-
Notifications
You must be signed in to change notification settings - Fork 223
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
jf audit: SARIF format is missing most of the fields provided by the JSON format #2063
Comments
Any update on this? I can't upload the |
Hi, I'm not sure if I have the same issue I cannot import sarif report but on SonarQube. It works for other dependencies checker (from maven) so I suspect the issue comes from the format of the jf client.
This is my sarif report Expand
|
To make it work for Sonar , had to remove the file:// in uri artifact path... But same issue with multi module maven project. It is missing the correct path for the module. The sarif format could use some improvement. |
Describe the bug
SARIF format is not on-par with the JSON format.
Current behavior
SARIF format is missing most of the JSON format information:
Note:
Reproduction steps
Expected behavior
SARIF format is on-par with the JSON format in term of information provided.
JFrog CLI version
2.42.1
Operating system type and version
Docker
JFrog Artifactory version
No response
JFrog Xray version
No response
The text was updated successfully, but these errors were encountered: