salvacybersec/keyhunter
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test(07-03): SARIF GitHub code scanning validation

Browse Source 
- Minimal required-fields fixture for GitHub SARIF upload schema
- TestSARIFGitHubValidation: asserts $schema/version/runs, tool.driver.name,
  per-result ruleId/level/message/locations, physicalLocation.region.startLine >= 1
- Covers startLine floor for LineNumber=0 inputs
- TestSARIFGitHubValidation_EmptyFindings: empty input still yields a valid
  document with results: [] (not null)
This commit is contained in:
salvacybersec
2026-04-05 23:55:38 +03:00
parent 83640ac200
commit bd8eb9b611
2 changed files with 273 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
testdata/sarif/sarif-2.1.0-minimal-schema.json vendored Normal file
View File

@@ -0,0 +1,9 @@
{
"required_top_level": ["$schema", "version", "runs"],
"required_run": ["tool", "results"],
"required_tool_driver": ["name", "version"],
"required_result": ["ruleId", "level", "message", "locations"],
"required_location_physical": ["artifactLocation", "region"],
"required_region": ["startLine"],
"allowed_levels": ["error", "warning", "note", "none"]
}