`CapeExtractor` version mismatch warning on self-hosted CAPE reports

[mike-hunhoff]

When running capa against a report.json generated by a standard self-hosted CAPE Sandbox instance, capa logs a version warning:

[capa.features.extractors.cape.extractor] WARNING: CAPE version '2.5' not tested/supported yet

Root Cause

In capa/features/extractors/cape/extractor.py, TESTED_VERSIONS only contains versions with a "-CAPE" suffix:

TESTED_VERSIONS = {"2.2-CAPE", "2.4-CAPE", "2.5-CAPE"}

• The hosted instance (capesandbox.com) writes version strings as "2.5-CAPE".
• Self-hosted open-source CAPE instances write version strings simply as "2.5".

Proposed Solution

Update the version validation in capa/features/extractors/cape/extractor.py to support non-suffixed variants:

TESTED_VERSIONS = {
    "2.2", "2.2-CAPE",
    "2.4", "2.4-CAPE",
    "2.5", "2.5-CAPE",
}

[SAMurai-16]

Hi @mike-hunhoff can i work on this one?

[mr-tz]

go ahead