Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to upload artifact of multiple task executions with multiple report formats #124

Open
emboss64 opened this issue Feb 24, 2023 · 10 comments
Open

Unable to upload artifact of multiple task executions with multiple report formats #124

emboss64 opened this issue Feb 24, 2023 · 10 comments
Assignees
@pippolino
Labels
enhancement New feature or request

Comments

@emboss64
Copy link

When you run dependency-check-build-task multiple times within the same pipeline your artifact only stores the files from the last run.
This wouldn't be an issue if you were only using a single output format and using reportFilename, which is not our case as we need both JUnit and HTML reports.

As a workaround, we are uploading artifacts after every run modifying the filename, but this results in also having the original filename

        write-Host "##vso[task.addattachment type=dependencycheck-artifact;name=$new_name;]$new_path"
        write-Host "##vso[artifact.upload containerfolder=dependency-check;artifactname=Dependency Check;]$new_path"

image

Some options I can think of to fix this:

  • Allowing to override the containerfolder or artifactname with an extra parameter in:

    azuredevops/src/Tasks/dependency-check-build-task/dependency-check-build-task.ts

    Line 218 in c4e46d0

    console.log(`##vso[artifact.upload containerfolder=dependency-check;artifactname=Dependency Check;]${filePath}`);
  • Keep the same containerfolder and artifactname but allow prefixes or suffixes for artifact filenames.
  • Flag to disable artifact upload (and then manually uploading files/artifacts via traditional methods if needed)
@HaGGi13
Copy link

HaGGi13 commented Feb 24, 2023

Hello, may I ask you why it's needed to execute it multiple times in the same pipeline?

Following is not tested.

Maybe I got your scenario wrong, but you can get the output formats JUnit and HTML with one execution. Define them as list comma separated for instance JUnit,HTML as the value of parameter format:

  • format: JUnit,HTML

In addition, for multiple runs within the the same pipeline, you can define the path to your artifacts drop-off root directory and a sub-folder for each run by using the parameter reportDirectory.

  • run # 1
    • reportFormat: $(Build.ArtifactStagingDirectory)/dependency-check/run-1
  • run # 2
    • reportFormat: $(Build.ArtifactStagingDirectory)/dependency-check/run-2
  • run # 3
    • reportFormat: $(Build.ArtifactStagingDirectory)/dependency-check/run-3

@emboss64
Copy link
Author

Hi!
So basically we've predefined templates for mono repo solutions which mix different tech stacks. So the same template is executed twice within the same pipeline but with a type switch which enables/disables analyzers based on the tech stack.

I'm going to give the reportDirectory parameter a go, to see if that actually does the trick! Thanks! I thought that having containerfolder=dependency-check in dependency-check-build-task.ts would always end up setting the artifacts in the same container within the published Dependency Check artifact

@emboss64
Copy link
Author

I can confirm it does not work. The reports are generated indeed in a separate directory but at the time of uploading the artifact they are uploaded to the same target containerfolder

Some logs from a sample run

##[debug]reportsDirectory=/opt/tfs/agent01/_work/341/a/dependency-check/net/
Setting report directory to /opt/tfs/agent01/_work/341/a/dependency-check/net/
##[debug]Absolute path for pathSegments: /opt/tfs/agent01/_work/341/a/dependency-check/net/,log = /opt/tfs/agent01/_work/341/a/dependency-check/net/log
Creating report directory at /opt/tfs/agent01/_work/341/a/dependency-check/net/

##[debug]Upload artifact: /opt/tfs/agent01/_work/341/a/dependency-check/net/dependency-check-junit.xml to server for build: 506609 at backend.
##[debug]Processed: ##vso[artifact.upload containerfolder=dependency-check;artifactname=Dependency Check;]/opt/tfs/agent01/_work/341/a/dependency-check/net/dependency-check-junit.xml

@pippolino
Copy link
Collaborator

I have the same problem

@pippolino pippolino mentioned this issue Nov 1, 2023
Closed
@pippolino
Copy link
Collaborator

@ejohn20 @guidojw @HaGGi13 Thank you for all the support you give to this repository, I have seen that no interventions have been made for many months. Is the project always maintained?

@ejohn20
Copy link
Collaborator

ejohn20 commented Nov 7, 2023

We are no longer are using Azure DevOps in our organization, so I have not been actively maintaining this. I'm open to having other folks take over this extension if the desire is there. @jeremylong is there an official way you have done this in the past?

@jeremylong
Copy link

If a new volunteer to work on the project steps forward - we can give them access. This has happened in the past with the ODC jenkins plugin. However, I do not have time myself to maintain the ADO extension myself.

@jeremylong
Copy link

@ejohn20 I might suggest that you update the README.md indicating the project is seeking a new maintainer?

@pippolino
Copy link
Collaborator

@jeremylong I am available to help if necessary

@ejohn20
Copy link
Collaborator

ejohn20 commented Nov 8, 2023

READMD updated and I opened an issue specifically for this: #137

@pippolino pippolino added the enhancement New feature or request label Feb 26, 2024
@pippolino pippolino self-assigned this Feb 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@pippolino pippolino

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@pippolino @jeremylong @HaGGi13 @ejohn20 @emboss64