@datadog/datadog-ci-plugin-sarif 5.12.1 → 5.13.1

package/dist/renderer.d.ts

@@ -1,11 +0,0 @@
-import type { Payload } from './interfaces';
-export declare const renderInvalidFile: (sarifReport: string, errorMessages: string[]) => string;
-export declare const renderMissingTags: (missingTags: string[]) => string;
-export declare const renderFailedUpload: (sarifReport: Payload, error: any) => string;
-export declare const renderRetriedUpload: (sarifReport: Payload, errorMessage: string, attempt: number) => string;
-export declare const renderSuccessfulCommand: (fileCount: number, duration: number) => string;
-export declare const renderDryRunUpload: (payload: Payload) => string;
-export declare const renderUpload: (payload: Payload) => string;
-export declare const renderUploadWithSpan: (payload: Payload) => string;
-export declare const renderCommandInfo: (basePaths: string[], env: string, sha: string, concurrency: number, dryRun: boolean, noVerify: boolean) => string;
-export declare const renderFilesNotFound: (basePaths: string[]) => string;

package/dist/renderer.js

@@ -1,101 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.renderFilesNotFound = exports.renderCommandInfo = exports.renderUploadWithSpan = exports.renderUpload = exports.renderDryRunUpload = exports.renderSuccessfulCommand = exports.renderRetriedUpload = exports.renderFailedUpload = exports.renderMissingTags = exports.renderInvalidFile = void 0;
-const node_util_1 = require("node:util");
-const app_1 = require("@datadog/datadog-ci-base/helpers/app");
-const chalk_1 = __importDefault(require("chalk"));
-const upath_1 = __importDefault(require("upath"));
-const ICONS = {
-    FAILED: '❌',
-    SUCCESS: '✅',
-    WARNING: '⚠️',
-    INFO: 'ℹ️',
-};
-const renderInvalidFile = (sarifReport, errorMessages) => {
-    let fullStr = '';
-    const reportPath = `[${chalk_1.default.bold.dim(sarifReport)}]`;
-    fullStr += chalk_1.default.red(`${ICONS.FAILED} Invalid SARIF report file ${reportPath}.\n`);
-    fullStr += chalk_1.default.red(`The report is too large, not a valid JSON or is not compliant with the SARIF json schema v2.1.0.\n`);
-    fullStr += chalk_1.default.red(`Error(s) found:\n`);
-    for (const errorMessage of errorMessages) {
-        fullStr += chalk_1.default.red(` - ${errorMessage}\n`);
-    }
-    return fullStr;
-};
-exports.renderInvalidFile = renderInvalidFile;
-const renderMissingTags = (missingTags) => {
-    const styledPath = `[${chalk_1.default.bold.dim(process.cwd())}]`;
-    let fullStr = '';
-    fullStr += chalk_1.default.red(`There are missing git tags in ${styledPath}:\n`);
-    missingTags.forEach((tag) => {
-        fullStr += chalk_1.default.red(` - ${tag}\n`);
-    });
-    fullStr += chalk_1.default.red(`To fix this, ensure that the git information above is available for your commit.\n`);
-    return fullStr;
-};
-exports.renderMissingTags = renderMissingTags;
-const renderFailedUpload = (sarifReport, error) => {
-    var _a;
-    const reportPath = `[${chalk_1.default.bold.dim(sarifReport.reportPath)}]`;
-    let fullStr = '';
-    fullStr += chalk_1.default.red(`${ICONS.FAILED} Failed upload SARIF report file ${reportPath}: ${error.message}\n`);
-    if ((_a = error === null || error === void 0 ? void 0 : error.response) === null || _a === void 0 ? void 0 : _a.status) {
-        fullStr += chalk_1.default.red(`API status code: ${error.response.status}\n`);
-    }
-    if (error.message.includes('Aggregate Error')) {
-        fullStr += chalk_1.default.red(`Inspect error: ${(0, node_util_1.inspect)(error)}\n`);
-    }
-    return fullStr;
-};
-exports.renderFailedUpload = renderFailedUpload;
-const renderRetriedUpload = (sarifReport, errorMessage, attempt) => {
-    const sarifReportPath = `[${chalk_1.default.bold.dim(sarifReport.reportPath)}]`;
-    return chalk_1.default.yellow(`[attempt ${attempt}] Retrying SARIF report upload ${sarifReportPath}: ${errorMessage}\n`);
-};
-exports.renderRetriedUpload = renderRetriedUpload;
-const renderSuccessfulCommand = (fileCount, duration) => {
-    let fullStr = '';
-    fullStr += chalk_1.default.green(`${ICONS.SUCCESS} Uploaded ${fileCount} files in ${duration} seconds.\n`);
-    fullStr += chalk_1.default.green(`${ICONS.INFO}  Results available on ${(0, app_1.getBaseUrl)()}ci/code-analysis\n`);
-    fullStr += chalk_1.default.green('=================================================================================================\n');
-    return fullStr;
-};
-exports.renderSuccessfulCommand = renderSuccessfulCommand;
-const renderDryRunUpload = (payload) => `[DRYRUN] ${(0, exports.renderUploadWithSpan)(payload)}`;
-exports.renderDryRunUpload = renderDryRunUpload;
-const renderUpload = (payload) => `Uploading SARIF report in ${payload.reportPath}\n`;
-exports.renderUpload = renderUpload;
-const renderUploadWithSpan = (payload) => `Uploading SARIF report to ${payload.reportPath} with tags ${JSON.stringify(payload.spanTags)}\n`;
-exports.renderUploadWithSpan = renderUploadWithSpan;
-const renderCommandInfo = (basePaths, env, sha, concurrency, dryRun, noVerify) => {
-    let fullStr = '';
-    if (dryRun) {
-        fullStr += chalk_1.default.yellow(`${ICONS.WARNING} DRY-RUN MODE ENABLED. WILL NOT UPLOAD SARIF REPORT\n`);
-    }
-    if (noVerify) {
-        fullStr += chalk_1.default.yellow(`${ICONS.INFO} --no-verify enabled. The reports will be uploaded without client validation.\n`);
-    }
-    fullStr += chalk_1.default.green(`Starting upload with concurrency ${concurrency}. \n`);
-    if (basePaths.length === 1 && !!upath_1.default.extname(basePaths[0])) {
-        fullStr += chalk_1.default.green(`Will upload SARIF report file ${basePaths[0]}\n`);
-    }
-    else {
-        fullStr += chalk_1.default.green(`Will look for SARIF report files in ${basePaths.join(', ')}\n`);
-    }
-    fullStr += `Only one upload per commit, env and tool\n`;
-    fullStr += `Preparing upload for sha:${sha} env:${env}\n`;
-    return fullStr;
-};
-exports.renderCommandInfo = renderCommandInfo;
-const renderFilesNotFound = (basePaths) => {
-    let fullStr = '';
-    const paths = basePaths.length === 1 && !!upath_1.default.extname(basePaths[0]) ? basePaths[0] : basePaths.join(', ');
-    fullStr += chalk_1.default.yellow(`${ICONS.WARNING} Cannot find valid SARIF report files to upload in ${paths}.\n`);
-    fullStr += chalk_1.default.yellow(`Check the files exist and are valid.\n`);
-    return fullStr;
-};
-exports.renderFilesNotFound = renderFilesNotFound;
-//# sourceMappingURL=renderer.js.map

package/dist/renderer.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"renderer.js","sourceRoot":"","sources":["../src/renderer.ts"],"names":[],"mappings":";;;;;;AAAA,yCAAiC;AAIjC,8DAA+D;AAC/D,kDAAyB;AACzB,kDAAyB;AAEzB,MAAM,KAAK,GAAG;IACZ,MAAM,EAAE,GAAG;IACX,OAAO,EAAE,GAAG;IACZ,OAAO,EAAE,IAAI;IACb,IAAI,EAAE,IAAI;CACX,CAAA;AAEM,MAAM,iBAAiB,GAAG,CAAC,WAAmB,EAAE,aAAuB,EAAE,EAAE;IAChF,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,GAAG,CAAA;IAErD,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,8BAA8B,UAAU,KAAK,CAAC,CAAA;IAClF,OAAO,IAAI,eAAK,CAAC,GAAG,CAClB,oGAAoG,CACrG,CAAA;IAED,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAA;IACzC,KAAK,MAAM,YAAY,IAAI,aAAa,EAAE;QACxC,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,MAAM,YAAY,IAAI,CAAC,CAAA;KAC7C;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAfY,QAAA,iBAAiB,qBAe7B;AAEM,MAAM,iBAAiB,GAAG,CAAC,WAAqB,EAAE,EAAE;IACzD,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,GAAG,CAAA;IAEvD,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,iCAAiC,UAAU,KAAK,CAAC,CAAA;IACtE,WAAW,CAAC,OAAO,CAAC,CAAC,GAAW,EAAE,EAAE;QAClC,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,MAAM,GAAG,IAAI,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;IACF,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,oFAAoF,CAAC,CAAA;IAE1G,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAXY,QAAA,iBAAiB,qBAW7B;AAEM,MAAM,kBAAkB,GAAG,CAAC,WAAoB,EAAE,KAAU,EAAE,EAAE;;IACrE,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,CAAA;IAEhE,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,oCAAoC,UAAU,KAAK,KAAK,CAAC,OAAO,IAAI,CAAC,CAAA;IACzG,IAAI,MAAA,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,QAAQ,0CAAE,MAAM,EAAE;QAC3B,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,oBAAoB,KAAK,CAAC,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAA;KACpE;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE;QAC7C,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,kBAAkB,IAAA,mBAAO,EAAC,KAAK,CAAC,IAAI,CAAC,CAAA;KAC3D;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAbY,QAAA,kBAAkB,sBAa9B;AAEM,MAAM,mBAAmB,GAAG,CAAC,WAAoB,EAAE,YAAoB,EAAE,OAAe,EAAE,EAAE;IACjG,MAAM,eAAe,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,CAAA;IAErE,OAAO,eAAK,CAAC,MAAM,CAAC,YAAY,OAAO,kCAAkC,eAAe,KAAK,YAAY,IAAI,CAAC,CAAA;AAChH,CAAC,CAAA;AAJY,QAAA,mBAAmB,uBAI/B;AAEM,MAAM,uBAAuB,GAAG,CAAC,SAAiB,EAAE,QAAgB,EAAE,EAAE;IAC7E,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,OAAO,aAAa,SAAS,aAAa,QAAQ,aAAa,CAAC,CAAA;IAChG,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,IAAI,0BAA0B,IAAA,gBAAU,GAAE,oBAAoB,CAAC,CAAA;IAC/F,OAAO,IAAI,eAAK,CAAC,KAAK,CACpB,qGAAqG,CACtG,CAAA;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AATY,QAAA,uBAAuB,2BASnC;AAEM,MAAM,kBAAkB,GAAG,CAAC,OAAgB,EAAU,EAAE,CAAC,YAAY,IAAA,4BAAoB,EAAC,OAAO,CAAC,EAAE,CAAA;AAA9F,QAAA,kBAAkB,sBAA4E;AAEpG,MAAM,YAAY,GAAG,CAAC,OAAgB,EAAU,EAAE,CAAC,6BAA6B,OAAO,CAAC,UAAU,IAAI,CAAA;AAAhG,QAAA,YAAY,gBAAoF;AACtG,MAAM,oBAAoB,GAAG,CAAC,OAAgB,EAAU,EAAE,CAC/D,6BAA6B,OAAO,CAAC,UAAU,cAAc,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAA;AADtF,QAAA,oBAAoB,wBACkE;AAE5F,MAAM,iBAAiB,GAAG,CAC/B,SAAmB,EACnB,GAAW,EACX,GAAW,EACX,WAAmB,EACnB,MAAe,EACf,QAAiB,EACjB,EAAE;IACF,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,IAAI,MAAM,EAAE;QACV,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,OAAO,uDAAuD,CAAC,CAAA;KACjG;IACD,IAAI,QAAQ,EAAE;QACZ,OAAO,IAAI,eAAK,CAAC,MAAM,CACrB,GAAG,KAAK,CAAC,IAAI,iFAAiF,CAC/F,CAAA;KACF;IACD,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,oCAAoC,WAAW,MAAM,CAAC,CAAA;IAC7E,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC,eAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE;QAC3D,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,iCAAiC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;KAC1E;SAAM;QACL,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,uCAAuC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;KACxF;IACD,OAAO,IAAI,4CAA4C,CAAA;IACvD,OAAO,IAAI,4BAA4B,GAAG,QAAQ,GAAG,IAAI,CAAA;IAEzD,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AA3BY,QAAA,iBAAiB,qBA2B7B;AAEM,MAAM,mBAAmB,GAAG,CAAC,SAAmB,EAAE,EAAE;IACzD,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,MAAM,KAAK,GAAG,SAAS,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC,eAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE3G,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,OAAO,sDAAsD,KAAK,KAAK,CAAC,CAAA;IACzG,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,wCAAwC,CAAC,CAAA;IAEjE,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AARY,QAAA,mBAAmB,uBAQ/B"}

package/dist/utils.d.ts

@@ -1,21 +0,0 @@
-export declare const getBaseIntakeUrl: () => string;
-export declare const TAG_DATADOG_TYPE_TYPE_STATIC = "DATADOG_RULE_TYPE:STATIC_ANALYSIS";
-export declare const TAG_DATADOG_TYPE_TYPE_SECRET = "DATADOG_RULE_TYPE:SECRET";
-export declare const SERVICE_DATADOG_ANALYZER = "datadog-analyzer";
-export declare const SERVICE_DATADOG_ANALYZER_SA_ONLY = "datadog-analyzer-sa-only";
-export declare const SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = "datadog-analyzer-secrets-only";
-export declare const SERVICE_THIRD_PARTY_ANALYZER = "third-party-analyzer";
-/**
- * Define the service and env based on the SARIF contents reports
- *  - if the report is produced by the datadog static analyzer, we look if the report
- *    contains only static analysis or secrets errors and change service
- *  - if the report is produced by a third party tool, we report it as is and cannot
- *    infer the nature of the results. We still try to get the first tool from the runs.
- *
- *  The objective of this function is to make sure that if a user uploads one report
- *  for static analysis only and one report for secrets only, they will have a different
- *  service and env for each report so that they are not discarded later in our backend.
- *
- * @param filePath
- */
-export declare const getServiceFromSarifTool: (filePath: string) => string;

package/dist/utils.js

@@ -1,75 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getServiceFromSarifTool = exports.SERVICE_THIRD_PARTY_ANALYZER = exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = exports.SERVICE_DATADOG_ANALYZER_SA_ONLY = exports.SERVICE_DATADOG_ANALYZER = exports.TAG_DATADOG_TYPE_TYPE_SECRET = exports.TAG_DATADOG_TYPE_TYPE_STATIC = exports.getBaseIntakeUrl = void 0;
-const fs_1 = __importDefault(require("fs"));
-const api_1 = require("@datadog/datadog-ci-base/helpers/api");
-const getBaseIntakeUrl = () => (0, api_1.getIntakeUrl)('cicodescan-intake');
-exports.getBaseIntakeUrl = getBaseIntakeUrl;
-exports.TAG_DATADOG_TYPE_TYPE_STATIC = 'DATADOG_RULE_TYPE:STATIC_ANALYSIS';
-exports.TAG_DATADOG_TYPE_TYPE_SECRET = 'DATADOG_RULE_TYPE:SECRET';
-exports.SERVICE_DATADOG_ANALYZER = 'datadog-analyzer';
-exports.SERVICE_DATADOG_ANALYZER_SA_ONLY = 'datadog-analyzer-sa-only';
-exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = 'datadog-analyzer-secrets-only';
-exports.SERVICE_THIRD_PARTY_ANALYZER = 'third-party-analyzer';
-/**
- * Define the service and env based on the SARIF contents reports
- *  - if the report is produced by the datadog static analyzer, we look if the report
- *    contains only static analysis or secrets errors and change service
- *  - if the report is produced by a third party tool, we report it as is and cannot
- *    infer the nature of the results. We still try to get the first tool from the runs.
- *
- *  The objective of this function is to make sure that if a user uploads one report
- *  for static analysis only and one report for secrets only, they will have a different
- *  service and env for each report so that they are not discarded later in our backend.
- *
- * @param filePath
- */
-const getServiceFromSarifTool = (filePath) => {
-    let otherTool = exports.SERVICE_THIRD_PARTY_ANALYZER;
-    const ruleTypes = new Set();
-    try {
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
-        const report = JSON.parse(String(fs_1.default.readFileSync(filePath)));
-        if ('runs' in report) {
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            for (const run of report['runs']) {
-                // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                if ('tool' in run && 'driver' in run['tool'] && 'rules' in run['tool']['driver']) {
-                    for (const rule of run['tool']['driver']['rules']) {
-                        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                        if ('properties' in rule && 'tags' in rule['properties']) {
-                            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                            for (const tag of rule['properties']['tags']) {
-                                // eslint-disable-next-line @typescript-eslint/no-unsafe-call,@typescript-eslint/no-unsafe-member-access
-                                if (tag.includes('DATADOG_RULE_TYPE')) {
-                                    // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
-                                    ruleTypes.add(tag);
-                                }
-                            }
-                        }
-                    }
-                }
-            }
-        }
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access,@typescript-eslint/no-unsafe-assignment
-        otherTool = report['runs'][0]['tool']['driver']['name'];
-    }
-    catch (error) {
-        // ignore
-    }
-    if (ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER;
-    }
-    if (ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && !ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER_SA_ONLY;
-    }
-    if (!ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY;
-    }
-    return otherTool;
-};
-exports.getServiceFromSarifTool = getServiceFromSarifTool;
-//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAmB;AAEnB,8DAAiE;AAE1D,MAAM,gBAAgB,GAAG,GAAG,EAAE,CAAC,IAAA,kBAAY,EAAC,mBAAmB,CAAC,CAAA;AAA1D,QAAA,gBAAgB,oBAA0C;AAE1D,QAAA,4BAA4B,GAAG,mCAAmC,CAAA;AAClE,QAAA,4BAA4B,GAAG,0BAA0B,CAAA;AACzD,QAAA,wBAAwB,GAAG,kBAAkB,CAAA;AAC7C,QAAA,gCAAgC,GAAG,0BAA0B,CAAA;AAC7D,QAAA,qCAAqC,GAAG,+BAA+B,CAAA;AACvE,QAAA,4BAA4B,GAAG,sBAAsB,CAAA;AAElE;;;;;;;;;;;;GAYG;AACI,MAAM,uBAAuB,GAAG,CAAC,QAAgB,EAAU,EAAE;IAClE,IAAI,SAAS,GAAW,oCAA4B,CAAA;IACpD,MAAM,SAAS,GAAgB,IAAI,GAAG,EAAE,CAAA;IACxC,IAAI;QACF,mEAAmE;QACnE,MAAM,MAAM,GAAQ,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;QAEjE,IAAI,MAAM,IAAI,MAAM,EAAE;YACpB,sEAAsE;YACtE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,EAAE;gBAChC,sEAAsE;gBACtE,IAAI,MAAM,IAAI,GAAG,IAAI,QAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,IAAI,OAAO,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE;oBAChF,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,EAAE;wBACjD,sEAAsE;wBACtE,IAAI,YAAY,IAAI,IAAI,IAAI,MAAM,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE;4BACxD,sEAAsE;4BACtE,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,EAAE;gCAC5C,wGAAwG;gCACxG,IAAI,GAAG,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE;oCACrC,iEAAiE;oCACjE,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;iCACnB;6BACF;yBACF;qBACF;iBACF;aACF;SACF;QAED,8GAA8G;QAC9G,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAA;KACxD;IAAC,OAAO,KAAK,EAAE;QACd,SAAS;KACV;IAED,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC9F,OAAO,gCAAwB,CAAA;KAChC;IAED,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC/F,OAAO,wCAAgC,CAAA;KACxC;IAED,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC/F,OAAO,6CAAqC,CAAA;KAC7C;IAED,OAAO,SAAS,CAAA;AAClB,CAAC,CAAA;AAhDY,QAAA,uBAAuB,2BAgDnC"}

package/dist/validation.d.ts

@@ -1,16 +0,0 @@
-/**
- * Validate the SARIF file and check if the file is too large or not valid
- * against the SARIF schema.
- *
- * @param sarifReportPath - the path of the SARIF file
- */
-export declare const validateSarif: (sarifReportPath: string) => string | undefined;
-/**
- * Functions that looks for errors specific to how Datadog processes SARIF file. This way, we
- * show the error directly to the user instead of uploading a file we cannot process in our backend.
- *
- * The function returns a list of errors to show. The return value is empty if there is no error.
- *
- * @param filePath - the path of the SARIF file.
- */
-export declare const checkForError: (filePath: string) => string[];

package/dist/validation.js

@@ -1,102 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkForError = exports.validateSarif = void 0;
-const fs_1 = __importDefault(require("fs"));
-const ajv_1 = __importDefault(require("ajv"));
-const ajv_formats_1 = __importDefault(require("ajv-formats"));
-const sarif_schema_2_1_0_json_1 = __importDefault(require("./json-schema/sarif-schema-2.1.0.json"));
-const maxSarifFileSize = 100 * 1024 * 1024; // 100MB in bytes
-/**
- * Validate the SARIF file and check if the file is too large or not valid
- * against the SARIF schema.
- *
- * @param sarifReportPath - the path of the SARIF file
- */
-const validateSarif = (sarifReportPath) => {
-    try {
-        const stats = fs_1.default.statSync(sarifReportPath); // Synchronously get file stats
-        const fileSize = stats.size;
-        if (fileSize > maxSarifFileSize) {
-            return `file size too large (size: ${fileSize / 1024 / 1024} MB, max size: ${maxSarifFileSize / 1024 / 1024} MB)`;
-        }
-    }
-    catch (err) {
-        return err.message;
-    }
-    const ajv = new ajv_1.default({ allErrors: true, validateFormats: false });
-    (0, ajv_formats_1.default)(ajv);
-    const sarifJsonSchemaValidate = ajv.compile(sarif_schema_2_1_0_json_1.default);
-    try {
-        const sarifReportContent = JSON.parse(String(fs_1.default.readFileSync(sarifReportPath)));
-        const valid = sarifJsonSchemaValidate(sarifReportContent);
-        if (!valid) {
-            const errors = sarifJsonSchemaValidate.errors || [];
-            const errorMessages = errors.map((error) => {
-                return `${error.instancePath}: ${error.message}`;
-            });
-            return errorMessages.join('\n');
-        }
-    }
-    catch (error) {
-        return error.message;
-    }
-    return undefined;
-};
-exports.validateSarif = validateSarif;
-/**
- * Functions that looks for errors specific to how Datadog processes SARIF file. This way, we
- * show the error directly to the user instead of uploading a file we cannot process in our backend.
- *
- * The function returns a list of errors to show. The return value is empty if there is no error.
- *
- * @param filePath - the path of the SARIF file.
- */
-const checkForError = (filePath) => {
-    const report = JSON.parse(String(fs_1.default.readFileSync(filePath)));
-    const res = [];
-    if ('runs' in report) {
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-        for (const run of report['runs']) {
-            const rules = [];
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            if ('tool' in run && 'driver' in run['tool'] && 'rules' in run['tool']['driver']) {
-                for (const rule of run['tool']['driver']['rules']) {
-                    if ('id' in rule) {
-                        rules.push(rule['id']);
-                    }
-                }
-            }
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            if ('tool' in run && 'extensions' in run['tool']) {
-                for (const extension of run['tool']['extensions']) {
-                    if ('rules' in extension) {
-                        for (const rule of extension['rules']) {
-                            if ('id' in rule) {
-                                rules.push(rule['id']);
-                            }
-                        }
-                    }
-                }
-            }
-            if ('results' in run) {
-                for (const result of run['results']) {
-                    if (!('ruleId' in result)) {
-                        res.push('a result should have a ruleId');
-                        continue;
-                    }
-                    // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access,@typescript-eslint/no-unsafe-assignment
-                    const ruleId = result['ruleId'];
-                    if (rules.indexOf(ruleId) === -1) {
-                        res.push(`result references rule ${ruleId} but rule not found in the tool section`);
-                    }
-                }
-            }
-        }
-    }
-    return res;
-};
-exports.checkForError = checkForError;
-//# sourceMappingURL=validation.js.map

package/dist/validation.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"validation.js","sourceRoot":"","sources":["../src/validation.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAmB;AAInB,8CAAqB;AACrB,8DAAoC;AAEpC,oGAAmE;AAEnE,MAAM,gBAAgB,GAAG,GAAG,GAAG,IAAI,GAAG,IAAI,CAAA,CAAC,iBAAiB;AAE5D;;;;;GAKG;AACI,MAAM,aAAa,GAAG,CAAC,eAAuB,EAAsB,EAAE;IAC3E,IAAI;QACF,MAAM,KAAK,GAAG,YAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA,CAAC,+BAA+B;QAC1E,MAAM,QAAQ,GAAG,KAAK,CAAC,IAAI,CAAA;QAE3B,IAAI,QAAQ,GAAG,gBAAgB,EAAE;YAC/B,OAAO,8BAA8B,QAAQ,GAAG,IAAI,GAAG,IAAI,kBAAkB,gBAAgB,GAAG,IAAI,GAAG,IAAI,MAAM,CAAA;SAClH;KACF;IAAC,OAAO,GAAG,EAAE;QACZ,OAAO,GAAG,CAAC,OAAO,CAAA;KACnB;IAED,MAAM,GAAG,GAAG,IAAI,aAAG,CAAC,EAAC,SAAS,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAC,CAAC,CAAA;IAC9D,IAAA,qBAAU,EAAC,GAAG,CAAC,CAAA;IACf,MAAM,uBAAuB,GAAG,GAAG,CAAC,OAAO,CAAC,iCAAe,CAAC,CAAA;IAC5D,IAAI;QACF,MAAM,kBAAkB,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,eAAe,CAAC,CAAC,CAAC,CAAA;QAC/E,MAAM,KAAK,GAAG,uBAAuB,CAAC,kBAAkB,CAAC,CAAA;QACzD,IAAI,CAAC,KAAK,EAAE;YACV,MAAM,MAAM,GAAG,uBAAuB,CAAC,MAAM,IAAI,EAAE,CAAA;YACnD,MAAM,aAAa,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,KAAkB,EAAE,EAAE;gBACtD,OAAO,GAAG,KAAK,CAAC,YAAY,KAAK,KAAK,CAAC,OAAO,EAAE,CAAA;YAClD,CAAC,CAAC,CAAA;YAEF,OAAO,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;SAChC;KACF;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,KAAK,CAAC,OAAO,CAAA;KACrB;IAED,OAAO,SAAS,CAAA;AAClB,CAAC,CAAA;AA/BY,QAAA,aAAa,iBA+BzB;AAED;;;;;;;GAOG;AACI,MAAM,aAAa,GAAG,CAAC,QAAgB,EAAY,EAAE;IAC1D,MAAM,MAAM,GAAQ,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;IACjE,MAAM,GAAG,GAAa,EAAE,CAAA;IAExB,IAAI,MAAM,IAAI,MAAM,EAAE;QACpB,sEAAsE;QACtE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,EAAE;YAChC,MAAM,KAAK,GAAa,EAAE,CAAA;YAC1B,sEAAsE;YACtE,IAAI,MAAM,IAAI,GAAG,IAAI,QAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,IAAI,OAAO,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE;gBAChF,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,EAAE;oBACjD,IAAI,IAAI,IAAI,IAAI,EAAE;wBAChB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;qBACvB;iBACF;aACF;YACD,sEAAsE;YACtE,IAAI,MAAM,IAAI,GAAG,IAAI,YAAY,IAAI,GAAG,CAAC,MAAM,CAAC,EAAE;gBAChD,KAAK,MAAM,SAAS,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,EAAE;oBACjD,IAAI,OAAO,IAAI,SAAS,EAAE;wBACxB,KAAK,MAAM,IAAI,IAAI,SAAS,CAAC,OAAO,CAAC,EAAE;4BACrC,IAAI,IAAI,IAAI,IAAI,EAAE;gCAChB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;6BACvB;yBACF;qBACF;iBACF;aACF;YAED,IAAI,SAAS,IAAI,GAAG,EAAE;gBACpB,KAAK,MAAM,MAAM,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE;oBACnC,IAAI,CAAC,CAAC,QAAQ,IAAI,MAAM,CAAC,EAAE;wBACzB,GAAG,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAA;wBACzC,SAAQ;qBACT;oBACD,8GAA8G;oBAC9G,MAAM,MAAM,GAAW,MAAM,CAAC,QAAQ,CAAC,CAAA;oBACvC,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE;wBAChC,GAAG,CAAC,IAAI,CAAC,0BAA0B,MAAM,yCAAyC,CAAC,CAAA;qBACpF;iBACF;aACF;SACF;KACF;IAED,OAAO,GAAG,CAAA;AACZ,CAAC,CAAA;AA9CY,QAAA,aAAa,iBA8CzB"}