Skip to content

Dump soon to be uploaded SARIF on request #3097

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 10, 2025
Merged

Dump soon to be uploaded SARIF on request #3097

merged 2 commits into from
Sep 10, 2025

Conversation

redsun82
Copy link
Contributor

This introduces a new internal environment variable flag (CODEQL_ACTION_SARIF_DUMP_DIR) that, when set to true, causes the SARIF file that will be uploaded to be dumped to the specified directory. The filename will be upload.sarif or upload.quality.sarif depending on the upload target.

Risk assessment

For internal use only. Please select the risk level of this change:

  • Low risk: Changes are fully under feature flags, or have been fully tested and validated in pre-production environments and are highly observable, or are documentation or test only.

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Consider adding a changelog entry for this change.
  • Confirm the readme and docs have been updated if necessary.

@redsun82
Dump soon to be uploaded SARIF on request
dae3742 
This introduces a new internal environment variable flag
(`CODEQL_ACTION_SARIF_DUMP_DIR`) that, when set to `true`, causes the
SARIF file that will be uploaded to be dumped to the specified
directory. The filename will be `upload.sarif` or `upload.quality.sarif`
depending on the upload target.
@redsun82 redsun82 requested a review from mbg September 10, 2025 05:48
@redsun82 redsun82 requested a review from a team as a code owner September 10, 2025 05:48
@Copilot Copilot AI review requested due to automatic review settings September 10, 2025 05:48
Copilot
Copilot AI reviewed Sep 10, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR introduces a new internal environment variable flag that enables dumping the processed SARIF file to a specified directory before upload for testing and debugging purposes.

  • Adds CODEQL_ACTION_SARIF_DUMP_DIR environment variable to control SARIF dumping
  • Implements dumpSarifFile function to write processed SARIF content to disk
  • Integrates SARIF dumping into the upload workflow with appropriate file naming

Reviewed Changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 1 comment.

File Description
src/environment.ts Adds new environment variable constant for SARIF dump directory
src/upload-lib.ts Implements SARIF dumping functionality and integrates it into upload process

@redsun82 redsun82 mentioned this pull request Sep 10, 2025
Open
@redsun82 redsun82 merged commit eb50a88 into main Sep 10, 2025
290 checks passed
@redsun82 redsun82 deleted the redsun82/only-dump-sarif branch September 10, 2025 10:07
mbg
mbg reviewed Sep 10, 2025
View reviewed changes
Copy link
Member

@mbg mbg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems that I can't approve anymore now that the PR is merged, but consider this my approval on this PR as well :)

This was referenced Sep 10, 2025
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mbg mbg mbg left review comments

Copilot code review Copilot Copilot left review comments

@esbena esbena esbena approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@redsun82 @mbg @esbena