Skip to content

v0.2.0 — SARIF / GitHub code scanning

Choose a tag to compare

View all tags
@fernforge fernforge released this 27 Jun 16:37
· 2 commits to main since this release
v0.2.0
3530097

Adds SARIF 2.1.0 output so tsgo-ready findings show up inline on PRs and in the repo Security tab.

  • --sarif (or --format sarif) emits SARIF 2.1.0. Each result is anchored to the offending tsconfig line, package.json, or source file.
  • The GitHub Action gains a sarif-file input — pair it with github/codeql-action/upload-sarif to upload the report.
  • Severity maps to SARIF levels: error→error, warn→warning, review/info→note.

Run it: npx github:fernforge/tsgo-ready

Assets 2
Loading