Enum Renaming (vulnerability-reporting): Replaced enums to provide mo…

…re descriptive categories for vulnerabilities, improving the clarity and ease of use of the system.

src/data/Categories.py

@@ -2,46 +2,52 @@
 from typing import List, Optional
 from pydantic import BaseModel, Field
 
-
-class VulnerabilityType(Enum):
-    INJECTION = "Injection"
-    BROKEN_AUTHENTICATION = "Broken Authentication"
-    SENSITIVE_DATA_EXPOSURE = "Sensitive Data Exposure"
-    XML_EXTERNAL_ENTITIES = "XML External Entities (XXE)"
-    BROKEN_ACCESS_CONTROL = "Broken Access Control"
-    SECURITY_MISCONFIGURATION = "Security Misconfiguration"
-    CROSS_SITE_SCRIPTING = "Cross-Site Scripting (XSS)"
-    INSECURE_DESERIALIZATION = "Insecure Deserialization"
-    USING_COMPONENTS_WITH_KNOWN_VULNERABILITIES = "Using Components with Known Vulnerabilities"
-    INSUFFICIENT_LOGGING_AND_MONITORING = "Insufficient Logging & Monitoring"
-
-
-class AffectedComponent(Enum):
-    FRONTEND = "Frontend"
-    BACKEND = "Backend"
-    DATABASE = "Database"
-    API = "API"
-    AUTHENTICATION_SERVICE = "Authentication Service"
-    THIRD_PARTY_SERVICE = "Third-Party Service"
-    NETWORK = "Network"
-    CONFIGURATION = "Configuration"
-
-
-class ImpactLevel(Enum):
+class TechnologyStack(Enum):
+    JAVASCRIPT = "JavaScript"
+    PYTHON = "Python"
+    JAVA = "Java"
+    DOTNET = "DotNet"
+    SQL = "SQL"
+    NOSQL = "NoSQL"
+    CLOUD = "Cloud"
+    ON_PREMISE = "OnPremise"
+
+class SecurityAspect(Enum):
+    AUTHENTICATION = "Authentication"
+    AUTHORIZATION = "Authorization"
+    DATA_ENCRYPTION = "DataEncryption"
+    INPUT_VALIDATION = "InputValidation"
+    XSS = "CrossSiteScripting"
+    SQL_INJECTION = "SQLInjection"
+
+class SeverityLevel(Enum):
     CRITICAL = "Critical"
     HIGH = "High"
     MEDIUM = "Medium"
     LOW = "Low"
 
+class RemediationType(Enum):
+    CODE_FIX = "CodeFix"
+    CONFIGURATION_CHANGE = "ConfigurationChange"
+    DEPENDENCY_UPDATE = "DependencyUpdate"
+    ARCHITECTURE_CHANGE = "ArchitectureChange"
 
-class RemediationComplexity(Enum):
-    SIMPLE = "Simple"
-    MODERATE = "Moderate"
-    COMPLEX = "Complex"
+class AffectedComponent(Enum):
+    USER_INTERFACE = "UserInterface"
+    API = "API"
+    DATABASE = "Database"
+    NETWORK = "Network"
+    THIRD_PARTY_INTEGRATION = "ThirdPartyIntegration"
 
+class Compliance(Enum):
+    GDPR = "GDPR"
+    PCI_DSS = "PCI_DSS"
+    HIPAA = "HIPAA"
 
 class Category(BaseModel):
-    vulnerability_type: List[VulnerabilityType] = Field(default_factory=list)
-    affected_components: List[AffectedComponent] = Field(default_factory=list)
-    impact_level: Optional[ImpactLevel] = None
-    remediation_complexity: Optional[RemediationComplexity] = None
+    technology_stack: Optional[List[TechnologyStack]] = Field(default_factory=list)
+    security_aspect: Optional[List[SecurityAspect]] = Field(default_factory=list)
+    severity_level: Optional[SeverityLevel] = None
+    remediation_type: Optional[List[RemediationType]] = Field(default_factory=list)
+    affected_component: Optional[List[AffectedComponent]] = Field(default_factory=list)
+    compliance: Optional[List[Compliance]] = Field(default_factory=list)