search

fortify / fcli

fcli is a command-line utility for interacting with various Fortify products
https://fortify.github.io/fcli/
Other
27 stars 16 forks source link

`fcli fod sast get` returns `NullPointerExeception` #553

Closed MikeTheSnowman closed 4 days ago

MikeTheSnowman commented 2 weeks ago

Current Behavior

When trying to run fcli fod sast get <scan-id>, the command will return with a NullPointerException. Below is the generated stack trace:

PS C:\Users\mike\Desktop\qbe-migration> fcli fod sast get 9203777 -o "expr={analysisStatusType}"
java.lang.NullPointerException
        at com.fortify.cli.fod._common.scan.cli.mixin.FoDScanResolverMixin$AbstractFoDScanResolverMixin.getDelimiter(FoDScanResolverMixin.java:60)
        at com.fortify.cli.fod._common.scan.cli.mixin.FoDScanResolverMixin$AbstractFoDScanResolverMixin.getScanDescriptor(FoDScanResolverMixin.java:44)
        at com.fortify.cli.fod._common.scan.cli.mixin.FoDScanResolverMixin$AbstractFoDScanResolverMixin.getScanDescriptor(FoDScanResolverMixin.java:48)
        at com.fortify.cli.fod._common.scan.cli.cmd.AbstractFoDScanGetCommand.getJsonNode(AbstractFoDScanGetCommand.java:31)
        at com.fortify.cli.fod._common.output.cli.cmd.AbstractFoDJsonNodeOutputCommand.getJsonNode(AbstractFoDJsonNodeOutputCommand.java:23)
        at com.fortify.cli.common.output.cli.cmd.AbstractOutputCommand.call(AbstractOutputCommand.java:33)
        at com.fortify.cli.common.output.cli.cmd.AbstractOutputCommand.call(AbstractOutputCommand.java:22)
        at picocli.CommandLine.executeUserObject(CommandLine.java:2118)
        at picocli.CommandLine$RunLast.executeUserObjectOfLastSubcommandWithSameParent(CommandLine.java:2538)
        at picocli.CommandLine$RunLast.handle(CommandLine.java:2530)
        at picocli.CommandLine$RunLast.handle(CommandLine.java:2492)
        at picocli.CommandLine$AbstractParseResultHandler.execute(CommandLine.java:2350)
        at picocli.CommandLine$RunLast.execute(CommandLine.java:2494)
        at picocli.CommandLine.execute(CommandLine.java:2247)
        at com.fortify.cli.app.runner.DefaultFortifyCLIRunner.run(DefaultFortifyCLIRunner.java:49)
        at com.fortify.cli.app.FortifyCLI.execute(FortifyCLI.java:38)
        at com.fortify.cli.app.FortifyCLI.main(FortifyCLI.java:32)
        at java.base@21.0.2/java.lang.invoke.LambdaForm$DMH/sa346b79c.invokeStaticInit(LambdaForm$DMH)

Below is a screenshot from the test. Oddly enough, the wait-for command works: image

Expected Behavior

The command should be able to process a valid scan ID without throwing an exception and display the desired data.

Steps To Reproduce

Just run the fcli fod sast get command.

Environment

OS: Windows 11
FoD: 24.2
fcli: 0.20240529.102316-dev_develop

Anything else?

No response