Update SarifReporter.py

GitHub's SARIF validator doesn't like it when there is no `results` list associated with a run; therefore, it a `results` key doesn't exist, create one with an empty list. resolves oxsecurity#1725
wesley-dean-flexion · Aug 9, 2022 · 233dbe8 · 233dbe8
1 parent 94543e5
commit 233dbe8
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/megalinter/reporters/SarifReporter.py b/megalinter/reporters/SarifReporter.py
@@ -214,7 +214,10 @@ def fix_sarif(self, linter_sarif_obj, linter: Linter):
                                     )
                                 result["locations"][id_location] = location
                         run["results"][id_result] = result
-
+                else:
+                    # make sure that there is a results entry so GitHub's SARIF validator doesn't cry
+                    run["results"] = []
+
                 # Update run in full list
                 linter_sarif_obj["runs"][id_run] = run
         return linter_sarif_obj