Malicious Code scan command

[attiasas]

Enable malicious-scan CLI command

Summary

Enables the malicious-scan (ms) CLI [Beta] command and introduces a dedicated entitlement check (ai_catalog) with a minimum Xray version requirement (3.132.0)

Changes

• cli/scancommands.go: Uncommented the malicious-scan command registration and its docs import, making the command available in the CLI.
• commands/maliciousscan/maliciousscan.go:
  • Added MaliciousScanFeatureId (ai_catalog) and MinimumXrayVersionForMaliciousScan (3.132.0) constants.
  • Replaced the generic jas.IsEntitledForJas check with a new IsEntitledForMaliciousScan function that validates entitlement using the ai_catalog feature ID.
  • Added minimum Xray version validation before running the scan.
• maliciousscan_test.go: Uncommented all integration tests (TestMaliciousScan, TestMaliciousScanWithWorkingDirs) and wired them to the new InitMaliciousScanTest guard and MinimumXrayVersionForMaliciousScan constant.
• tests/config.go: Added TestMaliciousScan flag (--test.maliciousScan) and included it in the "run all tests" default set.
• tests/utils/integration/test_integrationutils.go: Added InitMaliciousScanTest helper to skip/gate tests based on the new flag and minimum Xray version.
• .github/workflows/test.yml: Added --test.maliciousScan flag to the CI test run arguments.

Testing

• Integration tests for malicious-scan are now active and gated behind the --test.maliciousScan flag.
• CI workflow updated to run these tests.
• Tests are passing against JPD

--- PASS: TestMaliciousScan (17.22s)
    --- PASS: TestMaliciousScan/Malicious_scan_with_findings_(Simple_JSON) (8.68s)
    --- PASS: TestMaliciousScan/Malicious_scan_without_findings_(Simple_JSON) (8.53s)
--- PASS: TestMaliciousScanWithWorkingDirs (8.60s)

[github-actions]

---

🐸 JFrog Frogbot