GitHub Actions report doesn't show where the error/warning occurs #1666

altjx · 2021-12-30T05:29:27Z

Background

Brakeman version: 5.2.0
Rails version: 6.1.4.4
Ruby Version: 3.0.2
Link to Rails application code: ?

Issue

The github output format does not display where the error is when it's being displayed inside of a GitHub Actions workflow. Using the exact same command, the output in the terminal shows completely different.

The below example is how it looks from the terminal output

# root@bf29b8edfeea:/home/ubuntu/myapp# bin/bundle exec brakeman --format github --no-pager

Checks finished, collecting results...
Generating report...
::warning file=app/controllers//XYZ_controller.rb,line=206::Possible command injection
::warning file=lib/custom/slack.rb,line=75::Possible command injection

But from GitHub, it looks like this instead:

The command that was used to run it from the GitHub Actions is this:

      - name: Brakeman Static Analysis Check
        run: |
          git fetch
          bin/bundle exec brakeman --format github --no-pager

Same command, but different outputs.

The text was updated successfully, but these errors were encountered:

altjx changed the title ~~GitHub Actions report doesn't show error line~~ GitHub Actions report doesn't show where the error/warning occurs Dec 30, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Actions report doesn't show where the error/warning occurs #1666

GitHub Actions report doesn't show where the error/warning occurs #1666

altjx commented Dec 30, 2021

GitHub Actions report doesn't show where the error/warning occurs #1666

GitHub Actions report doesn't show where the error/warning occurs #1666

Comments

altjx commented Dec 30, 2021

Background

Issue