pqcheck 0.7.3 → 0.7.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/pqcheck.js +7 -2
- package/package.json +1 -1
package/bin/pqcheck.js
CHANGED
|
@@ -7,7 +7,7 @@
|
|
|
7
7
|
// =============================================================================
|
|
8
8
|
|
|
9
9
|
const API_BASE = process.env.PQCHECK_API_BASE || "https://quantapact.com";
|
|
10
|
-
const VERSION = "0.7.
|
|
10
|
+
const VERSION = "0.7.4";
|
|
11
11
|
|
|
12
12
|
const ANSI = {
|
|
13
13
|
reset: "\x1b[0m",
|
|
@@ -1168,9 +1168,13 @@ function reportToSarif(report) {
|
|
|
1168
1168
|
ruleId: `pqcheck-${i + 1}`,
|
|
1169
1169
|
level: sevMap[f.severity] || "note",
|
|
1170
1170
|
message: { text: `${f.title || "finding"}${f.detail ? ` — ${f.detail}` : ""}` },
|
|
1171
|
+
// GitHub Code Scanning requires file: scheme (or relative path) for
|
|
1172
|
+
// artifactLocation.uri — https:// URIs are rejected. Use a virtual
|
|
1173
|
+
// relative path so findings show up cleanly in the Security tab.
|
|
1171
1174
|
locations: [{
|
|
1172
1175
|
physicalLocation: {
|
|
1173
|
-
artifactLocation: { uri: `
|
|
1176
|
+
artifactLocation: { uri: `quantapact-scan/${report.domain || "unknown"}.txt` },
|
|
1177
|
+
region: { startLine: 1, startColumn: 1 },
|
|
1174
1178
|
},
|
|
1175
1179
|
}],
|
|
1176
1180
|
properties: {
|
|
@@ -1178,6 +1182,7 @@ function reportToSarif(report) {
|
|
|
1178
1182
|
score: report.score,
|
|
1179
1183
|
grade: report.grade,
|
|
1180
1184
|
severity: f.severity,
|
|
1185
|
+
reportUrl: `https://www.quantapact.com/r/${report.domain || ""}`,
|
|
1181
1186
|
},
|
|
1182
1187
|
})),
|
|
1183
1188
|
properties: {
|