@datadog/datadog-ci 3.20.0 → 3.21.2

package/dist/commands/sarif/renderer.d.ts

@@ -1,11 +0,0 @@
-import { Payload } from './interfaces';
-export declare const renderInvalidFile: (sarifReport: string, errorMessages: string[]) => string;
-export declare const renderMissingTags: (missingTags: string[]) => string;
-export declare const renderFailedUpload: (sarifReport: Payload, error: any) => string;
-export declare const renderRetriedUpload: (sarifReport: Payload, errorMessage: string, attempt: number) => string;
-export declare const renderSuccessfulCommand: (fileCount: number, duration: number) => string;
-export declare const renderDryRunUpload: (payload: Payload) => string;
-export declare const renderUpload: (payload: Payload) => string;
-export declare const renderUploadWithSpan: (payload: Payload) => string;
-export declare const renderCommandInfo: (basePaths: string[], env: string, sha: string, concurrency: number, dryRun: boolean, noVerify: boolean) => string;
-export declare const renderFilesNotFound: (basePaths: string[]) => string;

package/dist/commands/sarif/renderer.js

@@ -1,97 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.renderFilesNotFound = exports.renderCommandInfo = exports.renderUploadWithSpan = exports.renderUpload = exports.renderDryRunUpload = exports.renderSuccessfulCommand = exports.renderRetriedUpload = exports.renderFailedUpload = exports.renderMissingTags = exports.renderInvalidFile = void 0;
-const chalk_1 = __importDefault(require("chalk"));
-const upath_1 = __importDefault(require("upath"));
-const app_1 = require("../../helpers/app");
-const ICONS = {
-    FAILED: '❌',
-    SUCCESS: '✅',
-    WARNING: '⚠️',
-    INFO: 'ℹ️',
-};
-const renderInvalidFile = (sarifReport, errorMessages) => {
-    let fullStr = '';
-    const reportPath = `[${chalk_1.default.bold.dim(sarifReport)}]`;
-    fullStr += chalk_1.default.red(`${ICONS.FAILED} Invalid SARIF report file ${reportPath}.\n`);
-    fullStr += chalk_1.default.red(`The report is too large, not a valid JSON or is not compliant with the SARIF json schema v2.1.0.\n`);
-    fullStr += chalk_1.default.red(`Error(s) found:\n`);
-    for (const errorMessage of errorMessages) {
-        fullStr += chalk_1.default.red(` - ${errorMessage}\n`);
-    }
-    return fullStr;
-};
-exports.renderInvalidFile = renderInvalidFile;
-const renderMissingTags = (missingTags) => {
-    const styledPath = `[${chalk_1.default.bold.dim(process.cwd())}]`;
-    let fullStr = '';
-    fullStr += chalk_1.default.red(`There are missing git tags in ${styledPath}:\n`);
-    missingTags.forEach((tag) => {
-        fullStr += chalk_1.default.red(` - ${tag}\n`);
-    });
-    fullStr += chalk_1.default.red(`To fix this, ensure that the git information above is available for your commit.\n`);
-    return fullStr;
-};
-exports.renderMissingTags = renderMissingTags;
-const renderFailedUpload = (sarifReport, error) => {
-    var _a;
-    const reportPath = `[${chalk_1.default.bold.dim(sarifReport.reportPath)}]`;
-    let fullStr = '';
-    fullStr += chalk_1.default.red(`${ICONS.FAILED} Failed upload SARIF report file ${reportPath}: ${error.message}\n`);
-    if ((_a = error === null || error === void 0 ? void 0 : error.response) === null || _a === void 0 ? void 0 : _a.status) {
-        fullStr += chalk_1.default.red(`API status code: ${error.response.status}\n`);
-    }
-    return fullStr;
-};
-exports.renderFailedUpload = renderFailedUpload;
-const renderRetriedUpload = (sarifReport, errorMessage, attempt) => {
-    const sarifReportPath = `[${chalk_1.default.bold.dim(sarifReport.reportPath)}]`;
-    return chalk_1.default.yellow(`[attempt ${attempt}] Retrying SARIF report upload ${sarifReportPath}: ${errorMessage}\n`);
-};
-exports.renderRetriedUpload = renderRetriedUpload;
-const renderSuccessfulCommand = (fileCount, duration) => {
-    let fullStr = '';
-    fullStr += chalk_1.default.green(`${ICONS.SUCCESS} Uploaded ${fileCount} files in ${duration} seconds.\n`);
-    fullStr += chalk_1.default.green(`${ICONS.INFO}  Results available on ${(0, app_1.getBaseUrl)()}ci/code-analysis\n`);
-    fullStr += chalk_1.default.green('=================================================================================================\n');
-    return fullStr;
-};
-exports.renderSuccessfulCommand = renderSuccessfulCommand;
-const renderDryRunUpload = (payload) => `[DRYRUN] ${(0, exports.renderUploadWithSpan)(payload)}`;
-exports.renderDryRunUpload = renderDryRunUpload;
-const renderUpload = (payload) => `Uploading SARIF report in ${payload.reportPath}\n`;
-exports.renderUpload = renderUpload;
-const renderUploadWithSpan = (payload) => `Uploading SARIF report to ${payload.reportPath} with tags ${JSON.stringify(payload.spanTags)}\n`;
-exports.renderUploadWithSpan = renderUploadWithSpan;
-const renderCommandInfo = (basePaths, env, sha, concurrency, dryRun, noVerify) => {
-    let fullStr = '';
-    if (dryRun) {
-        fullStr += chalk_1.default.yellow(`${ICONS.WARNING} DRY-RUN MODE ENABLED. WILL NOT UPLOAD SARIF REPORT\n`);
-    }
-    if (noVerify) {
-        fullStr += chalk_1.default.yellow(`${ICONS.INFO} --no-verify enabled. The reports will be uploaded without client validation.\n`);
-    }
-    fullStr += chalk_1.default.green(`Starting upload with concurrency ${concurrency}. \n`);
-    if (basePaths.length === 1 && !!upath_1.default.extname(basePaths[0])) {
-        fullStr += chalk_1.default.green(`Will upload SARIF report file ${basePaths[0]}\n`);
-    }
-    else {
-        fullStr += chalk_1.default.green(`Will look for SARIF report files in ${basePaths.join(', ')}\n`);
-    }
-    fullStr += `Only one upload per commit, env and tool\n`;
-    fullStr += `Preparing upload for sha:${sha} env:${env}\n`;
-    return fullStr;
-};
-exports.renderCommandInfo = renderCommandInfo;
-const renderFilesNotFound = (basePaths) => {
-    let fullStr = '';
-    const paths = basePaths.length === 1 && !!upath_1.default.extname(basePaths[0]) ? basePaths[0] : basePaths.join(', ');
-    fullStr += chalk_1.default.yellow(`${ICONS.WARNING} Cannot find valid SARIF report files to upload in ${paths}.\n`);
-    fullStr += chalk_1.default.yellow(`Check the files exist and are valid.\n`);
-    return fullStr;
-};
-exports.renderFilesNotFound = renderFilesNotFound;
-//# sourceMappingURL=renderer.js.map

package/dist/commands/sarif/renderer.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"renderer.js","sourceRoot":"","sources":["../../../src/commands/sarif/renderer.ts"],"names":[],"mappings":";;;;;;AAAA,kDAAyB;AACzB,kDAAyB;AAEzB,2CAA4C;AAI5C,MAAM,KAAK,GAAG;IACZ,MAAM,EAAE,GAAG;IACX,OAAO,EAAE,GAAG;IACZ,OAAO,EAAE,IAAI;IACb,IAAI,EAAE,IAAI;CACX,CAAA;AAEM,MAAM,iBAAiB,GAAG,CAAC,WAAmB,EAAE,aAAuB,EAAE,EAAE;IAChF,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,GAAG,CAAA;IAErD,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,8BAA8B,UAAU,KAAK,CAAC,CAAA;IAClF,OAAO,IAAI,eAAK,CAAC,GAAG,CAClB,oGAAoG,CACrG,CAAA;IAED,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAA;IACzC,KAAK,MAAM,YAAY,IAAI,aAAa,EAAE;QACxC,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,MAAM,YAAY,IAAI,CAAC,CAAA;KAC7C;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAfY,QAAA,iBAAiB,qBAe7B;AAEM,MAAM,iBAAiB,GAAG,CAAC,WAAqB,EAAE,EAAE;IACzD,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,GAAG,CAAA;IAEvD,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,iCAAiC,UAAU,KAAK,CAAC,CAAA;IACtE,WAAW,CAAC,OAAO,CAAC,CAAC,GAAW,EAAE,EAAE;QAClC,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,MAAM,GAAG,IAAI,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;IACF,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,oFAAoF,CAAC,CAAA;IAE1G,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAXY,QAAA,iBAAiB,qBAW7B;AAEM,MAAM,kBAAkB,GAAG,CAAC,WAAoB,EAAE,KAAU,EAAE,EAAE;;IACrE,MAAM,UAAU,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,CAAA;IAEhE,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,oCAAoC,UAAU,KAAK,KAAK,CAAC,OAAO,IAAI,CAAC,CAAA;IACzG,IAAI,MAAA,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,QAAQ,0CAAE,MAAM,EAAE;QAC3B,OAAO,IAAI,eAAK,CAAC,GAAG,CAAC,oBAAoB,KAAK,CAAC,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAA;KACpE;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAVY,QAAA,kBAAkB,sBAU9B;AAEM,MAAM,mBAAmB,GAAG,CAAC,WAAoB,EAAE,YAAoB,EAAE,OAAe,EAAE,EAAE;IACjG,MAAM,eAAe,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,CAAA;IAErE,OAAO,eAAK,CAAC,MAAM,CAAC,YAAY,OAAO,kCAAkC,eAAe,KAAK,YAAY,IAAI,CAAC,CAAA;AAChH,CAAC,CAAA;AAJY,QAAA,mBAAmB,uBAI/B;AAEM,MAAM,uBAAuB,GAAG,CAAC,SAAiB,EAAE,QAAgB,EAAE,EAAE;IAC7E,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,OAAO,aAAa,SAAS,aAAa,QAAQ,aAAa,CAAC,CAAA;IAChG,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,IAAI,0BAA0B,IAAA,gBAAU,GAAE,oBAAoB,CAAC,CAAA;IAC/F,OAAO,IAAI,eAAK,CAAC,KAAK,CACpB,qGAAqG,CACtG,CAAA;IAED,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AATY,QAAA,uBAAuB,2BASnC;AAEM,MAAM,kBAAkB,GAAG,CAAC,OAAgB,EAAU,EAAE,CAAC,YAAY,IAAA,4BAAoB,EAAC,OAAO,CAAC,EAAE,CAAA;AAA9F,QAAA,kBAAkB,sBAA4E;AAEpG,MAAM,YAAY,GAAG,CAAC,OAAgB,EAAU,EAAE,CAAC,6BAA6B,OAAO,CAAC,UAAU,IAAI,CAAA;AAAhG,QAAA,YAAY,gBAAoF;AACtG,MAAM,oBAAoB,GAAG,CAAC,OAAgB,EAAU,EAAE,CAC/D,6BAA6B,OAAO,CAAC,UAAU,cAAc,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAA;AADtF,QAAA,oBAAoB,wBACkE;AAE5F,MAAM,iBAAiB,GAAG,CAC/B,SAAmB,EACnB,GAAW,EACX,GAAW,EACX,WAAmB,EACnB,MAAe,EACf,QAAiB,EACjB,EAAE;IACF,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,IAAI,MAAM,EAAE;QACV,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,OAAO,uDAAuD,CAAC,CAAA;KACjG;IACD,IAAI,QAAQ,EAAE;QACZ,OAAO,IAAI,eAAK,CAAC,MAAM,CACrB,GAAG,KAAK,CAAC,IAAI,iFAAiF,CAC/F,CAAA;KACF;IACD,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,oCAAoC,WAAW,MAAM,CAAC,CAAA;IAC7E,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC,eAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE;QAC3D,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,iCAAiC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;KAC1E;SAAM;QACL,OAAO,IAAI,eAAK,CAAC,KAAK,CAAC,uCAAuC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;KACxF;IACD,OAAO,IAAI,4CAA4C,CAAA;IACvD,OAAO,IAAI,4BAA4B,GAAG,QAAQ,GAAG,IAAI,CAAA;IAEzD,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AA3BY,QAAA,iBAAiB,qBA2B7B;AAEM,MAAM,mBAAmB,GAAG,CAAC,SAAmB,EAAE,EAAE;IACzD,IAAI,OAAO,GAAG,EAAE,CAAA;IAChB,MAAM,KAAK,GAAG,SAAS,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC,eAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE3G,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,OAAO,sDAAsD,KAAK,KAAK,CAAC,CAAA;IACzG,OAAO,IAAI,eAAK,CAAC,MAAM,CAAC,wCAAwC,CAAC,CAAA;IAEjE,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AARY,QAAA,mBAAmB,uBAQ/B"}

package/dist/commands/sarif/upload.d.ts

@@ -1,22 +0,0 @@
-import { Command } from 'clipanion';
-export declare class UploadSarifReportCommand extends Command {
-    static paths: string[][];
-    static usage: import("clipanion").Usage;
-    private basePaths;
-    private dryRun;
-    private env;
-    private maxConcurrency;
-    private serviceFromCli;
-    private tags;
-    private gitPath;
-    private noVerify;
-    private noCiTags;
-    private config;
-    private fips;
-    private fipsIgnoreError;
-    private fipsConfig;
-    execute(): Promise<1 | undefined>;
-    private uploadSarifReport;
-    private getApiHelper;
-    private getMatchingSarifReports;
-}

package/dist/commands/sarif/upload.js

@@ -1,210 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.UploadSarifReportCommand = void 0;
-const fs_1 = __importDefault(require("fs"));
-const chalk_1 = __importDefault(require("chalk"));
-const clipanion_1 = require("clipanion");
-const upath_1 = __importDefault(require("upath"));
-const constants_1 = require("../../constants");
-const concurrency_1 = require("../../helpers/concurrency");
-const env_1 = require("../../helpers/env");
-const fips_1 = require("../../helpers/fips");
-const glob_1 = require("../../helpers/glob");
-const retry_1 = require("../../helpers/retry");
-const tags_1 = require("../../helpers/tags");
-const utils_1 = require("../../helpers/utils");
-const validation = __importStar(require("../../helpers/validation"));
-const api_1 = require("./api");
-const renderer_1 = require("./renderer");
-const utils_2 = require("./utils");
-const validation_1 = require("./validation");
-class UploadSarifReportCommand extends clipanion_1.Command {
-    constructor() {
-        var _a, _b;
-        super(...arguments);
-        this.basePaths = clipanion_1.Option.Rest({ required: 1 });
-        this.dryRun = clipanion_1.Option.Boolean('--dry-run', false);
-        this.env = clipanion_1.Option.String('--env', 'ci');
-        this.maxConcurrency = clipanion_1.Option.String('--max-concurrency', '20', { validator: validation.isInteger() });
-        this.serviceFromCli = clipanion_1.Option.String('--service');
-        this.tags = clipanion_1.Option.Array('--tags');
-        this.gitPath = clipanion_1.Option.String('--git-repository');
-        this.noVerify = clipanion_1.Option.Boolean('--no-verify', false);
-        this.noCiTags = clipanion_1.Option.Boolean('--no-ci-tags', false);
-        this.config = {
-            apiKey: process.env.DATADOG_API_KEY || process.env.DD_API_KEY,
-            env: process.env.DD_ENV,
-            envVarTags: process.env.DD_TAGS,
-        };
-        this.fips = clipanion_1.Option.Boolean('--fips', false);
-        this.fipsIgnoreError = clipanion_1.Option.Boolean('--fips-ignore-error', false);
-        this.fipsConfig = {
-            fips: (_a = (0, env_1.toBoolean)(process.env[constants_1.FIPS_ENV_VAR])) !== null && _a !== void 0 ? _a : false,
-            fipsIgnoreError: (_b = (0, env_1.toBoolean)(process.env[constants_1.FIPS_IGNORE_ERROR_ENV_VAR])) !== null && _b !== void 0 ? _b : false,
-        };
-    }
-    execute() {
-        return __awaiter(this, void 0, void 0, function* () {
-            (0, fips_1.enableFips)(this.fips || this.fipsConfig.fips, this.fipsIgnoreError || this.fipsConfig.fipsIgnoreError);
-            // TODO(julien): remove this notice in April 2025
-            if (this.serviceFromCli) {
-                this.context.stderr.write('The CLI flag `--service` is deprecated and will be removed in a future version of datadog-ci\n');
-                this.context.stderr.write('To associate findings with services, consider using the service-to-repo mapping from service catalog\n');
-                this.context.stderr.write('Learn more at https://docs.datadoghq.com/getting_started/code_security/?tab=staticcodeanalysissast#link-datadog-services-to-repository-scan-results\n');
-            }
-            if (!this.basePaths || !this.basePaths.length) {
-                this.context.stderr.write('Missing basePath\n');
-                return 1;
-            }
-            if (!this.config.env) {
-                this.config.env = this.env;
-            }
-            const api = this.getApiHelper();
-            // Normalizing the basePath to resolve .. and .
-            this.basePaths = this.basePaths.map((basePath) => upath_1.default.normalize(basePath));
-            const spanTags = yield (0, tags_1.getSpanTags)(this.config, this.tags, !this.noCiTags, this.gitPath);
-            // Gather any missing mandatory git fields to display to the user
-            const missingGitFields = (0, tags_1.getMissingRequiredGitTags)(spanTags);
-            if (missingGitFields.length > 0) {
-                this.context.stdout.write((0, renderer_1.renderMissingTags)(missingGitFields));
-                return 1;
-            }
-            const payloads = yield this.getMatchingSarifReports(spanTags);
-            if (payloads.length === 0) {
-                this.context.stdout.write((0, renderer_1.renderFilesNotFound)(this.basePaths));
-                return 1;
-            }
-            const sha = spanTags[tags_1.GIT_SHA] || 'sha-not-found';
-            const env = this.config.env || 'env-not-set';
-            this.context.stdout.write((0, renderer_1.renderCommandInfo)(this.basePaths, env, sha, this.maxConcurrency, this.dryRun, this.noVerify));
-            const upload = (payload) => this.uploadSarifReport(api, payload);
-            const initialTime = new Date().getTime();
-            yield (0, concurrency_1.doWithMaxConcurrency)(this.maxConcurrency, payloads, upload);
-            const totalTimeSeconds = (Date.now() - initialTime) / 1000;
-            this.context.stdout.write((0, renderer_1.renderSuccessfulCommand)(payloads.length, totalTimeSeconds));
-        });
-    }
-    uploadSarifReport(api, sarifReport) {
-        return __awaiter(this, void 0, void 0, function* () {
-            if (this.dryRun) {
-                this.context.stdout.write((0, renderer_1.renderDryRunUpload)(sarifReport));
-                return;
-            }
-            try {
-                yield (0, retry_1.retryRequest)(() => api.uploadSarifReport(sarifReport, this.context.stdout.write.bind(this.context.stdout)), {
-                    onRetry: (e, attempt) => {
-                        this.context.stderr.write((0, renderer_1.renderRetriedUpload)(sarifReport, e.message, attempt));
-                    },
-                    retries: 5,
-                });
-            }
-            catch (error) {
-                this.context.stderr.write((0, renderer_1.renderFailedUpload)(sarifReport, error));
-                throw error;
-            }
-        });
-    }
-    getApiHelper() {
-        if (!this.config.apiKey) {
-            this.context.stdout.write(`Neither ${chalk_1.default.red.bold('DATADOG_API_KEY')} nor ${chalk_1.default.red.bold('DD_API_KEY')} is in your environment.\n`);
-            throw new Error('API key is missing');
-        }
-        return (0, api_1.apiConstructor)((0, utils_2.getBaseIntakeUrl)(), this.config.apiKey);
-    }
-    getMatchingSarifReports(spanTags) {
-        return __awaiter(this, void 0, void 0, function* () {
-            const sarifReports = (this.basePaths || []).reduce((acc, basePath) => {
-                const isFile = !!upath_1.default.extname(basePath);
-                if (isFile) {
-                    return acc.concat(fs_1.default.existsSync(basePath) ? [basePath] : []);
-                }
-                return acc.concat((0, glob_1.globSync)((0, utils_1.buildPath)(basePath, '*.sarif'), { dotRelative: true }));
-            }, []);
-            const validUniqueFiles = [...new Set(sarifReports)].filter((sarifReport) => {
-                if (this.noVerify) {
-                    return true;
-                }
-                const validationErrorMessage = (0, validation_1.validateSarif)(sarifReport);
-                if (validationErrorMessage) {
-                    // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
-                    this.context.stdout.write((0, renderer_1.renderInvalidFile)(sarifReport, [validationErrorMessage]));
-                    return false;
-                }
-                const potentialErrors = (0, validation_1.checkForError)(sarifReport);
-                if (potentialErrors.length > 0) {
-                    this.context.stdout.write((0, renderer_1.renderInvalidFile)(sarifReport, potentialErrors));
-                    return false;
-                }
-                return true;
-            });
-            return validUniqueFiles.map((sarifReport) => {
-                return {
-                    reportPath: sarifReport,
-                    spanTags,
-                    service: (0, utils_2.getServiceFromSarifTool)(sarifReport),
-                };
-            });
-        });
-    }
-}
-exports.UploadSarifReportCommand = UploadSarifReportCommand;
-UploadSarifReportCommand.paths = [['sarif', 'upload']];
-UploadSarifReportCommand.usage = clipanion_1.Command.Usage({
-    category: 'Static Analysis',
-    description: 'Upload SARIF reports files to Datadog.',
-    details: `
-      This command will upload SARIF reports files to Datadog.\n
-      See README for details.
-    `,
-    examples: [
-        ['Upload all SARIF report files in current directory', 'datadog-ci sarif upload .'],
-        [
-            'Upload all SARIF report files in src/sarif-go-reports and src/sarif-java-reports',
-            'datadog-ci sarif upload src/sarif-go-reports src/sarif-java-reports',
-        ],
-        [
-            'Upload all SARIF report files in current directory and add extra tags globally',
-            'datadog-ci sarif upload --tags key1:value1 --tags key2:value2 .',
-        ],
-        [
-            'Upload all SARIF report files in current directory to the datadoghq.eu site',
-            'DATADOG_SITE=datadoghq.eu datadog-ci sarif upload .',
-        ],
-    ],
-});
-//# sourceMappingURL=upload.js.map

package/dist/commands/sarif/upload.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"upload.js","sourceRoot":"","sources":["../../../src/commands/sarif/upload.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,4CAAmB;AAEnB,kDAAyB;AACzB,yCAAyC;AACzC,kDAAyB;AAEzB,+CAAuE;AACvE,2DAA8D;AAE9D,2CAA2C;AAC3C,6CAA6C;AAC7C,6CAA2C;AAE3C,+CAAgD;AAChD,6CAAkF;AAClF,+CAA6C;AAC7C,qEAAsD;AAEtD,+BAAoC;AAEpC,yCASmB;AACnB,mCAAiE;AACjE,6CAAyD;AAEzD,MAAa,wBAAyB,SAAQ,mBAAO;IAArD;;;QA2BU,cAAS,GAAG,kBAAM,CAAC,IAAI,CAAC,EAAC,QAAQ,EAAE,CAAC,EAAC,CAAC,CAAA;QACtC,WAAM,GAAG,kBAAM,CAAC,OAAO,CAAC,WAAW,EAAE,KAAK,CAAC,CAAA;QAC3C,QAAG,GAAG,kBAAM,CAAC,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;QAClC,mBAAc,GAAG,kBAAM,CAAC,MAAM,CAAC,mBAAmB,EAAE,IAAI,EAAE,EAAC,SAAS,EAAE,UAAU,CAAC,SAAS,EAAE,EAAC,CAAC,CAAA;QAC9F,mBAAc,GAAG,kBAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QAC3C,SAAI,GAAG,kBAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAA;QAC7B,YAAO,GAAG,kBAAM,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAA;QAC3C,aAAQ,GAAG,kBAAM,CAAC,OAAO,CAAC,aAAa,EAAE,KAAK,CAAC,CAAA;QAC/C,aAAQ,GAAG,kBAAM,CAAC,OAAO,CAAC,cAAc,EAAE,KAAK,CAAC,CAAA;QAEhD,WAAM,GAAoB;YAChC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU;YAC7D,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,MAAM;YACvB,UAAU,EAAE,OAAO,CAAC,GAAG,CAAC,OAAO;SAChC,CAAA;QAEO,SAAI,GAAG,kBAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAA;QACtC,oBAAe,GAAG,kBAAM,CAAC,OAAO,CAAC,qBAAqB,EAAE,KAAK,CAAC,CAAA;QAC9D,eAAU,GAAG;YACnB,IAAI,EAAE,MAAA,IAAA,eAAS,EAAC,OAAO,CAAC,GAAG,CAAC,wBAAY,CAAC,CAAC,mCAAI,KAAK;YACnD,eAAe,EAAE,MAAA,IAAA,eAAS,EAAC,OAAO,CAAC,GAAG,CAAC,qCAAyB,CAAC,CAAC,mCAAI,KAAK;SAC5E,CAAA;IA4IH,CAAC;IA1Ic,OAAO;;YAClB,IAAA,iBAAU,EAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,IAAI,CAAC,eAAe,IAAI,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,CAAA;YAEtG,iDAAiD;YACjD,IAAI,IAAI,CAAC,cAAc,EAAE;gBACvB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,gGAAgG,CACjG,CAAA;gBACD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,wGAAwG,CACzG,CAAA;gBACD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,uJAAuJ,CACxJ,CAAA;aACF;YAED,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE;gBAC7C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBAE/C,OAAO,CAAC,CAAA;aACT;YACD,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE;gBACpB,IAAI,CAAC,MAAM,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,CAAA;aAC3B;YAED,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,EAAE,CAAA;YAC/B,+CAA+C;YAC/C,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,eAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAA;YAE5E,MAAM,QAAQ,GAAG,MAAM,IAAA,kBAAW,EAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,CAAA;YAExF,iEAAiE;YACjE,MAAM,gBAAgB,GAAG,IAAA,gCAAyB,EAAC,QAAQ,CAAC,CAAA;YAC5D,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE;gBAC/B,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,4BAAiB,EAAC,gBAAgB,CAAC,CAAC,CAAA;gBAE9D,OAAO,CAAC,CAAA;aACT;YAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAA;YAE7D,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE;gBACzB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,8BAAmB,EAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAA;gBAE9D,OAAO,CAAC,CAAA;aACT;YAED,MAAM,GAAG,GAAG,QAAQ,CAAC,cAAO,CAAC,IAAI,eAAe,CAAA;YAChD,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,IAAI,aAAa,CAAA;YAC5C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,IAAA,4BAAiB,EAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,cAAc,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,CAC7F,CAAA;YACD,MAAM,MAAM,GAAG,CAAC,OAAgB,EAAE,EAAE,CAAC,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;YAEzE,MAAM,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC,OAAO,EAAE,CAAA;YAExC,MAAM,IAAA,kCAAoB,EAAC,IAAI,CAAC,cAAc,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAA;YAEjE,MAAM,gBAAgB,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,WAAW,CAAC,GAAG,IAAI,CAAA;YAC1D,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,kCAAuB,EAAC,QAAQ,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAA;QACvF,CAAC;KAAA;IAEa,iBAAiB,CAAC,GAAc,EAAE,WAAoB;;YAClE,IAAI,IAAI,CAAC,MAAM,EAAE;gBACf,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,6BAAkB,EAAC,WAAW,CAAC,CAAC,CAAA;gBAE1D,OAAM;aACP;YAED,IAAI;gBACF,MAAM,IAAA,oBAAY,EAChB,GAAG,EAAE,CAAC,GAAG,CAAC,iBAAiB,CAAC,WAAW,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,EAC7F;oBACE,OAAO,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,EAAE;wBACtB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,8BAAmB,EAAC,WAAW,EAAE,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAA;oBACjF,CAAC;oBACD,OAAO,EAAE,CAAC;iBACX,CACF,CAAA;aACF;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,6BAAkB,EAAC,WAAW,EAAE,KAAK,CAAC,CAAC,CAAA;gBAEjE,MAAM,KAAK,CAAA;aACZ;QACH,CAAC;KAAA;IAEO,YAAY;QAClB,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;YACvB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,WAAW,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,iBAAiB,CAAC,QAAQ,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,4BAA4B,CAC7G,CAAA;YACD,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;SACtC;QAED,OAAO,IAAA,oBAAc,EAAC,IAAA,wBAAgB,GAAE,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;IAC/D,CAAC;IAEa,uBAAuB,CAAC,QAAkB;;YACtD,MAAM,YAAY,GAAG,CAAC,IAAI,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,GAAa,EAAE,QAAgB,EAAE,EAAE;gBACrF,MAAM,MAAM,GAAG,CAAC,CAAC,eAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;gBACxC,IAAI,MAAM,EAAE;oBACV,OAAO,GAAG,CAAC,MAAM,CAAC,YAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAA;iBAC7D;gBAED,OAAO,GAAG,CAAC,MAAM,CAAC,IAAA,eAAQ,EAAC,IAAA,iBAAS,EAAC,QAAQ,EAAE,SAAS,CAAC,EAAE,EAAC,WAAW,EAAE,IAAI,EAAC,CAAC,CAAC,CAAA;YAClF,CAAC,EAAE,EAAE,CAAC,CAAA;YAEN,MAAM,gBAAgB,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,EAAE;gBACzE,IAAI,IAAI,CAAC,QAAQ,EAAE;oBACjB,OAAO,IAAI,CAAA;iBACZ;gBAED,MAAM,sBAAsB,GAAG,IAAA,0BAAa,EAAC,WAAW,CAAC,CAAA;gBACzD,IAAI,sBAAsB,EAAE;oBAC1B,iEAAiE;oBACjE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,4BAAiB,EAAC,WAAW,EAAE,CAAC,sBAAsB,CAAC,CAAC,CAAC,CAAA;oBAEnF,OAAO,KAAK,CAAA;iBACb;gBAED,MAAM,eAAe,GAAG,IAAA,0BAAa,EAAC,WAAW,CAAC,CAAA;gBAClD,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE;oBAC9B,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,4BAAiB,EAAC,WAAW,EAAE,eAAe,CAAC,CAAC,CAAA;oBAE1E,OAAO,KAAK,CAAA;iBACb;gBAED,OAAO,IAAI,CAAA;YACb,CAAC,CAAC,CAAA;YAEF,OAAO,gBAAgB,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,EAAE;gBAC1C,OAAO;oBACL,UAAU,EAAE,WAAW;oBACvB,QAAQ;oBACR,OAAO,EAAE,IAAA,+BAAuB,EAAC,WAAW,CAAC;iBAC9C,CAAA;YACH,CAAC,CAAC,CAAA;QACJ,CAAC;KAAA;;AA3LH,4DA4LC;AA3Le,8BAAK,GAAG,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,AAAxB,CAAwB;AAE7B,8BAAK,GAAG,mBAAO,CAAC,KAAK,CAAC;IAClC,QAAQ,EAAE,iBAAiB;IAC3B,WAAW,EAAE,wCAAwC;IACrD,OAAO,EAAE;;;KAGR;IACD,QAAQ,EAAE;QACR,CAAC,oDAAoD,EAAE,2BAA2B,CAAC;QACnF;YACE,kFAAkF;YAClF,qEAAqE;SACtE;QACD;YACE,gFAAgF;YAChF,iEAAiE;SAClE;QACD;YACE,6EAA6E;YAC7E,qDAAqD;SACtD;KACF;CACF,CAAC,AAtBiB,CAsBjB"}

package/dist/commands/sarif/utils.d.ts

@@ -1,21 +0,0 @@
-export declare const getBaseIntakeUrl: () => string;
-export declare const TAG_DATADOG_TYPE_TYPE_STATIC = "DATADOG_RULE_TYPE:STATIC_ANALYSIS";
-export declare const TAG_DATADOG_TYPE_TYPE_SECRET = "DATADOG_RULE_TYPE:SECRET";
-export declare const SERVICE_DATADOG_ANALYZER = "datadog-analyzer";
-export declare const SERVICE_DATADOG_ANALYZER_SA_ONLY = "datadog-analyzer-sa-only";
-export declare const SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = "datadog-analyzer-secrets-only";
-export declare const SERVICE_THIRD_PARTY_ANALYZER = "third-party-analyzer";
-/**
- * Define the service and env based on the SARIF contents reports
- *  - if the report is produced by the datadog static analyzer, we look if the report
- *    contains only static analysis or secrets errors and change service
- *  - if the report is produced by a third party tool, we report it as is and cannot
- *    infer the nature of the results. We still try to get the first tool from the runs.
- *
- *  The objective of this function is to make sure that if a user uploads one report
- *  for static analysis only and one report for secrets only, they will have a different
- *  service and env for each report so that they are not discarded later in our backend.
- *
- * @param filePath
- */
-export declare const getServiceFromSarifTool: (filePath: string) => string;

package/dist/commands/sarif/utils.js

@@ -1,79 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getServiceFromSarifTool = exports.SERVICE_THIRD_PARTY_ANALYZER = exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = exports.SERVICE_DATADOG_ANALYZER_SA_ONLY = exports.SERVICE_DATADOG_ANALYZER = exports.TAG_DATADOG_TYPE_TYPE_SECRET = exports.TAG_DATADOG_TYPE_TYPE_STATIC = exports.getBaseIntakeUrl = void 0;
-const fs_1 = __importDefault(require("fs"));
-const getBaseIntakeUrl = () => {
-    if (process.env.DATADOG_SITE || process.env.DD_SITE) {
-        return `https://cicodescan-intake.${process.env.DATADOG_SITE || process.env.DD_SITE}`;
-    }
-    return 'https://cicodescan-intake.datadoghq.com';
-};
-exports.getBaseIntakeUrl = getBaseIntakeUrl;
-exports.TAG_DATADOG_TYPE_TYPE_STATIC = 'DATADOG_RULE_TYPE:STATIC_ANALYSIS';
-exports.TAG_DATADOG_TYPE_TYPE_SECRET = 'DATADOG_RULE_TYPE:SECRET';
-exports.SERVICE_DATADOG_ANALYZER = 'datadog-analyzer';
-exports.SERVICE_DATADOG_ANALYZER_SA_ONLY = 'datadog-analyzer-sa-only';
-exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY = 'datadog-analyzer-secrets-only';
-exports.SERVICE_THIRD_PARTY_ANALYZER = 'third-party-analyzer';
-/**
- * Define the service and env based on the SARIF contents reports
- *  - if the report is produced by the datadog static analyzer, we look if the report
- *    contains only static analysis or secrets errors and change service
- *  - if the report is produced by a third party tool, we report it as is and cannot
- *    infer the nature of the results. We still try to get the first tool from the runs.
- *
- *  The objective of this function is to make sure that if a user uploads one report
- *  for static analysis only and one report for secrets only, they will have a different
- *  service and env for each report so that they are not discarded later in our backend.
- *
- * @param filePath
- */
-const getServiceFromSarifTool = (filePath) => {
-    let otherTool = exports.SERVICE_THIRD_PARTY_ANALYZER;
-    const ruleTypes = new Set();
-    try {
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
-        const report = JSON.parse(String(fs_1.default.readFileSync(filePath)));
-        if ('runs' in report) {
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            for (const run of report['runs']) {
-                // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                if ('tool' in run && 'driver' in run['tool'] && 'rules' in run['tool']['driver']) {
-                    for (const rule of run['tool']['driver']['rules']) {
-                        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                        if ('properties' in rule && 'tags' in rule['properties']) {
-                            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-                            for (const tag of rule['properties']['tags']) {
-                                // eslint-disable-next-line @typescript-eslint/no-unsafe-call,@typescript-eslint/no-unsafe-member-access
-                                if (tag.includes('DATADOG_RULE_TYPE')) {
-                                    // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
-                                    ruleTypes.add(tag);
-                                }
-                            }
-                        }
-                    }
-                }
-            }
-        }
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access,@typescript-eslint/no-unsafe-assignment
-        otherTool = report['runs'][0]['tool']['driver']['name'];
-    }
-    catch (error) {
-        // ignore
-    }
-    if (ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER;
-    }
-    if (ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && !ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER_SA_ONLY;
-    }
-    if (!ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_STATIC) && ruleTypes.has(exports.TAG_DATADOG_TYPE_TYPE_SECRET)) {
-        return exports.SERVICE_DATADOG_ANALYZER_SECRETS_ONLY;
-    }
-    return otherTool;
-};
-exports.getServiceFromSarifTool = getServiceFromSarifTool;
-//# sourceMappingURL=utils.js.map

package/dist/commands/sarif/utils.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"utils.js","sourceRoot":"","sources":["../../../src/commands/sarif/utils.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAmB;AAEZ,MAAM,gBAAgB,GAAG,GAAG,EAAE;IACnC,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE;QACnD,OAAO,6BAA6B,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,CAAA;KACtF;IAED,OAAO,yCAAyC,CAAA;AAClD,CAAC,CAAA;AANY,QAAA,gBAAgB,oBAM5B;AAEY,QAAA,4BAA4B,GAAG,mCAAmC,CAAA;AAClE,QAAA,4BAA4B,GAAG,0BAA0B,CAAA;AACzD,QAAA,wBAAwB,GAAG,kBAAkB,CAAA;AAC7C,QAAA,gCAAgC,GAAG,0BAA0B,CAAA;AAC7D,QAAA,qCAAqC,GAAG,+BAA+B,CAAA;AACvE,QAAA,4BAA4B,GAAG,sBAAsB,CAAA;AAElE;;;;;;;;;;;;GAYG;AACI,MAAM,uBAAuB,GAAG,CAAC,QAAgB,EAAU,EAAE;IAClE,IAAI,SAAS,GAAW,oCAA4B,CAAA;IACpD,MAAM,SAAS,GAAgB,IAAI,GAAG,EAAE,CAAA;IACxC,IAAI;QACF,mEAAmE;QACnE,MAAM,MAAM,GAAQ,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;QAEjE,IAAI,MAAM,IAAI,MAAM,EAAE;YACpB,sEAAsE;YACtE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,EAAE;gBAChC,sEAAsE;gBACtE,IAAI,MAAM,IAAI,GAAG,IAAI,QAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,IAAI,OAAO,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE;oBAChF,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,EAAE;wBACjD,sEAAsE;wBACtE,IAAI,YAAY,IAAI,IAAI,IAAI,MAAM,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE;4BACxD,sEAAsE;4BACtE,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,EAAE;gCAC5C,wGAAwG;gCACxG,IAAI,GAAG,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE;oCACrC,iEAAiE;oCACjE,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;iCACnB;6BACF;yBACF;qBACF;iBACF;aACF;SACF;QAED,8GAA8G;QAC9G,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAA;KACxD;IAAC,OAAO,KAAK,EAAE;QACd,SAAS;KACV;IAED,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC9F,OAAO,gCAAwB,CAAA;KAChC;IAED,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC/F,OAAO,wCAAgC,CAAA;KACxC;IAED,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,oCAA4B,CAAC,EAAE;QAC/F,OAAO,6CAAqC,CAAA;KAC7C;IAED,OAAO,SAAS,CAAA;AAClB,CAAC,CAAA;AAhDY,QAAA,uBAAuB,2BAgDnC"}

package/dist/commands/sarif/validation.d.ts

@@ -1,16 +0,0 @@
-/**
- * Validate the SARIF file and check if the file is too large or not valid
- * against the SARIF schema.
- *
- * @param sarifReportPath - the path of the SARIF file
- */
-export declare const validateSarif: (sarifReportPath: string) => string | undefined;
-/**
- * Functions that looks for errors specific to how Datadog processes SARIF file. This way, we
- * show the error directly to the user instead of uploading a file we cannot process in our backend.
- *
- * The function returns a list of errors to show. The return value is empty if there is no error.
- *
- * @param filePath - the path of the SARIF file.
- */
-export declare const checkForError: (filePath: string) => string[];

package/dist/commands/sarif/validation.js

@@ -1,102 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkForError = exports.validateSarif = void 0;
-const fs_1 = __importDefault(require("fs"));
-const ajv_1 = __importDefault(require("ajv"));
-const ajv_formats_1 = __importDefault(require("ajv-formats"));
-const sarif_schema_2_1_0_json_1 = __importDefault(require("./json-schema/sarif-schema-2.1.0.json"));
-const maxSarifFileSize = 20 * 1024 * 1024; // 20MB in bytes
-/**
- * Validate the SARIF file and check if the file is too large or not valid
- * against the SARIF schema.
- *
- * @param sarifReportPath - the path of the SARIF file
- */
-const validateSarif = (sarifReportPath) => {
-    try {
-        const stats = fs_1.default.statSync(sarifReportPath); // Synchronously get file stats
-        const fileSize = stats.size;
-        if (fileSize > maxSarifFileSize) {
-            return `file size too large (size: ${fileSize / 1024 / 1024} MB, max size: ${maxSarifFileSize / 1024 / 1024} MB)`;
-        }
-    }
-    catch (err) {
-        return err.message;
-    }
-    const ajv = new ajv_1.default({ allErrors: true });
-    (0, ajv_formats_1.default)(ajv);
-    const sarifJsonSchemaValidate = ajv.compile(sarif_schema_2_1_0_json_1.default);
-    try {
-        const sarifReportContent = JSON.parse(String(fs_1.default.readFileSync(sarifReportPath)));
-        const valid = sarifJsonSchemaValidate(sarifReportContent);
-        if (!valid) {
-            const errors = sarifJsonSchemaValidate.errors || [];
-            const errorMessages = errors.map((error) => {
-                return `${error.instancePath}: ${error.message}`;
-            });
-            return errorMessages.join('\n');
-        }
-    }
-    catch (error) {
-        return error.message;
-    }
-    return undefined;
-};
-exports.validateSarif = validateSarif;
-/**
- * Functions that looks for errors specific to how Datadog processes SARIF file. This way, we
- * show the error directly to the user instead of uploading a file we cannot process in our backend.
- *
- * The function returns a list of errors to show. The return value is empty if there is no error.
- *
- * @param filePath - the path of the SARIF file.
- */
-const checkForError = (filePath) => {
-    const report = JSON.parse(String(fs_1.default.readFileSync(filePath)));
-    const res = [];
-    if ('runs' in report) {
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-        for (const run of report['runs']) {
-            const rules = [];
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            if ('tool' in run && 'driver' in run['tool'] && 'rules' in run['tool']['driver']) {
-                for (const rule of run['tool']['driver']['rules']) {
-                    if ('id' in rule) {
-                        rules.push(rule['id']);
-                    }
-                }
-            }
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access
-            if ('tool' in run && 'extensions' in run['tool']) {
-                for (const extension of run['tool']['extensions']) {
-                    if ('rules' in extension) {
-                        for (const rule of extension['rules']) {
-                            if ('id' in rule) {
-                                rules.push(rule['id']);
-                            }
-                        }
-                    }
-                }
-            }
-            if ('results' in run) {
-                for (const result of run['results']) {
-                    if (!('ruleId' in result)) {
-                        res.push('a result should have a ruleId');
-                        continue;
-                    }
-                    // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access,@typescript-eslint/no-unsafe-assignment
-                    const ruleId = result['ruleId'];
-                    if (rules.indexOf(ruleId) === -1) {
-                        res.push(`result references rule ${ruleId} but rule not found in the tool section`);
-                    }
-                }
-            }
-        }
-    }
-    return res;
-};
-exports.checkForError = checkForError;
-//# sourceMappingURL=validation.js.map

package/dist/commands/sarif/validation.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"validation.js","sourceRoot":"","sources":["../../../src/commands/sarif/validation.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAmB;AAInB,8CAAqB;AACrB,8DAAoC;AAEpC,oGAAmE;AAEnE,MAAM,gBAAgB,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAA,CAAC,gBAAgB;AAE1D;;;;;GAKG;AACI,MAAM,aAAa,GAAG,CAAC,eAAuB,EAAsB,EAAE;IAC3E,IAAI;QACF,MAAM,KAAK,GAAG,YAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA,CAAC,+BAA+B;QAC1E,MAAM,QAAQ,GAAG,KAAK,CAAC,IAAI,CAAA;QAE3B,IAAI,QAAQ,GAAG,gBAAgB,EAAE;YAC/B,OAAO,8BAA8B,QAAQ,GAAG,IAAI,GAAG,IAAI,kBAAkB,gBAAgB,GAAG,IAAI,GAAG,IAAI,MAAM,CAAA;SAClH;KACF;IAAC,OAAO,GAAG,EAAE;QACZ,OAAO,GAAG,CAAC,OAAO,CAAA;KACnB;IAED,MAAM,GAAG,GAAG,IAAI,aAAG,CAAC,EAAC,SAAS,EAAE,IAAI,EAAC,CAAC,CAAA;IACtC,IAAA,qBAAU,EAAC,GAAG,CAAC,CAAA;IACf,MAAM,uBAAuB,GAAG,GAAG,CAAC,OAAO,CAAC,iCAAe,CAAC,CAAA;IAC5D,IAAI;QACF,MAAM,kBAAkB,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,eAAe,CAAC,CAAC,CAAC,CAAA;QAC/E,MAAM,KAAK,GAAG,uBAAuB,CAAC,kBAAkB,CAAC,CAAA;QACzD,IAAI,CAAC,KAAK,EAAE;YACV,MAAM,MAAM,GAAG,uBAAuB,CAAC,MAAM,IAAI,EAAE,CAAA;YACnD,MAAM,aAAa,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,KAAkB,EAAE,EAAE;gBACtD,OAAO,GAAG,KAAK,CAAC,YAAY,KAAK,KAAK,CAAC,OAAO,EAAE,CAAA;YAClD,CAAC,CAAC,CAAA;YAEF,OAAO,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;SAChC;KACF;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,KAAK,CAAC,OAAO,CAAA;KACrB;IAED,OAAO,SAAS,CAAA;AAClB,CAAC,CAAA;AA/BY,QAAA,aAAa,iBA+BzB;AAED;;;;;;;GAOG;AACI,MAAM,aAAa,GAAG,CAAC,QAAgB,EAAY,EAAE;IAC1D,MAAM,MAAM,GAAQ,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;IACjE,MAAM,GAAG,GAAa,EAAE,CAAA;IAExB,IAAI,MAAM,IAAI,MAAM,EAAE;QACpB,sEAAsE;QACtE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,EAAE;YAChC,MAAM,KAAK,GAAa,EAAE,CAAA;YAC1B,sEAAsE;YACtE,IAAI,MAAM,IAAI,GAAG,IAAI,QAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,IAAI,OAAO,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE;gBAChF,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,EAAE;oBACjD,IAAI,IAAI,IAAI,IAAI,EAAE;wBAChB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;qBACvB;iBACF;aACF;YACD,sEAAsE;YACtE,IAAI,MAAM,IAAI,GAAG,IAAI,YAAY,IAAI,GAAG,CAAC,MAAM,CAAC,EAAE;gBAChD,KAAK,MAAM,SAAS,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,EAAE;oBACjD,IAAI,OAAO,IAAI,SAAS,EAAE;wBACxB,KAAK,MAAM,IAAI,IAAI,SAAS,CAAC,OAAO,CAAC,EAAE;4BACrC,IAAI,IAAI,IAAI,IAAI,EAAE;gCAChB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;6BACvB;yBACF;qBACF;iBACF;aACF;YAED,IAAI,SAAS,IAAI,GAAG,EAAE;gBACpB,KAAK,MAAM,MAAM,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE;oBACnC,IAAI,CAAC,CAAC,QAAQ,IAAI,MAAM,CAAC,EAAE;wBACzB,GAAG,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAA;wBACzC,SAAQ;qBACT;oBACD,8GAA8G;oBAC9G,MAAM,MAAM,GAAW,MAAM,CAAC,QAAQ,CAAC,CAAA;oBACvC,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE;wBAChC,GAAG,CAAC,IAAI,CAAC,0BAA0B,MAAM,yCAAyC,CAAC,CAAA;qBACpF;iBACF;aACF;SACF;KACF;IAED,OAAO,GAAG,CAAA;AACZ,CAAC,CAAA;AA9CY,QAAA,aAAa,iBA8CzB"}

package/dist/commands/sbom/api.d.ts

@@ -1,7 +0,0 @@
-import type { AxiosPromise, AxiosResponse } from 'axios';
-import { ScaRequest } from './types';
-/**
- * Get the function to upload our results to the intake.
- * @param apiKey
- */
-export declare const getApiHelper: (apiKey: string, appKey: string) => (scaRequest: ScaRequest) => AxiosPromise<AxiosResponse>;