Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add SARIF output format support #22

Open
sanket-deepsource opened this issue Feb 4, 2025 · 0 comments
Open

Add SARIF output format support #22

sanket-deepsource opened this issue Feb 4, 2025 · 0 comments
Labels
enhancement New feature or request help wanted Extra attention is needed
Milestone
v0.5.0

Comments

@sanket-deepsource
Copy link
Contributor

Adding SARIF output support will enable Globstar to integrate better with existing security tools and IDEs. This will make it easier for teams to incorporate Globstar into their existing security workflows and toolchains. The implementation should follow the SARIF v2.1.0 specification while supporting Globstar-specific metadata.

Requirements:

  • SARIF v2.1.0 compliant output
  • Rule metadata mapping
  • Source location tracking
  • Severity level mapping
  • Configurable output options
@sanket-deepsource sanket-deepsource added the enhancement New feature or request label Feb 4, 2025
@jai-deepsource jai-deepsource added the help wanted Extra attention is needed label Feb 17, 2025
vishwamartur added a commit to vishwamartur/globstar that referenced this issue Feb 20, 2025
@vishwamartur
Add SARIF output format support
388979b 
Related to DeepSourceCorp#22

Add SARIF output format support to Globstar.

* **analysis/analyzer.go**
  - Add `reportSARIF` function to generate SARIF output format.
  - Update `ReportIssues` function to include SARIF format option.
* **analysis/issue.go**
  - Add `AsSARIF` function to handle source location tracking and severity level mapping for SARIF.
* **cmd/globstar/main.go**
  - Add `--output-format` flag to specify the output format.
  - Update `cli.Run` function to handle the new `--output-format` flag.
* **pkg/cli/cli.go**
  - Add `OutputFormat` field to `Cli` struct.
  - Update `Cli.Run` function to handle the new `OutputFormat` field.
@vishwamartur vishwamartur mentioned this issue Feb 20, 2025
Open
@sanket-deepsource sanket-deepsource added this to the GA milestone Feb 26, 2025
@sourya-deepsource sourya-deepsource modified the milestones: GA, v0.5.0 Mar 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request help wanted Extra attention is needed
Projects
None yet
Milestone
v0.5.0
Development

No branches or pull requests
4 participants
@jai-deepsource @sanket-deepsource @sourya-deepsource @MashyBasker