ivuorinen/go-test-sarif
1
0
Fork 0
mirror of https://github.com/ivuorinen/go-test-sarif.git synced 2026-01-26 11:14:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
19 Commits 1 Branch 2 Tags
a3514981f5ade8eae4a338f6d243a0779fb89282
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Ismo Vuorinen a3514981f5 feat: change repo name
2025-03-28 00:10:54 +02:00
.github
feat: change repo name
2025-03-28 00:10:54 +02:00
action
chore: make entrypoint executable
2025-03-26 18:46:18 +02:00
bin
feat: the app (#2)
2025-03-24 00:38:41 +02:00
cmd
feat: change repo name
2025-03-28 00:10:54 +02:00
internal
feat: change repo name
2025-03-28 00:10:54 +02:00
.editorconfig
chore: tweaks, error handling, etc.
2025-03-26 19:19:43 +02:00
.gitignore
feat: the app (#2)
2025-03-24 00:38:41 +02:00
.mega-linter.yml
chore(lint): mega-linter and kics configs
2025-03-26 19:29:28 +02:00
action.yml
feat: change repo name
2025-03-28 00:10:54 +02:00
Dockerfile
fix(lint): docker user
2025-03-24 01:26:02 +02:00
go.mod
feat: change repo name
2025-03-28 00:10:54 +02:00
Justfile
feat: the app (#2)
2025-03-24 00:38:41 +02:00
kics.config
chore(lint): mega-linter and kics configs
2025-03-26 19:29:28 +02:00
LICENSE.md
feat: change repo name
2025-03-28 00:10:54 +02:00

.github/README.md

go-test-sarif and go-test-sarif-action

go-test-sarif is a CLI tool and GitHub Action for converting go test -json output into SARIF format, making it compatible with GitHub Security Tab and other SARIF consumers.

🚀 Features

  • Converts go test -json output to SARIF format.
  • GitHub Action integration for CI/CD pipelines.
  • Generates structured test failure reports for security and compliance tools.
  • Works as a standalone CLI tool.

📦 Installation

Using go install

go install github.com/ivuorinen/go-test-sarif-action@latest

Using Docker

docker pull ghcr.io/ivuorinen/go-test-sarif-action:latest

🛠️ Usage

CLI Usage

go test -json ./... > go-test-results.json
go-test-sarif go-test-results.json go-test-results.sarif

Docker Usage

docker run --rm -v $(pwd):/workspace ghcr.io/ivuorinen/go-test-sarif-action go-test-results.json go-test-results.sarif

GitHub Action Usage

Add the following step to your GitHub Actions workflow:

- name: Convert JSON to SARIF
  uses: ivuorinen/go-test-sarif-action@v1
  with:
    test_results: go-test-results.json

To upload the SARIF file to GitHub Security Tab, add:

- name: Upload SARIF report
  uses: github/codeql-action/upload-sarif@v2
  with:
    sarif_file: go-test-results.sarif

📜 Output Example

SARIF report example:

{
  "version": "2.1.0",
  "runs": [
    {
      "tool": {
        "driver": {
          "name": "Go Test",
          "informationUri": "https://golang.org/cmd/go/#hdr-Test_packages",
          "version": "1.0.0"
        }
      },
      "results": [
        {
          "ruleId": "go-test-failure",
          "level": "error",
          "message": {
            "text": "Test failed"
          },
          "locations": [
            {
              "physicalLocation": {
                "artifactLocation": {
                  "uri": "github.com/example/package"
                }
              }
            }
          ]
        }
      ]
    }
  ]
}

🏗 Development

Clone the repository and build the project:

git clone https://github.com/ivuorinen/go-test-sarif-action.git
cd go-test-sarif
go build -o go-test-sarif ./cmd/main.go

Run tests:

go test ./...

📄 License

This project is licensed under the MIT License.

🤝 Contributing

Pull requests are welcome! For major changes, please open an issue first to discuss the changes.

Description
No description provided
Readme 464 KiB
Languages
Go 94.6%
Just 5.4%