-
Hello expert,
I am trying to upload a SARIF file generated by a trivy scan. Whereas the SARIF file is generated, the upload of the file in the security tab failed with the message:
```
Run github…
-
# Summary
`github/codeql-action/upload-sarif` violates SARIF specification par. 3.27.12.
# Details
According to [SARIF specification par. 3.27.12](https://docs.oasis-open.org/sarif/sarif/v2.1.0…
-
Recently our [Kairos](https://github.com/kairos-io/kairos/) pipelines started failing with this error when uploading the generated sarif files to GitHub:
```
Waiting for processing to finish
An…
-
After upgrading the Securego/Gosec version, we are encountering an issue. The system is now reporting that the generated SARIF file is invalid.
This we are facing with this version- [v2.21.1]
Co…
-
## Description
The Static Analysis Results Interchange Format (SARIF) standard might be a more appropriate format for consideration instead of/as well as JUnit (https://github.com/Boeing/config-fil…
jcg-2 updated
3 weeks ago
-
(Am submitting a pull request to fix this, but I do not know how to test it.)
**Affects PMD Version:**
7.5.0
**Description:**
The sarif file generated by PMD has a schema file referen…
-
**Description of the issue**
Whenever I execute code scanning and generate a SARIF file, I always read and parse it in standard JSON format, which makes it difficult to display. Are there any tools o…
-
**Краткое описание:**
В снипет кода включается лишний текст из описания уязвимсоти.
`if (level === cadesplugin.LOG_LEVEL_DEBUG) **Rule name:** semgrep_public_rules.0xdea.generic.raptor-bad-words *…
-
I have this step in a workflow and it works:
```yaml
- name: "Upload Trivy scan results to GitHub Security tab"
uses: github/codeql-action/upload-sarif@v3
with:
…
-
We're using "Android Lint" to generate a sarif file. The sarif locations use this pattern:
```
"originalUriBaseIds": {
"%SRCROOT%": {
"uri": "file…