go-test-sarif

go-test-sarif is a CLI tool for converting go test -json output into SARIF format, making it compatible with GitHub Security Tab and other SARIF consumers.

🚀 Features

Converts go test -json output to SARIF format.
Generates structured test failure reports for security and compliance tools.
Works as a standalone CLI tool.

📦 Installation

Using `go install`

go install github.com/ivuorinen/go-test-sarif-action@latest

🛠️ Usage

CLI Usage

go test -json ./... > go-test-results.json
go-test-sarif go-test-results.json go-test-results.sarif

📜 Output Example

SARIF report example:

{
  "version": "2.1.0",
  "runs": [
    {
      "tool": {
        "driver": {
          "name": "Go Test",
          "informationUri": "https://golang.org/cmd/go/#hdr-Test_packages",
          "version": "1.0.0"
        }
      },
      "results": [
        {
          "ruleId": "go-test-failure",
          "level": "error",
          "message": {
            "text": "Test failed"
          },
          "locations": [
            {
              "physicalLocation": {
                "artifactLocation": {
                  "uri": "github.com/example/package"
                }
              }
            }
          ]
        }
      ]
    }
  ]
}

🏗 Development

Clone the repository and build the project:

git clone https://github.com/ivuorinen/go-test-sarif-action.git
cd go-test-sarif-action
go build -o go-test-sarif ./cmd/main.go
go install github.com/golangci/golangci-lint/cmd/golangci-lint@latest

Run tests:

go test ./...

Run linting:

go vet ./...
golangci-lint run

📄 License

This project is licensed under the MIT License.

🤝 Contributing

Pull requests are welcome! For major changes, open an issue to discuss them.

1.8 KiB Raw Blame History