admin/SafeLine
1
0
Fork 0
mirror of https://github.com/chaitin/SafeLine.git synced 2026-01-31 22:04:02 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
8de97ff483e3aab4a112e2f07eeae5d076ff0dde
SafeLine/mcp_server/tools/get_attack_events.py
Changzhi Li 8de97ff483 add mcp get_attack_event tool
2025-04-07 07:41:42 +00:00

34 lines
1.4 KiB
Python
Raw Blame History

from pydantic import BaseModel, Field
from utils.request import get_slce_api
from tools import Tool, ABCTool, tools
from urllib.parse import urlparse
@tools.register
class CreateHttpApplication(BaseModel, ABCTool):
ip: str = Field(default="", description="the attacker's client IP address")
size: int = Field(default=10, min=1, max=100, description="the number of results to return")
start: str = Field(default="", description="start time, millisecond timestamp")
end: str = Field(default="", description="end time, millisecond timestamp")
@classmethod
async def run(self, arguments:dict) -> str:
try:
req = CreateHttpApplication.model_validate(arguments)
parsed_upstream = urlparse(req.upstream)
if parsed_upstream.scheme not in ["https", "http"]:
return "invalid upstream scheme"
if parsed_upstream.hostname == "":
return "invalid upstream host"
except Exception as e:
return str(e)
return await get_slce_api(f"api/open/events?page=1&page_size={req.size}&ip={req.ip}&start={req.start}&end={req.end}")
@classmethod
def tool(self) -> Tool:
return Tool(
name="waf_get_attack_events",
description="获取雷池 WAF 所记录的攻击事件",
inputSchema=self.model_json_schema()
)
Reference in New Issue View Git Blame Copy Permalink