UncoderIO
diff --git a/‎translator/app/translator/core/exceptions/core.py
Lines changed: 2 additions & 4 deletions b/‎translator/app/translator/core/exceptions/core.py
Lines changed: 2 additions & 4 deletions
diff --git a/‎translator/app/translator/core/exceptions/functions.py
Lines changed: 1 addition & 2 deletions b/‎translator/app/translator/core/exceptions/functions.py
Lines changed: 1 addition & 2 deletions
diff --git a/‎translator/app/translator/core/exceptions/iocs.py
Lines changed: 2 additions & 4 deletions b/‎translator/app/translator/core/exceptions/iocs.py
Lines changed: 2 additions & 4 deletions
diff --git a/‎translator/app/translator/core/exceptions/parser.py
Lines changed: 1 addition & 2 deletions b/‎translator/app/translator/core/exceptions/parser.py
Lines changed: 1 addition & 2 deletions
diff --git a/‎translator/app/translator/core/exceptions/render.py
Lines changed: 2 additions & 4 deletions b/‎translator/app/translator/core/exceptions/render.py
Lines changed: 2 additions & 4 deletions
diff --git a/‎translator/app/translator/core/functions.py
Lines changed: 2 additions & 20 deletions b/‎translator/app/translator/core/functions.py
Lines changed: 2 additions & 20 deletions
diff --git a/‎translator/app/translator/core/models/parser_output.py renamed to ‎translator/app/translator/core/models/query_container.py
Lines changed: 12 additions & 4 deletions b/‎translator/app/translator/core/models/parser_output.py renamed to ‎translator/app/translator/core/models/query_container.py
Lines changed: 12 additions & 4 deletions
diff --git a/‎translator/app/translator/core/parser.py
Lines changed: 13 additions & 11 deletions b/‎translator/app/translator/core/parser.py
Lines changed: 13 additions & 11 deletions
diff --git a/‎translator/app/translator/core/render.py
Lines changed: 31 additions & 12 deletions b/‎translator/app/translator/core/render.py
Lines changed: 31 additions & 12 deletions
diff --git a/‎translator/app/translator/core/render_cti.py
Lines changed: 0 additions & 1 deletion b/‎translator/app/translator/core/render_cti.py
Lines changed: 0 additions & 1 deletion
@@ -1,9 +1,7 @@
-class NotImplementedException(BaseException):
-    ...
+class NotImplementedException(BaseException): ...
 
 
-class BasePlatformException(BaseException):
-    ...
+class BasePlatformException(BaseException): ...
 
 
 class StrictPlatformException(BasePlatformException):
 
@@ -1,5 +1,4 @@
-class BaseFunctionException(Exception):
-    ...
+class BaseFunctionException(Exception): ...
 
 
 class InternalFunctionException(Exception):
 
@@ -1,9 +1,7 @@
-class BaseIOCsException(BaseException):
-    ...
+class BaseIOCsException(BaseException): ...
 
 
-class IocsLimitExceededException(BaseIOCsException):
-    ...
+class IocsLimitExceededException(BaseIOCsException): ...
 
 
 class EmptyIOCSException(BaseIOCsException):
 
@@ -1,5 +1,4 @@
-class BaseParserException(BaseException):
-    ...
+class BaseParserException(BaseException): ...
 
 
 class TokenizerGeneralException(BaseParserException):
 
@@ -1,5 +1,4 @@
-class BaseRenderException(BaseException):
-    ...
+class BaseRenderException(BaseException): ...
 
 
 class UnexpectedLogsourceException(BaseRenderException):
@@ -8,8 +7,7 @@ def __init__(self, platform_name: str, log_source: str):
         super().__init__(message)
 
 
-class FunctionRenderException(BaseRenderException):
-    ...
+class FunctionRenderException(BaseRenderException): ...
 
 
 class UnsupportedRenderMethod(BaseRenderException):
 
@@ -1,21 +1,3 @@
-"""
-Uncoder IO Commercial Edition License
------------------------------------------------------------------
-Copyright (c) 2023 SOC Prime, Inc.
-
-This file is part of the Uncoder IO Commercial Edition ("CE") and is
-licensed under the Uncoder IO Non-Commercial License (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    https://github.com/UncoderIO/UncoderIO/blob/main/LICENSE
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
------------------------------------------------------------------
-"""
-
 from __future__ import annotations
 
 from abc import ABC, abstractmethod
@@ -30,7 +12,7 @@
 from settings import INIT_FUNCTIONS
 
 if TYPE_CHECKING:
-    from app.translator.core.render import BaseQueryRender
+    from app.translator.core.render import PlatformQueryRender
 
 
 class FunctionParser(ABC):
@@ -72,7 +54,7 @@ def __init__(self):
         self._names_map: dict[str, str] = {}
 
     @abstractmethod
-    def init_search_func_render(self, platform_render: BaseQueryRender) -> None:
+    def init_search_func_render(self, platform_render: PlatformQueryRender) -> None:
         raise NotImplementedError
 
     @cached_property
 
@@ -7,6 +7,7 @@
 from app.translator.core.mapping import DEFAULT_MAPPING_NAME
 from app.translator.core.models.field import Field
 from app.translator.core.models.functions.base import ParsedFunctions
+from app.translator.core.tokenizer import TOKEN_TYPE
 
 
 class MetaInfoContainer:
@@ -27,15 +28,15 @@ def __init__(
         status: Optional[str] = None,
         false_positives: Optional[list[str]] = None,
         source_mapping_ids: Optional[list[str]] = None,
-        parsed_logsources: Optional[dict] = None
+        parsed_logsources: Optional[dict] = None,
     ) -> None:
         self.id = id_ or str(uuid.uuid4())
         self.title = title or ""
         self.description = description or ""
         self.author = author or ""
         self.date = date or datetime.now().date().strftime("%Y-%m-%d")
-        self.license = license_ or "DRL 1.1"
         self.fields = fields or []
+        self.license = license_ or "DRL 1.1"
         self.severity = severity or SeverityType.low
         self.references = references or []
         self.tags = tags or []
@@ -47,7 +48,14 @@ def __init__(
 
 
 @dataclass
-class SiemContainer:
-    query: list
+class RawQueryContainer:
+    query: str
+    language: str
+    meta_info: MetaInfoContainer = field(default_factory=MetaInfoContainer)
+
+
+@dataclass
+class TokenizedQueryContainer:
+    tokens: list[TOKEN_TYPE]
     meta_info: MetaInfoContainer
     functions: ParsedFunctions = field(default_factory=ParsedFunctions)
@@ -17,33 +17,35 @@
 """
 
 from abc import ABC, abstractmethod
+from typing import Union
 
 from app.translator.core.exceptions.parser import TokenizerGeneralException
 from app.translator.core.functions import PlatformFunctions
 from app.translator.core.mapping import BasePlatformMappings, SourceMapping
 from app.translator.core.models.field import FieldValue
 from app.translator.core.models.functions.base import ParsedFunctions
-from app.translator.core.models.parser_output import MetaInfoContainer, SiemContainer
 from app.translator.core.models.platform_details import PlatformDetails
+from app.translator.core.models.query_container import RawQueryContainer, TokenizedQueryContainer
 from app.translator.core.tokenizer import TOKEN_TYPE, QueryTokenizer
 
 
-class Parser(ABC):
-    mappings: BasePlatformMappings = None
-    tokenizer: QueryTokenizer = None
-    details: PlatformDetails = None
-    platform_functions: PlatformFunctions = None
+class QueryParser(ABC):
+    def parse_raw_query(self, text: str, language: str) -> RawQueryContainer:
+        return RawQueryContainer(query=text, language=language)
 
     @abstractmethod
-    def _get_meta_info(self, *args, **kwargs) -> MetaInfoContainer:
+    def parse(self, raw_query_container: RawQueryContainer) -> TokenizedQueryContainer:
         raise NotImplementedError("Abstract method")
 
-    @abstractmethod
-    def parse(self, text: str) -> SiemContainer:
-        raise NotImplementedError("Abstract method")
+
+class PlatformQueryParser(QueryParser, ABC):
+    mappings: BasePlatformMappings = None
+    tokenizer: QueryTokenizer = None
+    details: PlatformDetails = None
+    platform_functions: PlatformFunctions = None
 
     def get_tokens_and_source_mappings(
-        self, query: str, log_sources: dict[str, list[str]]
+        self, query: str, log_sources: dict[str, Union[str, list[str]]]
     ) -> tuple[list[TOKEN_TYPE], list[SourceMapping]]:
         if not query:
             raise TokenizerGeneralException("Can't translate empty query. Please provide more details")
 
@@ -16,7 +16,8 @@
 limitations under the License.
 -----------------------------------------------------------------
 """
-from abc import ABC
+
+from abc import ABC, abstractmethod
 from collections.abc import Callable
 from typing import Optional, Union
 
@@ -29,11 +30,12 @@
 from app.translator.core.functions import PlatformFunctions
 from app.translator.core.mapping import DEFAULT_MAPPING_NAME, BasePlatformMappings, LogSourceSignature, SourceMapping
 from app.translator.core.models.field import Field, FieldValue, Keyword
-from app.translator.core.models.functions.base import Function, ParsedFunctions
+from app.translator.core.models.functions.base import Function
 from app.translator.core.models.identifier import Identifier
-from app.translator.core.models.parser_output import MetaInfoContainer
 from app.translator.core.models.platform_details import PlatformDetails
+from app.translator.core.models.query_container import MetaInfoContainer, RawQueryContainer, TokenizedQueryContainer
 from app.translator.core.str_value_manager import StrValueManager
+from app.translator.core.tokenizer import TOKEN_TYPE
 
 
 class BaseQueryFieldValue(ABC):
@@ -99,7 +101,13 @@ def apply_field_value(self, field: str, operator: Identifier, value: DEFAULT_VAL
         raise UnsupportedOperatorException(operator.token_type)
 
 
-class BaseQueryRender:
+class QueryRender(ABC):
+    @abstractmethod
+    def generate(self, query_container: Union[RawQueryContainer, TokenizedQueryContainer]) -> str:
+        raise NotImplementedError("Abstract method")
+
+
+class PlatformQueryRender(QueryRender):
     mappings: BasePlatformMappings = None
     details: PlatformDetails = None
     is_strict_mapping = False
@@ -168,9 +176,9 @@ def apply_token(self, token: Union[FieldValue, Keyword, Identifier], source_mapp
 
         return token.token_type
 
-    def generate_query(self, query: list[Union[FieldValue, Keyword, Identifier]], source_mapping: SourceMapping) -> str:
+    def generate_query(self, tokens: list[TOKEN_TYPE], source_mapping: SourceMapping) -> str:
         result_values = []
-        for token in query:
+        for token in tokens:
             result_values.append(self.apply_token(token=token, source_mapping=source_mapping))
         return "".join(result_values)
 
@@ -243,22 +251,33 @@ def _get_source_mappings(self, source_mapping_ids: list[str]) -> list[SourceMapp
 
         return source_mappings
 
-    def generate(self, query: list, meta_info: MetaInfoContainer, functions: ParsedFunctions) -> str:
+    def _generate_from_raw_query_container(self, query_container: RawQueryContainer) -> str:
+        return self.finalize_query(
+            prefix="", query=query_container.query, functions="", meta_info=query_container.meta_info
+        )
+
+    def _generate_from_tokenized_query_container(self, query_container: TokenizedQueryContainer) -> str:
         queries_map = {}
-        source_mappings = self._get_source_mappings(meta_info.source_mapping_ids)
+        source_mappings = self._get_source_mappings(query_container.meta_info.source_mapping_ids)
 
         for source_mapping in source_mappings:
             prefix = self.generate_prefix(source_mapping.log_source_signature)
-            result = self.generate_query(query=query, source_mapping=source_mapping)
+            result = self.generate_query(tokens=query_container.tokens, source_mapping=source_mapping)
 
             finalized_query = self.finalize_query(
                 prefix=prefix,
                 query=result,
-                functions=self.generate_functions(functions.functions, source_mapping),
-                not_supported_functions=functions.not_supported,
-                meta_info=meta_info,
+                functions=self.generate_functions(query_container.functions.functions, source_mapping),
+                not_supported_functions=query_container.functions.not_supported,
+                meta_info=query_container.meta_info,
                 source_mapping=source_mapping,
             )
             queries_map[source_mapping.source_id] = finalized_query
 
         return self.finalize(queries_map)
+
+    def generate(self, query_container: Union[RawQueryContainer, TokenizedQueryContainer]) -> str:
+        if isinstance(query_container, RawQueryContainer):
+            return self._generate_from_raw_query_container(query_container)
+
+        return self._generate_from_tokenized_query_container(query_container)
@@ -17,7 +17,6 @@
 -----------------------------------------------------------------
 """
 
-
 from app.translator.core.models.iocs import IocsChunkValue
-Original file line number
+Diff line change
 -----------------------------------------------------------------
 """
+-
 from app.translator.core.models.iocs import IocsChunkValue