https://github.com/rhecosystemappeng/sast-ai-orchestrator
Controller for SAST-AI-Workflows. This project schedules, monitors, and serves workflow info to REST clients 🧠📡
https://github.com/rhecosystemappeng/sast-ai-orchestrator
ai-security rest-api sast
Last synced: about 2 months ago
JSON representation
Controller for SAST-AI-Workflows. This project schedules, monitors, and serves workflow info to REST clients 🧠📡
- Host: GitHub
- URL: https://github.com/rhecosystemappeng/sast-ai-orchestrator
- Owner: RHEcosystemAppEng
- License: apache-2.0
- Created: 2025-04-11T17:46:49.000Z (6 months ago)
- Default Branch: main
- Last Pushed: 2025-08-06T09:48:24.000Z (2 months ago)
- Last Synced: 2025-08-06T11:39:01.564Z (2 months ago)
- Topics: ai-security, rest-api, sast
- Language: Java
- Homepage:
- Size: 397 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# SAST-AI-Orchestrator
[](https://sonarcloud.io/summary/new_code?id=RHEcosystemAppEng_sast-ai-orchestrator)
[](https://sonarcloud.io/summary/new_code?id=RHEcosystemAppEng_sast-ai-orchestrator)
[](https://sonarcloud.io/summary/new_code?id=RHEcosystemAppEng_sast-ai-orchestrator)
[](https://sonarcloud.io/summary/new_code?id=RHEcosystemAppEng_sast-ai-orchestrator)
[](https://sonarcloud.io/summary/new_code?id=RHEcosystemAppEng_sast-ai-orchestrator)
[](https://github.com/RHEcosystemAppEng/sast-ai-orchestrator/actions/workflows/codeql.yml)
[](https://github.com/RHEcosystemAppEng/sast-ai-orchestrator/actions/workflows/build-and-publish.yml)
Java Quarkus REST API that manages [SAST-AI-Workflow](https://github.com/RHEcosystemAppEng/sast-ai-workflow) security scanning Tekton pipelines.
## API Endpoints
#### Health & Monitoring
- `GET /api/v1/health` - Application health status
#### Job Management
- `POST /api/v1/jobs/simple` - Create a new security scanning job
- `GET /api/v1/jobs` - List all jobs (with filtering & pagination)
- `GET /api/v1/jobs/{id}` - Get specific job details
- `POST /api/v1/jobs/{id}/cancel` - Cancel a running job
#### Job Batches
- `POST /api/v1/job-batches` - Submit batch processing jobs
- `GET /api/v1/job-batches` - List job batches
- `GET /api/v1/job-batches/{id}` - Get batch details
#### Package Analysis
- `GET /api/v1/packages` - Package vulnerability summaries
## Quick Start
### Local Development
1. **Clone the repository**
```bash
git clone https://github.com/RHEcosystemAppEng/sast-ai-orchestrator.git
cd sast-ai-orchestrator
```
2. **Setup PostgreSQL**
```bash
# Using Docker
docker run --name postgres \
-e POSTGRES_DB=sast-ai \
-e POSTGRES_USER=quarkus \
-e POSTGRES_PASSWORD=quarkus \
-p 5432:5432 \
-d postgres:13
```
3. **Run the application**
```bash
./mvnw quarkus:dev
```
4. **Access the API**
```
http://localhost:8080/api/v1/health
```
## Deployment
### Docker Deployment
```bash
# JVM Mode (Fast startup)
docker build -f src/main/docker/Dockerfile.jvm -t sast-ai-orchestrator:jvm .
```
### Kubernetes Deployment
- **Helm Chart**: See `deploy/sast-ai-chart/` for Helm deployment
- **ArgoCD**: See `deploy/argocd/` for GitOps deployment
- **Documentation**: Refer to `deploy/README.md` for detailed instructions
## Configuration
Key configuration options in `application.properties`:
```properties
# Database
quarkus.datasource.jdbc.url=jdbc:postgresql://localhost:5432/sast-ai
quarkus.datasource.username=quarkus
quarkus.datasource.password=quarkus
# Workflow Integration
sast.ai.workflow.namespace=sast-ai
quarkus.kubernetes-client.trust-certs=false
```
---
Built with ❤️ by the Red Hat Ecosystem App Engineering Team