Zanshin Ruby SDK

This Ruby gem contains an SDK to interact with the API of the Zanshin from Tenchi Security.

Installation

Install the gem and add to the application's Gemfile by executing:

bundle add zanshin

If bundler is not being used to manage dependencies, install the gem by executing:

gem install zanshin

Setting up Credentials

There are three ways that the SDK handles credentials. The order of evaluation is:

• 1st Client Parameters
• 2nd Environment Variables
• 3rd Config File

Client Parameters

When calling the Client class, you can pass the values API Key(api_key), API URL(api_url), User Agent(user_agent) and Proxy URL(proxy_url) you want to use as below:

client = Zanshin::SDK::Client.new(api_key: "my_zanshin_api_key")
puts client.get_me

These values will overwrite anything you set as Environment Variables or in the Config File.

Environment Variables

You can use the following Environment Variables to configure Zanshin SDK:

• ZANSHIN_API_KEY: Will setup your Zanshin credentials
• ZANSHIN_API_URL: Will define the API URL. Default is https://api.zanshin.tenchisecurity.com
• ZANSHIN_USER_AGENT: If you want to overwrite the User Agent when calling Zanshin API (The value passed will be concatenated to the SDK's default value Zanshin Ruby SDK 1.0.0)
• HTTP_PROXY | HTTPS_PROXY: Zanshin SDK uses Net::HTTP under the hood, checkout the Net::HTTP RDoc section of their documentation for more use cases

Example

export ZANSHIN_API_KEY="my_zanshin_api_key"

These Environment Variables will overwrite anything you set on the Config File.

Config File

This Ruby SDK was built to be used under the same conditions as the Python SDK, so the configuration file is in the format created by the Python RawConfigParser class.

The file is located at ~/.tenchi/config, where ~ is the current user's home directory.

Each section is treated as a configuration profile, and the SDK will look for a section called default if another is not explicitly selected.

These are the supported options:

• api_key (required) which contains the Zanshin API key obtained at the Zanshin web portal.
• api_url (optional) directs the SDK to use a different API endpoint than the default (https://api.zanshin.tenchisecurity.com).
• user_agent (optional) allows you to override the default user-agent header used by the SDK when making API requests (The value passed will be concatenated to the SDK's default value Zanshin Ruby SDK 1.0.0).
• proxy_url (optional) directs the SDK to use a Proxy.

This is what a minimal configuration file looks like:

[default]
api_key=my_zanshin_api_key

The SDK

  client = Zanshin::SDK::Client.new
  client.get_me 

Usage

Create instance

  client = Zanshin::SDK::Client.new # loads API key from the "default" profile in ~/.tenchi/config

Get logged user info

  client.get_me # calls /me API endpoint

Get logged user info

Methods with prefix iter_* return an Enumerator, you can use it however you want, in this example we use to_a to convert the Enumerator into an Array.

  client.iter_organizations.to_a # calls /organizations API endpoint

Support

If you are a Zanshin customer and have any questions regarding the use of the service, its API or this SDK package, please get in touch via e-mail at support@tenchisecurity.com or via the support widget on the Zanshin Portal.

Development

After checking out the repo, run bundle install to install dependencies. Then, run bundle exec rake test to run the tests. You can also run bin/console for an interactive prompt that will allow you to experiment.

Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/tenchi-security/zanshin-sdk-ruby. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the code of conduct.

Unit Test

Currently, the Unit Test only checks if the API call was made in the way it should, after implementing the input validations the tests will be better.

TODO

• Input validation
• Coverage badge
• File Persistent Alerts Iterator
• Onboard Scan Targets (AWS)

License

The gem is available as open source under the terms of the MIT License.

Code of Conduct

Everyone interacting in the Zanshin Ruby SDK project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the code of conduct.

Changelog

See CHANGELOG for a list of changes.