@fabasoad/sarif-to-slack 0.2.5 → 1.0.0

package/.github/workflows/release.yml

@@ -27,7 +27,7 @@ jobs:
       ref-name: ${{ steps.metadata.outputs.ref-name }}
     steps:
       - name: Checkout ${{ github.repository }}
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
         with:
           token: "${{ secrets.GH_TOKEN }}"
 

package/.github/workflows/security.yml

@@ -11,7 +11,6 @@ jobs:
   sast:
     name: SAST
     permissions:
-      actions: read
       contents: read
       security-events: write
     uses: fabasoad/reusable-workflows/.github/workflows/wf-security-sast.yml@main

package/.github/workflows/send-sarif-to-slack.yml

@@ -7,33 +7,48 @@ on: # yamllint disable-line rule:truthy
       sarif:
         description: SARIF to send
         required: true
-        default: "Snyk Yarn (Error: 30, Warning: 16, Note: 3)"
+        default: "OSV Scanner Yarn (Critical: 17, High: 39, Medium: 31, Low: 4, Unknown: 6)"
         type: choice
         options:
-          - "CodeQL C# (Unknown: 1)"
-          - "CodeQL Go (Unknown: 1)"
-          - "CodeQL Python (Unknown: 1)"
-          - "CodeQL Ruby (Unknown: 4)"
-          - "CodeQL TypeScript (Unknown: 1)"
-          - "Grype Container (Error: 10, Warning: 20, Note: 9)"
-          - "Snyk Composer (Error: 15, Warning: 5)"
-          - "Snyk Container (Error: 1, Note: 3)"
-          - "Snyk Gomodules (Error: 4, Warning: 4)"
-          - "Snyk Gradle (Error: 3, Warning: 1)"
-          - "Snyk Hex (Error: 1)"
-          - "Snyk Maven (Error: 3, Warning: 1)"
-          - "Snyk NPM (Error: 6, Warning: 6, Note: 2)"
-          - "Snyk Nuget (Error: 1)"
-          - "Snyk Pip (Warning: 1)"
-          - "Snyk PNPM (Error: 1)"
-          - "Snyk Poetry (Error: 6, Warning: 21, Note: 2)"
-          - "Snyk Rubygems (Error: 1, Warning: 5)"
-          - "Snyk Sbt (Error: 2, Warning: 1)"
-          - "Snyk Swift (Warning: 2)"
-          - "Snyk Yarn (Error: 30, Warning: 16, Note: 3)"
-          - "Trivy IaC (Error: 1, Note: 1)"
-          - "Wiz Container (Error: 12, Warning: 369, Note: 191)"
-          - "Wiz IaC (Warning: 5, Note: 5)"
+          - "CodeQL C# (High: 1)"
+          - "CodeQL Go (Critical: 1)"
+          - "CodeQL Python (Medium: 1)"
+          - "CodeQL Ruby (Critical: 3, High: 1)"
+          - "CodeQL TypeScript (Critical: 1)"
+          - "Grype Container (Critical: 4, High: 6, Medium: 20, Low: 9)"
+          - "Grype GitHub Actions (High: 1)"
+          - "OSV Scanner Composer (Critical: 5, High: 4, Medium: 7)"
+          - "OSV Scanner Container (Critical: 2, High: 7, Medium: 7, Low: 6, Unknown: 26)"
+          - "OSV Scanner Gomodules (Critical: 1, High: 6, Medium: 9)"
+          - "OSV Scanner Hex (Unknown: 2)"
+          - "OSV Scanner Maven (Critical: 1, Unknown: 1)"
+          - "OSV Scanner NPM (High: 4, Medium: 5, Unknown: 1)"
+          - "OSV Scanner Pip (High: 2, Unknown: 1)"
+          - "OSV Scanner Pipenv (High: 4)"
+          - "OSV Scanner PNPM (High: 2)"
+          - "OSV Scanner Poetry (High: 21, Medium: 13, Low: 2, Unknown: 1)"
+          - "OSV Scanner Rubygems (High: 4, Medium: 2)"
+          - "OSV Scanner UV (High: 2, Unknown: 1)"
+          - "OSV Scanner Yarn (Critical: 17, High: 39, Medium: 31, Low: 4, Unknown: 6)"
+          - "Snyk Composer (Critical: 4, High: 7, Medium: 5, Low: 1, None: 3)"
+          - "Snyk Container (High: 1, None: 3)"
+          - "Snyk Gomodules (High: 4, Medium: 4)"
+          - "Snyk Gradle (Critical: 2, Medium: 1, None: 1)"
+          - "Snyk Hex (Critical: 1)"
+          - "Snyk Maven (Critical: 2, Medium: 1, None: 1)"
+          - "Snyk NPM (High: 2, Medium: 6, Low: 2, None: 4)"
+          - "Snyk Nuget (High: 1)"
+          - "Snyk Pip (Medium: 1)"
+          - "Snyk PNPM (High: 1)"
+          - "Snyk Poetry (High: 5, Medium: 21, Low: 2, None: 1)"
+          - "Snyk Rubygems (High: 1, Medium: 5)"
+          - "Snyk Sbt (Medium: 1, None: 2)"
+          - "Snyk Swift (Medium: 2)"
+          - "Snyk Yarn (High: 19, Medium: 16, Low: 3, None: 11)"
+          - "Trivy IaC (High: 1, Low: 1)"
+          - "Wiz Container (Critical: 48, High: 209, Medium: 245, Low: 70)"
+          - "Wiz IaC (Medium: 5, Low: 5)"
+          - "Runs: 0"
           - "Runs: 1, Extensions: 1, Results: 0"
           - "Runs: 1, Extensions: 1, Results > 0"
           - "Runs: 1, Tools: 1, Results: 0"
@@ -44,36 +59,63 @@ on: # yamllint disable-line rule:truthy
           - "Runs: 3, Tools: 2, Results > 0"
           - "Runs: 3, Tools: 2, Results: 0"
           - "All"
-      group-by:
-        description: "Group results by:"
+      representation:
+        description: "Representation:"
         required: false
-        default: "Tool name"
+        default: "compact-group-by-tool-name-per-severity"
         type: choice
         options:
-          - "Tool name"
-          - "Run"
-          - "Total"
-      calculate-by:
-        description: "Calculate results by:"
+          - "compact-group-by-run-per-level"
+          - "compact-group-by-run-per-severity"
+          - "compact-group-by-tool-name-per-level"
+          - "compact-group-by-tool-name-per-severity"
+          - "compact-group-by-sarif-per-level"
+          - "compact-group-by-sarif-per-severity"
+          - "compact-total-per-level"
+          - "compact-total-per-severity"
+      log-level:
+        description: "Log level:"
         required: false
-        default: "Level"
+        default: "info"
         type: choice
         options:
-          - "Level"
-          - "Severity"
-      log-level:
-        description: "Log level:"
+          - "silly"
+          - "trace"
+          - "debug"
+          - "info"
+          - "warning"
+          - "error"
+          - "fatal"
+      send-if:
+        description: "Send if:"
         required: false
-        default: info
+        default: "always"
         type: choice
         options:
-          - silly
-          - trace
-          - debug
-          - info
-          - warning
-          - error
-          - fatal
+          - "severity-critical"
+          - "severity-high"
+          - "severity-high-or-higher"
+          - "severity-medium"
+          - "severity-medium-or-higher"
+          - "severity-low"
+          - "severity-low-or-higher"
+          - "severity-none"
+          - "severity-none-or-higher"
+          - "severity-unknown"
+          - "severity-unknown-or-higher"
+          - "level-error"
+          - "level-warning"
+          - "level-warning-or-higher"
+          - "level-note"
+          - "level-note-or-higher"
+          - "level-none"
+          - "level-none-or-higher"
+          - "level-unknown"
+          - "level-unknown-or-higher"
+          - "always"
+          - "some"
+          - "empty"
+          - "never"
       color:
         description: "Slack message color (hex):"
         required: false
@@ -120,60 +162,90 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout ${{ github.repository }}
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Determine SARIF file
         id: sarif-file
         env:
           INPUT_SARIF: "${{ inputs.sarif }}"
         run: |
-          if [ "${INPUT_SARIF}" = "CodeQL C# (Unknown: 1)" ]; then
+          if [ "${INPUT_SARIF}" = "CodeQL C# (High: 1)1)" ]; then
             value="codeql-csharp.sarif"
-          elif [ "${INPUT_SARIF}" = "CodeQL Go (Unknown: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "CodeQL Go (Critical: 1)" ]; then
             value="codeql-go.sarif"
-          elif [ "${INPUT_SARIF}" = "CodeQL Python (Unknown: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "CodeQL Python (Medium: 1)" ]; then
             value="codeql-python.sarif"
-          elif [ "${INPUT_SARIF}" = "CodeQL Ruby (Unknown: 4)" ]; then
+          elif [ "${INPUT_SARIF}" = "CodeQL Ruby (Critical: 3, High: 1)" ]; then
             value="codeql-ruby.sarif"
-          elif [ "${INPUT_SARIF}" = "CodeQL TypeScript (Unknown: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "CodeQL TypeScript (Critical: 1)" ]; then
             value="codeql-typescript.sarif"
-          elif [ "${INPUT_SARIF}" = "Grype Container (Error: 10, Warning: 20, Note: 9)" ]; then
+          elif [ "${INPUT_SARIF}" = "Grype Container (Critical: 4, High: 6, Medium: 20, Low: 9)" ]; then
             value="grype-container.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Composer (Error: 15, Warning: 5)" ]; then
+          elif [ "${INPUT_SARIF}" = "Grype GitHub Actions (High: 1)" ]; then
+            value="grype-github-actions.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Composer (Critical: 5, High: 4, Medium: 7)" ]; then
+            value="osv-scanner-composer.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Container (Critical: 2, High: 7, Medium: 7, Low: 6, Unknown: 26)" ]; then
+            value="osv-scanner-container.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Gomodules (Critical: 1, High: 6, Medium: 9)" ]; then
+            value="osv-scanner-gomodules.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Hex (Unknown: 2)" ]; then
+            value="osv-scanner-hex.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Maven (Critical: 1, Unknown: 1)" ]; then
+            value="osv-scanner-maven.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner NPM (High: 4, Medium: 5, Unknown: 1)" ]; then
+            value="osv-scanner-npm.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Pip (High: 2, Unknown: 1)" ]; then
+            value="osv-scanner-pip.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Pipenv (High: 4)" ]; then
+            value="osv-scanner-pipenv.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner PNPM (High: 2)" ]; then
+            value="osv-scanner-pnpm.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Poetry (High: 21, Medium: 13, Low: 2, Unknown: 1)" ]; then
+            value="osv-scanner-poetry.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Rubygems (High: 4, Medium: 2)" ]; then
+            value="osv-scanner-rubygems.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner UV (High: 2, Unknown: 1)" ]; then
+            value="osv-scanner-uv.sarif"
+          elif [ "${INPUT_SARIF}" = "OSV Scanner Yarn (Critical: 17, High: 39, Medium: 31, Low: 4, Unknown: 6)" ]; then
+            value="osv-scanner-yarn.sarif"
+          elif [ "${INPUT_SARIF}" = "Snyk Composer (Critical: 4, High: 7, Medium: 5, Low: 1, None: 3)" ]; then
             value="snyk-composer.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Container (Error: 1, Note: 3)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Container (High: 1, None: 3)" ]; then
             value="snyk-container.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Gomodules (Error: 4, Warning: 4)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Gomodules (High: 4, Medium: 4)" ]; then
             value="snyk-gomodules.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Gradle (Error: 3, Warning: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Gradle (Critical: 2, Medium: 1, None: 1)" ]; then
             value="snyk-gradle.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Hex (Error: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Hex (Critical: 1)" ]; then
             value="snyk-hex.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Maven (Error: 3, Warning: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Maven (Critical: 2, Medium: 1, None: 1)" ]; then
             value="snyk-maven.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk NPM (Error: 6, Warning: 6, Note: 2)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk NPM (High: 2, Medium: 6, Low: 2, None: 4)" ]; then
             value="snyk-npm.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Nuget (Error: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Nuget (High: 1)" ]; then
             value="snyk-nuget.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Pip (Warning: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Pip (Medium: 1)" ]; then
             value="snyk-pip.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk PNPM (Error: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk PNPM (High: 1)" ]; then
             value="snyk-pnpm.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Poetry (Error: 6, Warning: 21, Note: 2)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Poetry (High: 5, Medium: 21, Low: 2, None: 1)" ]; then
             value="snyk-poetry.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Rubygems (Error: 1, Warning: 5)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Rubygems (High: 1, Medium: 5)" ]; then
             value="snyk-rubygems.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Sbt (Error: 2, Warning: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Sbt (Medium: 1, None: 2)" ]; then
             value="snyk-sbt.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Swift (Warning: 2)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Swift (Medium: 2)" ]; then
             value="snyk-swift.sarif"
-          elif [ "${INPUT_SARIF}" = "Snyk Yarn (Error: 30, Warning: 16, Note: 3)" ]; then
+          elif [ "${INPUT_SARIF}" = "Snyk Yarn (High: 19, Medium: 16, Low: 3, None: 11)" ]; then
             value="snyk-yarn.sarif"
-          elif [ "${INPUT_SARIF}" = "Trivy IaC (Error: 1, Note: 1)" ]; then
+          elif [ "${INPUT_SARIF}" = "Trivy IaC (High: 1, Low: 1)" ]; then
             value="trivy-iac.sarif"
-          elif [ "${INPUT_SARIF}" = "Wiz Container (Error: 12, Warning: 369, Note: 191)" ]; then
+          elif [ "${INPUT_SARIF}" = "Wiz Container (Critical: 48, High: 209, Medium: 245, Low: 70)" ]; then
             value="wiz-container.sarif"
-          elif [ "${INPUT_SARIF}" = "Wiz IaC (Warning: 5, Note: 5)" ]; then
+          elif [ "${INPUT_SARIF}" = "Wiz IaC (Medium: 5, Low: 5)" ]; then
             value="wiz-iac.sarif"
+          elif [ "${INPUT_SARIF}" = "Runs: 0" ]; then
+            value="runs-0.sarif"
           elif [ "${INPUT_SARIF}" = "Runs: 1, Extensions: 1, Results: 0" ]; then
             value="runs-1-extensions-1-results-0.sarif"
           elif [ "${INPUT_SARIF}" = "Runs: 1, Extensions: 1, Results > 0" ]; then
@@ -215,6 +287,6 @@ jobs:
           SARIF_TO_SLACK_FOOTER: "${{ inputs.footer }}"
           SARIF_TO_SLACK_ACTOR: "${{ inputs.actor }}"
           SARIF_TO_SLACK_INCLUDE_RUN: "${{ inputs.include-run }}"
-          SARIF_TO_SLACK_GROUP_BY: "${{ inputs.group-by}}"
-          SARIF_TO_SLACK_CALCULATE_BY: "${{ inputs.calculate-by}}"
+          SARIF_TO_SLACK_REPRESENTATION: "${{ inputs.representation }}"
+          SARIF_TO_SLACK_SEND_IF: "${{ inputs.send-if }}"
         run: make test/integration

package/.gitleaksignore

@@ -0,0 +1,8 @@
+test-data/sarif/osv-scanner-poetry.sarif:curl-auth-user:1347
+test-data/sarif/osv-scanner-poetry.sarif:curl-auth-user:1348
+test-data/sarif/osv-scanner-poetry.sarif:curl-auth-user:1351
+test-data/sarif/osv-scanner-poetry.sarif:curl-auth-user:1352
+test-data/sarif/osv-scanner-yarn.sarif:aws-access-token:4181
+test-data/sarif/osv-scanner-yarn.sarif:aws-access-token:4182
+test-data/sarif/osv-scanner-yarn.sarif:aws-access-token:4185
+test-data/sarif/osv-scanner-yarn.sarif:aws-access-token:4186

package/.pre-commit-config.yaml

@@ -60,7 +60,7 @@ repos:
           - --hook-args=--log-level debug
         stages: ["pre-push"]
   - repo: https://github.com/google/osv-scanner
-    rev: v2.1.0
+    rev: v2.2.1
     hooks:
       - id: osv-scanner
         args:
@@ -84,11 +84,11 @@ repos:
     rev: v1.7.7
     hooks:
       - id: actionlint
-        args: ["-pyflakes="]
+        args: ["-pyflakes=", "-shellcheck="]
         stages: ["pre-commit"]
   # Other
   - repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v5.0.0
+    rev: v6.0.0
     hooks:
       - id: check-merge-conflict
       - id: check-json

package/.tool-versions

@@ -1 +1 @@
-nodejs 24.4.1
+nodejs 24.5.0

package/dist/Logger.js

@@ -30,5 +30,8 @@ export default class Logger {
     static debug(...args) {
         Logger.instance.debug(...args);
     }
+    static trace(...args) {
+        Logger.instance.trace(...args);
+    }
 }
-//# sourceMappingURL=data:application/json;base64,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
+//# sourceMappingURL=data:application/json;base64,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

package/dist/SarifToSlackClient.d.ts

@@ -0,0 +1,33 @@
+import { SarifToSlackClientOptions } from './types';
+/**
+ * Service to convert SARIF files to Slack messages and send them.
+ * @public
+ */
+export declare class SarifToSlackClient {
+    private _message?;
+    private _sarifModel?;
+    private _sendIf;
+    private constructor();
+    private static createRunIdGenerator;
+    static create(opts: SarifToSlackClientOptions): Promise<SarifToSlackClient>;
+    private static buildModel;
+    /**
+     * The main function to initialize a list of {@link SlackMessage} objects based
+     * on the given SARIF file(s).
+     * @param sarifModel An instance of {@link SarifModel} object.
+     * @param opts An instance of {@link SarifToSlackClientOptions} object.
+     * @returns A map where key is the SARIF file and value is an instance of
+     * {@link SlackMessage} object
+     * @private
+     */
+    private static initialize;
+    /**
+     * Sends a Slack message.
+     * @returns A promise that resolves when the message has been sent.
+     * @throws Error if a Slack message was not prepared for the given SARIF path.
+     * @public
+     */
+    send(): Promise<void>;
+    private get shouldSendMessage();
+}
+//# sourceMappingURL=SarifToSlackClient.d.ts.map

package/dist/SarifToSlackClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SarifToSlackClient.d.ts","sourceRoot":"","sources":["../src/SarifToSlackClient.ts"],"names":[],"mappings":"AAIA,OAAO,EAKL,yBAAyB,EAK1B,MAAM,SAAS,CAAA;AAShB;;;GAGG;AACH,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,QAAQ,CAAC,CAAc;IAC/B,OAAO,CAAC,WAAW,CAAC,CAAY;IAEhC,OAAO,CAAC,OAAO,CAAwB;IAEvC,OAAO;IAKP,OAAO,CAAC,MAAM,CAAE,oBAAoB;WAOhB,MAAM,CAAC,IAAI,EAAE,yBAAyB,GAAG,OAAO,CAAC,kBAAkB,CAAC;mBAWnE,UAAU;IAgC/B;;;;;;;;OAQG;mBACkB,UAAU;IAyB/B;;;;;OAKG;IACU,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAelC,OAAO,KAAK,iBAAiB,GAyD5B;CACF"}

package/dist/SarifToSlackClient.js

@@ -0,0 +1,178 @@
+import { promises as fs } from 'fs';
+import Logger from './Logger';
+import { SlackMessageBuilder } from './SlackMessageBuilder';
+import { SecurityLevel, SecuritySeverity, SendIf } from './types';
+import System from './System';
+import { extractListOfFiles } from './utils/FileUtils';
+import { createRepresentation } from './representations/RepresentationFactory';
+import { createFinding } from './model/Finding';
+import { findToolComponent, findToolComponentDriver } from './utils/SarifUtils';
+import { identifyColor } from './model/Color';
+import FindingsArray from './model/FindingsArray';
+/**
+ * Service to convert SARIF files to Slack messages and send them.
+ * @public
+ */
+export class SarifToSlackClient {
+    _message;
+    _sarifModel;
+    _sendIf = SendIf.Always;
+    constructor(log) {
+        Logger.initialize(log);
+        System.initialize();
+    }
+    static *createRunIdGenerator() {
+        let runId = 1;
+        while (true) {
+            yield runId++;
+        }
+    }
+    static async create(opts) {
+        const instance = new SarifToSlackClient(opts.log);
+        Logger.trace('opts', opts);
+        instance._sendIf = opts.sendIf ?? instance._sendIf;
+        instance._sarifModel = await SarifToSlackClient.buildModel(opts.sarif);
+        Logger.trace('instance._sarifModel', instance._sarifModel);
+        instance._message = await SarifToSlackClient.initialize(instance._sarifModel, opts);
+        Logger.trace('instance._message', instance._message);
+        return instance;
+    }
+    static async buildModel(sarifOpts) {
+        const sarifFiles = extractListOfFiles(sarifOpts);
+        if (sarifFiles.length === 0) {
+            throw new Error(`No SARIF files found at the provided path: ${sarifOpts.path}`);
+        }
+        const model = { sarifFiles, runs: [], findings: new FindingsArray() };
+        const runIdGenerator = SarifToSlackClient.createRunIdGenerator();
+        for (const sarifPath of sarifFiles) {
+            const sarifJson = await fs.readFile(sarifPath, 'utf8');
+            const sarifLog = JSON.parse(sarifJson);
+            for (const run of sarifLog.runs) {
+                const runId = runIdGenerator.next();
+                let runMetadata = undefined;
+                for (const result of run.results ?? []) {
+                    runMetadata = {
+                        id: runId.value,
+                        run,
+                        toolName: findToolComponent(run, result).name
+                    };
+                    model.findings.push(createFinding({ sarifPath, result, runMetadata }));
+                }
+                runMetadata ??= {
+                    id: runId.value, run, toolName: findToolComponentDriver(run).name
+                };
+                model.runs.push(runMetadata);
+            }
+        }
+        return model;
+    }
+    /**
+     * The main function to initialize a list of {@link SlackMessage} objects based
+     * on the given SARIF file(s).
+     * @param sarifModel An instance of {@link SarifModel} object.
+     * @param opts An instance of {@link SarifToSlackClientOptions} object.
+     * @returns A map where key is the SARIF file and value is an instance of
+     * {@link SlackMessage} object
+     * @private
+     */
+    static async initialize(sarifModel, opts) {
+        const message = new SlackMessageBuilder(opts.webhookUrl, {
+            username: opts.username,
+            iconUrl: opts.iconUrl,
+            color: identifyColor(sarifModel.findings, opts.color),
+            representation: createRepresentation(sarifModel, opts.representation),
+        });
+        if (opts.header?.include) {
+            message.withHeader(opts.header?.value);
+        }
+        if (opts.footer?.include) {
+            message.withFooter(opts.footer?.value, opts.footer?.type);
+        }
+        if (opts.actor?.include) {
+            message.withActor(opts.actor?.value);
+        }
+        if (opts.run?.include) {
+            message.withRun();
+        }
+        return message;
+    }
+    /**
+     * Sends a Slack message.
+     * @returns A promise that resolves when the message has been sent.
+     * @throws Error if a Slack message was not prepared for the given SARIF path.
+     * @public
+     */
+    async send() {
+        if (this._sarifModel == null) {
+            throw new Error('Could not parse SARIF file(s).');
+        }
+        if (this.shouldSendMessage) {
+            if (this._message == null) {
+                throw new Error('Slack message was not prepared.');
+            }
+            const text = await this._message.send();
+            Logger.info('Message sent. Status:', text);
+        }
+        else {
+            Logger.info('Message was not sent based on the sendIf parameter:', SendIf[this._sendIf]);
+        }
+    }
+    get shouldSendMessage() {
+        if (this._sendIf == null) {
+            return true;
+        }
+        switch (this._sendIf) {
+            case SendIf.SeverityCritical:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.Critical) != null;
+            case SendIf.SeverityHigh:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.High) != null;
+            case SendIf.SeverityHighOrHigher:
+                return !!this._sarifModel?.findings.hasSeverityOrHigher(SecuritySeverity.High);
+            case SendIf.SeverityMedium:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.Medium) != null;
+            case SendIf.SeverityMediumOrHigher:
+                return !!this._sarifModel?.findings.hasSeverityOrHigher(SecuritySeverity.Medium);
+            case SendIf.SeverityLow:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.Low) != null;
+            case SendIf.SeverityLowOrHigher:
+                return !!this._sarifModel?.findings.hasSeverityOrHigher(SecuritySeverity.Low);
+            case SendIf.SeverityNone:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.None) != null;
+            case SendIf.SeverityNoneOrHigher:
+                return !!this._sarifModel?.findings.hasSeverityOrHigher(SecuritySeverity.None);
+            case SendIf.SeverityUnknown:
+                return this._sarifModel?.findings.findByProperty('severity', SecuritySeverity.Unknown) != null;
+            case SendIf.SeverityUnknownOrHigher:
+                return !!this._sarifModel?.findings.hasSeverityOrHigher(SecuritySeverity.Unknown);
+            case SendIf.LevelError:
+                return this._sarifModel?.findings.findByProperty('level', SecurityLevel.Error) != null;
+            case SendIf.LevelWarning:
+                return this._sarifModel?.findings.findByProperty('level', SecurityLevel.Warning) != null;
+            case SendIf.LevelWarningOrHigher:
+                return !!this._sarifModel?.findings.hasLevelOrHigher(SecurityLevel.Warning);
+            case SendIf.LevelNote:
+                return this._sarifModel?.findings.findByProperty('level', SecurityLevel.Note) != null;
+            case SendIf.LevelNoteOrHigher:
+                return !!this._sarifModel?.findings.hasLevelOrHigher(SecurityLevel.Note);
+            case SendIf.LevelNone:
+                return this._sarifModel?.findings.findByProperty('level', SecurityLevel.None) != null;
+            case SendIf.LevelNoneOrHigher:
+                return !!this._sarifModel?.findings.hasLevelOrHigher(SecurityLevel.None);
+            case SendIf.LevelUnknown:
+                return this._sarifModel?.findings.findByProperty('level', SecurityLevel.Unknown) != null;
+            case SendIf.LevelUnknownOrHigher:
+                return !!this._sarifModel?.findings.hasLevelOrHigher(SecurityLevel.Unknown);
+            case SendIf.Always:
+                return true;
+            case SendIf.Some:
+                return (this._sarifModel?.findings.length ?? 0) > 0;
+            case SendIf.Empty:
+                return (this._sarifModel?.findings.length ?? 0) === 0;
+            case SendIf.Never:
+                return false;
+            default:
+                throw new Error(`Unknown sendIf parameter: ${this._sendIf}`);
+        }
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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