From 708ca173e3aee627dd5d45fb3ab3b6e5d201725f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jake=20B=C3=A9dard?=
 <32440974+Clearedkinkajou@users.noreply.github.com>
Date: Mon, 5 May 2025 16:29:33 -0400
Subject: [PATCH 1/2] Adds error handling for missing lockfiles
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The sarif now reports the invocation error to the BE instead of failing with a json error in the pipeline

Signed-off-by: Jake Bédard <32440974+Clearedkinkajou@users.noreply.github.com>
---
 scanners/boostsecurityio/npm-audit/module.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scanners/boostsecurityio/npm-audit/module.yaml b/scanners/boostsecurityio/npm-audit/module.yaml
index 1771f0d5..3331f2e1 100644
--- a/scanners/boostsecurityio/npm-audit/module.yaml
+++ b/scanners/boostsecurityio/npm-audit/module.yaml
@@ -26,7 +26,7 @@ steps:
       format: sarif
       post-processor:
         docker:
-            image: public.ecr.aws/boostsecurityio/boost-converter-sca:6e4b6c1@sha256:417c90b672b016b01dac84a4cf24d3a042503b6ddcfd1ba22ebd24d229f78883
+            image: public.ecr.aws/boostsecurityio/boost-converter-sca:5ba4f55@sha256:2637c3b9f21dbc418e095c91f3068bd8dfecbd8e25654f71893f068a68b96487
             command: |
               process --scanner npm-audit
             environment:

From 51b3b6d22cecf8eab58acb071768bca0f3123656 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jake=20B=C3=A9dard?=
 <32440974+Clearedkinkajou@users.noreply.github.com>
Date: Tue, 6 May 2025 16:07:45 -0400
Subject: [PATCH 2/2] Fix stdout issues by updating node version
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Jake Bédard <32440974+Clearedkinkajou@users.noreply.github.com>
---
 scanners/boostsecurityio/npm-audit/module.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scanners/boostsecurityio/npm-audit/module.yaml b/scanners/boostsecurityio/npm-audit/module.yaml
index 3331f2e1..708b6fa6 100644
--- a/scanners/boostsecurityio/npm-audit/module.yaml
+++ b/scanners/boostsecurityio/npm-audit/module.yaml
@@ -16,7 +16,7 @@ steps:
   - scan:
       command:
         docker:
-          image: node:18.12-alpine3.16@sha256:1f09c210a17508d34277971b19541a47a26dc5a641dedc03bd28cff095052996
+          image: node:22-alpine3.21@sha256:ad1aedbcc1b0575074a91ac146d6956476c1f9985994810e4ee02efd932a68fd
           command: |
             sh -c 'npm audit --json $NPM_AUDIT_ARGS || true'
           workdir: /src