Skip to content

Fix duplicate ruleID in SARIF and others #95

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
airadier merged 1 commit into from
Nov 26, 2025
Merged

Fix duplicate ruleID in SARIF and others #95

airadier merged 1 commit into from
Nov 26, 2025

Conversation

@airadier
Copy link
Collaborator

@airadier airadier commented Nov 26, 2025

  • Fix duplicate ruleID in SARIF when grouping by package
  • Don't add rules and results in SARIF, when grouping by package, if the package does not have vulnerabilities
  • Use package name, version and path as the rule id
  • Clean SARIF messages after result URL has been removed
  • Update test fixture for V1 scan result
  • Update fixture for SARIF report
  • Bump CLI scanner to 1.24.1
  • Improve download test to support multi os/arch

@airadier
Fix duplicate ruleID in SARIF and others
243357e 
- Fix duplicate ruleID in SARIF when grouping by package
- Don't add rules and results in SARIF, when grouping by package, if the package does not have vulnerabilities
- Use package name, version and path as the rule id
- Clean SARIF messages after result URL has been removed
- Update test fixture for V1 scan result
- Update fixture for SARIF report
- Bump CLI scanner to 1.24.1
- Improve download test to support multi os/arch
@airadier airadier requested a review from a team as a code owner November 26, 2025 16:14
tembleking
tembleking requested changes Nov 26, 2025
View reviewed changes
@airadier airadier merged commit 0225eb0 into master Nov 26, 2025
10 checks passed
@airadier airadier deleted the fix-sarif-duplicate-ids branch November 26, 2025 16:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tembleking tembleking tembleking approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@airadier @tembleking