-
## Overview
GitHub allows us to post comments with suggestions to a pull request. As far as I am concerned, the current implementation of the GitHub Action scans all files no matter what file we chan…
-
**Is your feature request related to a problem? Please describe.**
SARIF output does not include metadata. This makes it hard to extract information from it in an automated way, such as which CWE a r…
-
When running `check`, the plugin crashes:
```
java.lang.NoSuchMethodError: 'void io.github.detekt.sarif4k.ToolComponent.(io.github.detekt.sarif4k.ToolComponentReference, java.util.List, java.lang.…
-
Hi
Is it possible to generate both a sarif and html report using this action?
Thanks
-
We are currently running Trivy with the latest version:
```yaml
name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55 #0.19.0
with:
ima…
-
**Is your feature request related to a problem? Please describe.**
There is a docker container run for Linux, but the action is not available on Windows.
**Describe the solution you'd like**
I a…
-
### Download URL
https://github.com/nvdaes/testNvdaStoreActions/releases/download/4.0.0/testNvdaStore-4.0.0.nvda-addon
### Source URL
https://github.com/nvdaes/testNvdaStoreActions
### Publisher
…
-
It seems like a file uri reference like this:
`file:///d:/sarif/demo.c`
does not work.
This is the correct format according to https://datatracker.ietf.org/doc/html/rfc8089
and is also exemplified…
-
### Describe the bug
None of the JFrog licenses are included in the SARIF format.
### Current behavior
None of the JFrog licenses are included in the SARIF format.
### Reproduction steps
1. Creat…
-
### Download URL
https://github.com/nvdaes/readFeeds/releases/download/23.0.0/readFeeds-23.0.0.nvda-addon
### Source URL
https://github.com/nvdaes
### Publisher
nvdaes
### Channel
stable
### L…