You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
After using the Prisma scan action, it seems that the SARIF results URI uses the Docker image name org/name:release which is not a valid URI. This means that if the up-stream solution like GitHub Code Scanning validates the URI (which it does) if will fail to upload correctly.
I took a look at the Action code and from what I could tell this is done server side and the Action just downloads the resulting SARIF. The fix might have to be server side in Prisma versus the Action itself.
After using the Prisma scan action, it seems that the SARIF results URI uses the Docker image name
org/name:releasewhich is not a valid URI. This means that if the up-stream solution like GitHub Code Scanning validates the URI (which it does) if will fail to upload correctly.I took a look at the Action code and from what I could tell this is done server side and the Action just downloads the resulting SARIF. The fix might have to be server side in Prisma versus the Action itself.
+cc @josepalafox
The text was updated successfully, but these errors were encountered: