SO_PARSER_NAME - Fix SARIF values #2195
Replies: 4 comments
-
Some demonstration using CURL
|
Beta Was this translation helpful? Give feedback.
-
Correct one:
|
Beta Was this translation helpful? Give feedback.
-
Hi @Lucassino, I don't get a notification for discussions and there is no badge about new entries in the UI, so it took a few days to see it. Great find, thank you for that. It is dependant on the database. It works for MySQL, which I use in my productive environment, but it doesn't work with PostgreSQL. I will copy your post into an issue at the actions/templates repository and release a fix. |
Beta Was this translation helpful? Give feedback.
-
Thanks @StefanFl . Kind regards. |
Beta Was this translation helpful? Give feedback.
-
Hello, every SO_PARSER_NAME are defined as "Sarif" which doesn't works as expected in Github actions. After some analysis, the correct values should be "SARIF".
HTTPError: 400 Client Error: Bad Request for url: [http://my-backend:5000/api/import/file_upload_observations_by_name/)
Response: "message":"Parser Sarif does not exist"
My suggestion is change the values of entrypoints_"TOOL".sh to SARIF
From tools, i found:
Bandit, Checkov, Eslint, Gitleaks, Kics, Semgrep, TFSec
Beta Was this translation helpful? Give feedback.
All reactions