safe output as security report#310
Merged
pelikhan merged 2 commits intogithub:mainfrom Sep 4, 2025
githubnext:pelikhan/sariff
Merged
safe output as security report#310pelikhan merged 2 commits intogithub:mainfrom githubnext:pelikhan/sariff
pelikhan merged 2 commits intogithub:mainfrom
githubnext:pelikhan/sariff
Conversation
…tion, workflow name defaults, GitHub Code Scanning integration, custom rule ID support, and test workflows (#54) * Initial plan * Implement create-security-report safe output feature Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Final implementation with schema fix, formatting, and validation Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Implement PR feedback: configurable driver, workflow filename rule IDs, and optional column support Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Default security report driver to agentic workflow name from frontmatter Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Add support for optional ruleIdSuffix in security reports Allow LLMs to provide custom rule ID suffixes in security reports via the ruleIdSuffix field. When not provided, defaults to the existing number scheme. - Add ruleIdSuffix validation (alphanumeric, hyphens, underscores only) - Update rule ID generation to use custom suffix when available - Add comprehensive tests for custom and default rule ID scenarios - Update documentation to describe new functionality - Maintain backward compatibility with existing workflows Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Add test agentic workflows for create-security-report safe output Added Claude and Codex test workflows to validate the new create-security-report safe output functionality Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * Update test workflows to use workflow_dispatch trigger instead of issues Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> Co-authored-by: Peli de Halleux <pelikhan@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Allows generation of SARIFF reports and uploads using github codeql custom action.