<div id="non-contributor-section-{{non_contributor_id}}">
+    <h3>{{non_contributor_name}}</h3>
+    {{non_contributor_tables}}    
+</div>

src/gitxray/include/html_report/template_non_contributor.html

@@ -0,0 +1,3 @@
+<div id="repository-section-{{repository_id}}">
+    {{repository_tables}}    
+</div>

src/gitxray/include/html_report/template_repository.html

@@ -0,0 +1,15 @@
+    <div class="table-section py-3">
+	<a id="{{table_id}}"></a>
+        <h3>{{table_title}}</h3>
+        <table class="table table-striped table-bordered" style="width:100%">
+            <thead>
+                <tr>
+                    <th>Identifier</th>
+                    <th>Value</th>
+                </tr>
+            </thead>
+            <tbody>
+                {{table_rows}}
+            </tbody>
+        </table>
+    </div>