Highest Voted 'sarif' Questions

0

votes

0 answers

How to convert FxCopReport format in sarif format?

Running microsoft code analysis using MSBUILD creates xml file which is in FxCopReport format. How canit be converted in sarif format ?

c# fxcop sarif microsoft-code-analysis

asked Jun 27 '23 at 09:04

Chaya

137
11

0

votes

0 answers

Can I specify multiple `-fdiagnostics-format=FORMAT` at the same time? For example, both `text` and `sarif-file`?

Some time ago, GCC added support for emitting diagnostics in the SARIF format, https://gcc.gnu.org/pipermail/gcc-patches/2022-June/596138.html. I am building with the -fanalyzer GCC option, so the warnings that get produced can get rather lengthy. I…

gcc sarif

asked Jun 07 '23 at 13:02

user7610

25,267
15
124
150

0

votes

0 answers

How to automate showing Sarif output of custom tool

I have a (python) tool which can produce multiple output formats. I am currently running this tool in VSCode as a user task with a problem matcher. The tool can also produce SARIF output. I would like to migrate the tool to only use SARIF. What is…

vscode-extensions vscode-tasks sarif

asked Jun 06 '23 at 11:52

Wouter Schols

43
3

0

votes

0 answers

GitHub code scanning error is lost after commit a single file

I'm working on a Github code analysis module. My objective is to perform some code analysis on all coded and show results on security page. Here is what I do, Initially, run scanning for all the files and upload SARIF files to GitHub. Then for…

github action scanning sarif

asked Jun 01 '23 at 11:33

user2892158

38
5

0

votes

0 answers

SARIF Report Hyperlinks

I am busy creating a SARIF report and I have been trying to add hyperlinks to fail messages but I am having no luck. You can see below a snippet of the result. In the result you will notice that there are two repositories that are not being…

json report sarif

asked Mar 29 '23 at 16:40

Adam

3
3

0

votes

0 answers

Convert a context or a unified diff to a SARIF replacement object

Can you suggest a library which would run on the JVM (i. e. written in Java or Kotlin or any other JVM language), capable of converting a unified diff: --- old.txt 2022-11-28 11:53:00.850238400 +0300 +++ new.txt 2022-11-28 11:53:16.600238400…

java kotlin jvm diff sarif

asked Nov 28 '22 at 09:03

Bass

4,977
2
36
82

0

votes

2 answers

How do I force msbuild to create SARIF Files on CodeAnalysis

If I run the code analysis in Visual Studio 2022 (on a c++ project) I get a XML and a SARIF file for every code file. No I try to run the code analysis with MSBuild 2022: MSBuild.exe solution.sln -p:Configuration=Release /p:RunCodeAnalysis=true But…

visual-studio msbuild static-analysis sarif

asked Sep 08 '22 at 15:02

habakuk

2,712
2
28
47

Questions tagged [sarif]

How to convert FxCopReport format in sarif format?

Can I specify multiple `-fdiagnostics-format=FORMAT` at the same time? For example, both `text` and `sarif-file`?

How to automate showing Sarif output of custom tool

GitHub code scanning error is lost after commit a single file

SARIF Report Hyperlinks

Convert a context or a unified diff to a SARIF replacement object

How do I force msbuild to create SARIF Files on CodeAnalysis