From 712af20b6079a26a6e0f57013028a8a7fce4f03d Mon Sep 17 00:00:00 2001
From: xfhg <flavio@edgeuplink.net>
Date: Fri, 13 Sep 2024 15:33:05 +0800
Subject: [PATCH] v1-prerelease

---
 cmd/assure.go                         |  4 +++
 cmd/scan.go                           |  4 +++
 playground/policies/test_ob_scan.yaml | 37 +++++++++++++++++++++++++++
 3 files changed, 45 insertions(+)
 create mode 100644 playground/policies/test_ob_scan.yaml

diff --git a/cmd/assure.go b/cmd/assure.go
index ecd4912f..3a580dbc 100644
--- a/cmd/assure.go
+++ b/cmd/assure.go
@@ -60,6 +60,10 @@ func executeAssure(policy Policy, rgPath string, targetDir string, filesToAssure
 		"-f", searchPatternFile,
 	}
 
+	if targetDir == "" {
+		return fmt.Errorf("no target directory defined")
+	}
+
 	// Append the file targets
 	if len(filesToAssure) > 0 {
 		codePatternAssureJSON = append(codePatternAssureJSON, filesToAssure...)
diff --git a/cmd/scan.go b/cmd/scan.go
index a2711eee..67bad416 100644
--- a/cmd/scan.go
+++ b/cmd/scan.go
@@ -62,6 +62,10 @@ func executeScan(policy Policy, rgPath string, targetDir string, filesToScan []s
 		"-f", searchPatternFile,
 	}
 
+	if targetDir == "" {
+		return fmt.Errorf("no target directory defined")
+	}
+
 	// Append the same file targets as the previous command
 	if len(filesToScan) > 0 {
 		codePatternScanJSON = append(codePatternScanJSON, filesToScan...)
diff --git a/playground/policies/test_ob_scan.yaml b/playground/policies/test_ob_scan.yaml
new file mode 100644
index 00000000..6836a121
--- /dev/null
+++ b/playground/policies/test_ob_scan.yaml
@@ -0,0 +1,37 @@
+
+Config: 
+  Flags:
+    policy_schedule: "*/15 * * * * *"
+    report_schedule:  "*/50 * * * * *"
+    # target: "targets/"
+    ignore:
+      - "targets/scan/"
+
+Policies:
+  - id: "SCAN-001 Private Keys"
+    type: "scan"
+    enforcement:
+      - environment: "production"
+        fatal: "true"
+        exceptions: "false"
+        confidence: "high"
+      - environment: "development"
+        fatal: "true"
+        exceptions: "false"
+        confidence: "high"
+    metadata:
+      name: "Detect private keys"
+      description: "Generic long description for (metadata) policy"
+      msg_solution: "Generic solution message to production issue."
+      msg_error: "Generic error message for production issue"
+      tags:
+        - "security"
+        - "encryption"
+      score: "9"
+    _regex:
+      - \s*(-----BEGIN PRIVATE KEY-----)
+      - \s*(-----BEGIN RSA PRIVATE KEY-----)
+      - \s*(-----BEGIN DSA PRIVATE KEY-----)
+      - \s*(-----BEGIN EC PRIVATE KEY-----)
+      - \s*(-----BEGIN OPENSSH PRIVATE KEY-----)
+      - \s*(-----BEGIN PGP PRIVATE KEY BLOCK-----)