Configurable hard limit for rules

nusantara-self · nusantara-self · commit 24390de3553a · 2025-03-04T07:40:43.000+08:00
diff --git a/analyzers/Yara/Yara.json b/analyzers/Yara/Yara.json
@@ -29,6 +29,13 @@
       "type": "string",
       "multi": false,
       "required": false
+    },
+    {
+      "name": "rules_limit",
+      "description": "Enforce a limit on the number of YARA rules tested against the file",
+      "type": "number",
+      "multi": false,
+      "required": false
     }
   ]
 }
diff --git a/analyzers/Yara/yara_analyzer.py b/analyzers/Yara/yara_analyzer.py
@@ -160,6 +160,8 @@ def __init__(self):
 
         self.github_urls = self.get_param('config.github_urls', None, 'No GitHub URLs provided.')
         self.github_token = self.get_param('config.github_token', None, 'No GitHub PAT provided.')
+        
+        self.rules_limit = self.get_param('config.rules_limit', None, 'No rules limit provided.')
 
         self.ruleset = []
         self.ignored_rules = []
@@ -218,6 +220,16 @@ def __init__(self):
 
         if not self.ruleset:
             print("Warning: No valid YARA rules were loaded.")
+        
+        # Enforce the rules limit if set
+        if self.rules_limit:
+            try:
+                limit = int(self.rules_limit)
+                if len(self.ruleset) > limit:
+                    self.ruleset = self.ruleset[:limit]
+            except ValueError:
+                self.error("Invalid rules_limit value; it should be an integer.")
+
             
             
     def check(self, file_path):

Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,13 @@`
`29`	`29`	`"type": "string",`
`30`	`30`	`"multi": false,`
`31`	`31`	`"required": false`
	`32`	`+ },`
	`33`	`+ {`
	`34`	`+ "name": "rules_limit",`
	`35`	`+ "description": "Enforce a limit on the number of YARA rules tested against the file",`
	`36`	`+ "type": "number",`
	`37`	`+ "multi": false,`
	`38`	`+ "required": false`
`32`	`39`	`}`
`33`	`40`	`]`
`34`	`41`	`}`