Releases: llaville/sarif-php-sdk
Releases · llaville/sarif-php-sdk
1.3.0
1.3.0 - 2024-05-24
I'm happy to announce next level of SARIF converters improvements :
Changed
For all converters :
- Add ability to retrieve code snippet (
snippet
property ofregion
object). - Add
automationDetails
onBartlett\Sarif\Converter\ConverterInterface
with a default implementation
intoBartlett\Sarif\Converter\AbstractConverter
. - Add ability to print
startTimeUtc
andendTimeUtc
properties ofinvocation
object. - Add ability to print
commandLine
property ofinvocation
object. - Add ability to provide a
fullName
property oftoolComponent
object (driver). This property is required by the Azure DevOps Advanced Security service.
PHP_CodeSniffer :
- Add
originalUriBaseIds
property onrun
object. - Add
partialFingerprints
property ofresult
object. This property is required by the GitHub Advanced Security service. - Supports now the
responseFiles
property ofinvocation
object.
PHPLint :
- Creation of a custom launcher is no more necessary with PHPLint 9.3.1 or greater. Use the
--bootstrap
option. - Add
partialFingerprints
property ofresult
object. This property is required by the GitHub Advanced Security service. - Introduces a single
ReportingDescriptor
(rule) for syntax errors. - Supports now the
responseFiles
property ofinvocation
object.
PHPStan :
- Add
partialFingerprints
property ofresult
object. This property is required by the GitHub Advanced Security service. - Introduces a single
ReportingDescriptor
(rule) for analysis errors.
Fixed
- for all converters, make path really relative to working directory.
Full Changelog: 1.2.0...1.3.0
1.2.0
1.2.0 - 2024-05-02
I'm happy to announce adds of SARIF converters for three well-known PHP linters :
- PHP_CodeSniffer (see feature request squizlabs/PHP_CodeSniffer#3496)
- PHPLint (see feature request overtrue/phplint#186)
- PHPStan (see feature request phpstan/phpstan#5973)
Added
Bartlett\Sarif\Factory\SerializerFactory
contract that define encoder and serializer
for json data (compatible with Symfony Serializer Component)- Native PHP JSON implementation with
Bartlett\Sarif\Factory\PhpSerializerFactory
- Symfony Serializer implementation with
Bartlett\Sarif\Factory\SymfonySerializerFactory
Full Changelog: 1.1.0...1.2.0
1.1.0
1.1.0 - 2024-01-07
Added
- introduces the new
resources/serialize.php
script (to demonstrate usage with help of Symfony/Serializer component) - all unit tests missing from first release 1.0
Changed
- raise minimum PHP requirement (7.4 or greater) for property type hinting
- add type hinting on properties and upgrade phpDoc blocks
- remove try/catch bloc that print the final SarifLog object in json format on all examples scripts
- API:
SarifLog
is no more marked as final to be able to extends or change current (__toString
,jsonSerializable
) behavior
Fixed
Codebase is now PHPStan rule level 9 compatible :
ExternalPropertyFileReference
definition with optional valuesGraphTraversal
definition with optional valuesPhysicalLocation
definition with optional valuesRegion
definition with optional valuesTaxonomies
property
Full Changelog: 1.0.1...1.1.0
1.0.1
1.0.0
Implements full SARIF specifications 2.1.0