Add code

Signed-off-by: Hollow Man <hollowman@opensuse.org>

.github/workflows/dockerimage.yml

@@ -10,4 +10,6 @@ jobs:
     steps:
     - uses: actions/checkout@v3
     - name: Build the Docker image
-      run: docker build . --file Dockerfile --tag ${{ github.repository }}:$(date +%s)
+      run: |
+        NAME=$(echo "${{ github.repository }}" | tr '[:upper:]' '[:lower:]')
+        docker build . --file Dockerfile --tag ${NAME}:$(date +%s)

Dockerfile

@@ -4,14 +4,14 @@ ENV REVIEWDOG_VERSION=v0.14.1
 
 SHELL ["/bin/ash", "-eo", "pipefail", "-c"]
 
-# hadolint ignore=DL3006
-RUN apk --no-cache add git
-
 RUN wget -O - -q https://raw.githubusercontent.com/reviewdog/reviewdog/master/install.sh| sh -s -- -b /usr/local/bin/ ${REVIEWDOG_VERSION}
 
-# TODO: Install a linter and/or change docker image as you need.
-RUN wget -O - -q https://git.io/misspell | sh -s -- -b /usr/local/bin/
+ENV PYTHONUNBUFFERED=1
+RUN apk add --update --no-cache python3 && ln -sf python3 /usr/bin/python
+RUN python3 -m ensurepip
+RUN pip3 install --no-cache --upgrade pip setuptools
 
 COPY entrypoint.sh /entrypoint.sh
+COPY convert.py /convert.py
 
 ENTRYPOINT ["/entrypoint.sh"]

README.md

@@ -1,44 +1,27 @@
-# action-template
-
-<!-- TODO: replace reviewdog/action-template with your repo name -->
-[![Test](https://github.com/reviewdog/action-template/workflows/Test/badge.svg)](https://github.com/reviewdog/action-template/actions?query=workflow%3ATest)
-[![reviewdog](https://github.com/reviewdog/action-template/workflows/reviewdog/badge.svg)](https://github.com/reviewdog/action-template/actions?query=workflow%3Areviewdog)
-[![depup](https://github.com/reviewdog/action-template/workflows/depup/badge.svg)](https://github.com/reviewdog/action-template/actions?query=workflow%3Adepup)
-[![release](https://github.com/reviewdog/action-template/workflows/release/badge.svg)](https://github.com/reviewdog/action-template/actions?query=workflow%3Arelease)
-[![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/reviewdog/action-template?logo=github&sort=semver)](https://github.com/reviewdog/action-template/releases)
+# SARIF for Reviewdog
+[![Test](https://github.com/HollowMan6/sarif4reviewdog/workflows/Test/badge.svg)](https://github.com/HollowMan6/sarif4reviewdog/actions?query=workflow%3ATest)
+[![reviewdog](https://github.com/HollowMan6/sarif4reviewdog/workflows/reviewdog/badge.svg)](https://github.com/HollowMan6/sarif4reviewdog/actions?query=workflow%3Areviewdog)
+[![depup](https://github.com/HollowMan6/sarif4reviewdog/workflows/depup/badge.svg)](https://github.com/HollowMan6/sarif4reviewdog/actions?query=workflow%3Adepup)
+[![release](https://github.com/HollowMan6/sarif4reviewdog/workflows/release/badge.svg)](https://github.com/HollowMan6/sarif4reviewdog/actions?query=workflow%3Arelease)
+[![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/HollowMan6/sarif4reviewdog?logo=github&sort=semver)](https://github.com/HollowMan6/sarif4reviewdog/releases)
 [![action-bumpr supported](https://img.shields.io/badge/bumpr-supported-ff69b4?logo=github&link=https://github.com/haya14busa/action-bumpr)](https://github.com/haya14busa/action-bumpr)
-
-![github-pr-review demo](https://user-images.githubusercontent.com/3797062/73162963-4b8e2b00-4132-11ea-9a3f-f9c6f624c79f.png)
-![github-pr-check demo](https://user-images.githubusercontent.com/3797062/73163032-70829e00-4132-11ea-8481-f213a37db354.png)
-
-This is a template repository for [reviewdog](https://github.com/reviewdog/reviewdog) action with release automation.
-Click `Use this template` button to create your reviewdog action :dog:!
-
-If you want to create your own reviewdog action from scratch without using this
-template, please check and copy release automation flow.
-It's important to manage release workflow and sync reviewdog version for all
-reviewdog actions.
-
-This repo contains a sample action to run [misspell](https://github.com/client9/misspell).
-
 ## Input
 
-<!-- TODO: update -->
 ```yaml
 inputs:
   github_token:
     description: 'GITHUB_TOKEN'
     default: '${{ github.token }}'
-  workdir:
-    description: 'Working directory relative to the root directory.'
-    default: '.'
   ### Flags for reviewdog ###
+  tool_name:
+    description: 'Tool name to use for reviewdog reporter'
+    default: 'SARIF'
   level:
     description: 'Report level for reviewdog [info,warning,error]'
     default: 'error'
   reporter:
-    description: 'Reporter of reviewdog command [github-pr-check,github-check,github-pr-review].'
-    default: 'github-pr-check'
+    description: 'Reporter of reviewdog command [github-pr-check,github-pr-review].'
+    default: 'github-pr-review'
   filter_mode:
     description: |
       Filtering mode for the reviewdog command [added,diff_context,file,nofilter].
@@ -52,27 +35,31 @@ inputs:
   reviewdog_flags:
     description: 'Additional reviewdog flags'
     default: ''
-  ### Flags for <linter-name> ###
-  locale:
-    description: '-locale flag of misspell. (US/UK)'
+  ### Flags for linter ###
+  file:
+    description: 'SARIF file path'
     default: ''
+    required: true
 ```
 
 ## Usage
-<!-- TODO: update. replace `template` with the linter name -->
-
 ```yaml
-name: reviewdog
+name: sarif4reviewdog
 on: [pull_request]
 jobs:
   # TODO: change `linter_name`.
-  linter_name:
-    name: runner / <linter-name>
+  sarif_reviewdog:
+    name: sarif reviewdog
     runs-on: ubuntu-latest
+    permissions:
+      pull-requests: write
     steps:
       - uses: actions/checkout@v2
-      - uses: reviewdog/action-template@v1
+      - uses: HollowMan6/sarif4reviewdog@v1
         with:
+          file: 'results.sarif'
+          # Remember to allow GitHub Actions to create and approve pull requests
+          # https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-github-actions-settings-for-a-repository#preventing-github-actions-from-creating-or-approving-pull-requests
           github_token: ${{ secrets.github_token }}
           # Change reviewdog reporter if you need [github-pr-check,github-check,github-pr-review].
           reporter: github-pr-review
@@ -110,5 +97,3 @@ Supported linters:
 ### Dependencies Update Automation
 This repository uses [reviewdog/action-depup](https://github.com/reviewdog/action-depup) to update
 reviewdog version.
-
-[![reviewdog depup demo](https://user-images.githubusercontent.com/3797062/73154254-170e7500-411a-11ea-8211-912e9de7c936.png)](https://github.com/reviewdog/action-template/pull/6)

action.yml

@@ -1,20 +1,20 @@
-name: 'TODO: Run <linter-name> with reviewdog'
-description: 'TODO: 🐶 Run <linter-name> with reviewdog on pull requests to improve code review experience.'
-author: 'TODO: <your-name>'
+name: 'SARIF support for reviewdog 🐶'
+description: 'Support SARIF for reviewdog on pull requests to improve code review experience.'
+author: 'HollowMan6'
 inputs:
   github_token:
     description: 'GITHUB_TOKEN'
     default: '${{ github.token }}'
-  workdir:
-    description: 'Working directory relative to the root directory.'
-    default: '.'
   ### Flags for reviewdog ###
+  tool_name:
+    description: 'Tool name to use for reviewdog reporter'
+    default: 'SARIF'
   level:
     description: 'Report level for reviewdog [info,warning,error]'
     default: 'error'
   reporter:
     description: 'Reporter of reviewdog command [github-pr-check,github-pr-review].'
-    default: 'github-pr-check'
+    default: 'github-pr-review'
   filter_mode:
     description: |
       Filtering mode for the reviewdog command [added,diff_context,file,nofilter].
@@ -28,10 +28,11 @@ inputs:
   reviewdog_flags:
     description: 'Additional reviewdog flags'
     default: ''
-  ### Flags for <linter-name> ###
-  locale:
-    description: '-locale flag of misspell. (US/UK)'
+  ### Flags for linter ###
+  file:
+    description: 'SARIF file path'
     default: ''
+    required: true
 runs:
   using: 'docker'
   image: 'Dockerfile'

convert.py

@@ -0,0 +1,98 @@
+#!/usr/bin/env python3
+import sys
+import json
+
+content = {}
+with open(sys.argv[1]) as file:
+    content = json.load(file)
+
+for run in content["runs"]:
+    rdjson = {}
+    tool = run["tool"]
+    driver = tool["driver"]
+    name = driver["name"]
+    informationUri = driver["informationUri"]
+    rule = {}
+    ruleLevel = {}
+    rdjson["source"] = {
+        "name": name,
+        "url": informationUri
+    }
+    diagnostics = []
+    for r in driver["rules"]:
+        id = r["id"]
+        description = "\n#### " + id + " "
+        level = r["defaultConfiguration"]["level"]
+        if level == "warning":
+            level = "WARNING"
+        elif level == "error":
+            level = "ERROR"
+        elif level == "note":
+            level = "INFO"
+        else:
+            level = "UNKNOWN_SEVERITY"
+        if "shortDescription" in r:
+            description += r["shortDescription"]["text"] + ":\n"
+        if "fullDescription" in r:
+            description += r["fullDescription"]["text"] + "\n\n"
+        if "help" in r:
+            description += "*" + r["help"]["text"] + "*\n"
+        rule[id] = description
+        ruleLevel[id] = level
+    for result in run["results"]:
+        ruleId = result["ruleId"]
+        description = rule[ruleId]
+        # if "message" in result:
+        #     description += result["message"]["text"] + "\n"
+        sarifLocation = result["locations"][0]["physicalLocation"]
+        path = sarifLocation["artifactLocation"]["uri"]
+        location = {
+            "path": path,
+            "range": {
+                "start": {
+                    "line": sarifLocation["region"]["startLine"],
+                    "column": sarifLocation["region"]["startColumn"]
+                }
+            }
+        }
+        if "endLine" in sarifLocation["region"]:
+            location["range"]["end"] = {
+                "line": sarifLocation["region"]["endLine"],
+                "column": sarifLocation["region"]["endColumn"]
+            }
+        suggestions = []
+        if "fixes" in result:
+            for fix in result["fixes"]:
+                ac = fix["artifactChanges"][0]
+                if path != ac["artifactLocation"]["uri"]:
+                    continue
+                replace = ac["replacements"][0]
+                deleted = replace["deletedRegion"]
+                suggest = {
+                    "range": {
+                        "start": {
+                            "line": deleted["startLine"],
+                            "column": deleted["startColumn"]
+                        },
+                        "end": {
+                            "line": deleted["endLine"],
+                            "column": deleted["endColumn"]
+                        }
+                    }
+                }
+                location["range"] = suggest
+                if "insertedContent" in replace:
+                    suggest["text"] = replace["insertedContent"]["text"]
+                suggestions.append(suggest)
+        diagnostic = {
+            "message": description,
+            "location": location,
+            "severity": ruleLevel[ruleId],
+            "code": {
+                "value": ruleId,
+            },
+            "suggestions": suggestions,
+        }
+        diagnostics.append(diagnostic)
+    rdjson["diagnostics"] = diagnostics
+    print(json.dumps(rdjson))

entrypoint.sh

@@ -1,17 +1,12 @@
 #!/bin/sh
 set -e
 
-if [ -n "${GITHUB_WORKSPACE}" ] ; then
-  cd "${GITHUB_WORKSPACE}/${INPUT_WORKDIR}" || exit
-  git config --global --add safe.directory "${GITHUB_WORKSPACE}" || exit 1
-fi
-
 export REVIEWDOG_GITHUB_API_TOKEN="${INPUT_GITHUB_TOKEN}"
 
-misspell -locale="${INPUT_LOCALE}" . \
-  | reviewdog -efm="%f:%l:%c: %m" \
-      -name="linter-name (misspell)" \
-      -reporter="${INPUT_REPORTER:-github-pr-check}" \
+/convert.py "${INPUT_FILE}" \
+  | reviewdog -f="rdjson" \
+      -name="${INPUT_TOOL_NAME:-SARIF}" \
+      -reporter="${INPUT_REPORTER:-github-pr-review}" \
       -filter-mode="${INPUT_FILTER_MODE}" \
       -fail-on-error="${INPUT_FAIL_ON_ERROR}" \
       -level="${INPUT_LEVEL}" \