-
Lightgrep supports output to `stdout` or tab-delimited columnar data. Supporting [SARIF](https://docs.oasis-open.org/sarif/sarif/v2.1.0/csprd01/sarif-v2.1.0-csprd01.html) could allow for a richer repr…
-
When asking the package for it's version it answers with a wrong number, i.e.
```bash
# npx -y sarif-codeclimate@2.1.2 --version
2.0.0
```
I'd probably just remove the version in `src/bin/sarif-c…
-
Recently we have beeing seeing trivy action taking lot of time to Initialize the aqyasecurity trivy action(Build container for action use: '/home/runner/work/_actions/aquasecurity/trivy-action/0.20.0/…
-
-
The Static Analysis Results Interchange Format ([SARIF](https://sarifweb.azurewebsites.net/)) is an industry standard format for the output of static analysis tools. Github supports SARIF format and a…
-
Please support the [SARIF standard](https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=sarif) as an output format.
You may want to point to the requriements.txt file and the lines where the …
-
Can you please clarify if there is specific query that is used for sarif file generation of this would be enough:
```bash
codeql database create java-db --language=java
codeql database analyze ja…
shafr updated
2 weeks ago
-
This is not an actual issue in csdiff. I will demonstrate the differences between [`sarif-rs`](https://github.com/psastras/sarif-rs) utilities (soon available in Fedora) and `csutils`.
The main pur…
-
# Summary
Specifying 'workingDirectory' in 'invocation' property does not [convert absolute paths](https://docs.github.com/en/code-security/code-scanning/integrating-with-code-scanning/sarif-support-…
-
When the gitleaks-action workflow is executed through github workflows then internally it executes the command
/tmp/gitleaks-8.16.1/gitleaks detect --redact -v --exit-code=2 --report-format=sarif --…