Skip to content

Releases: llaville/sarif-php-sdk

1.3.0

24 May 08:33
@github-actions github-actions
1.3.0
5b7a152
Compare
Choose a tag to compare
1.3.0 Latest
Latest

1.3.0 - 2024-05-24

I'm happy to announce next level of SARIF converters improvements :

Changed

For all converters :

  • Add ability to retrieve code snippet (snippet property of region object).
  • Add automationDetails on Bartlett\Sarif\Converter\ConverterInterface with a default implementation
    into Bartlett\Sarif\Converter\AbstractConverter.
  • Add ability to print startTimeUtc and endTimeUtc properties of invocation object.
  • Add ability to print commandLine property of invocation object.
  • Add ability to provide a fullName property of toolComponent object (driver). This property is required by the Azure DevOps Advanced Security service.

PHP_CodeSniffer :

  • Add originalUriBaseIds property on run object.
  • Add partialFingerprints property of result object. This property is required by the GitHub Advanced Security service.
  • Supports now the responseFiles property of invocation object.

PHPLint :

  • Creation of a custom launcher is no more necessary with PHPLint 9.3.1 or greater. Use the --bootstrap option.
  • Add partialFingerprints property of result object. This property is required by the GitHub Advanced Security service.
  • Introduces a single ReportingDescriptor (rule) for syntax errors.
  • Supports now the responseFiles property of invocation object.

PHPStan :

  • Add partialFingerprints property of result object. This property is required by the GitHub Advanced Security service.
  • Introduces a single ReportingDescriptor (rule) for analysis errors.

Fixed

  • for all converters, make path really relative to working directory.

Full Changelog: 1.2.0...1.3.0

Assets 3

1.2.0

02 May 15:45
@github-actions github-actions
1.2.0
114c51b
Compare
Choose a tag to compare
1.2.0

1.2.0 - 2024-05-02

I'm happy to announce adds of SARIF converters for three well-known PHP linters :

Added

  • Bartlett\Sarif\Factory\SerializerFactory contract that define encoder and serializer
    for json data (compatible with Symfony Serializer Component)
  • Native PHP JSON implementation with Bartlett\Sarif\Factory\PhpSerializerFactory
  • Symfony Serializer implementation with Bartlett\Sarif\Factory\SymfonySerializerFactory

Full Changelog: 1.1.0...1.2.0

Assets 3

1.1.0

07 Jan 07:27
@llaville llaville
1.1.0
69dd282
Compare
Choose a tag to compare
1.1.0

1.1.0 - 2024-01-07

Added

  • introduces the new resources/serialize.php script (to demonstrate usage with help of Symfony/Serializer component)
  • all unit tests missing from first release 1.0

Changed

  • raise minimum PHP requirement (7.4 or greater) for property type hinting
  • add type hinting on properties and upgrade phpDoc blocks
  • remove try/catch bloc that print the final SarifLog object in json format on all examples scripts
  • API: SarifLog is no more marked as final to be able to extends or change current (__toString, jsonSerializable) behavior

Fixed

Codebase is now PHPStan rule level 9 compatible :

  • ExternalPropertyFileReference definition with optional values
  • GraphTraversal definition with optional values
  • PhysicalLocation definition with optional values
  • Region definition with optional values
  • Taxonomies property

Full Changelog: 1.0.1...1.1.0

Assets 3

1.0.1

20 Dec 11:54
@llaville llaville
1.0.1
70aa23a
Compare
Choose a tag to compare
1.0.1

Fixed

  • clean-up code in PropertyBag because duplicated keys is not possible
Assets 2

1.0.0

22 Nov 08:30
@llaville llaville
1.0.0
7f5324f
Compare
Choose a tag to compare
1.0.0

Implements full SARIF specifications 2.1.0

Assets 2