feat: propagate resultId to SARIF (#359)

cx-rafael-carvalho · web-flow · commit 9951ba394ba0 · 2025-12-17T16:34:06.000Z
Closes # **Proposed Changes** Have the resultId in SARIF report. I put the resultId in the field result.properties.resultId. I was thinking of putting in the result.Guid field but the format does not match the pattern of "^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[1-5][0-9a-fA-F]{3}-[89abAB][0-9a-fA-F]{3}-[0-9a-fA-F]{12}$" in the SARIF schema. https://schemastore.azurewebsites.net/schemas/json/sarif-2.1.0-rtm.5.json  **Checklist** - [x] I covered my changes with tests. - [ ] I Updated the documentation that is affected by my changes: - [ ] Change in the CLI arguments - [ ] Change in the configuration file I submit this contribution under the Apache-2.0 license.
diff --git a/lib/reporting/report_test.go b/lib/reporting/report_test.go
@@ -136,6 +136,7 @@ var (
 		Properties: Properties{
 			"validationStatus": string(result1.ValidationStatus),
 			"cvssScore":        result1.CvssScore,
+			"resultId":         result1.ID,
 		},
 	}
 	result2Sarif = Results{
@@ -167,6 +168,7 @@ var (
 		Properties: Properties{
 			"validationStatus": string(result2.ValidationStatus),
 			"cvssScore":        result2.CvssScore,
+			"resultId":         result2.ID,
 		},
 	}
 	result3Sarif = Results{
@@ -198,6 +200,7 @@ var (
 		Properties: Properties{
 			"validationStatus": string(result3.ValidationStatus),
 			"cvssScore":        result3.CvssScore,
+			"resultId":         result3.ID,
 		},
 	}
 	result4Sarif = Results{
@@ -230,6 +233,7 @@ var (
 			"validationStatus":  string(result4.ValidationStatus),
 			"cvssScore":         result4.CvssScore,
 			"confluence.pageId": result4.ExtraDetails["confluence.pageId"],
+			"resultId":          result4.ID,
 		},
 	}
 )
diff --git a/lib/reporting/sarif.go b/lib/reporting/sarif.go
@@ -94,6 +94,7 @@ func getResults(report *Report) []Results {
 			props := Properties{
 				"validationStatus": secret.ValidationStatus,
 				"cvssScore":        secret.CvssScore,
+				"resultId":         secret.ID,
 			}
 
 			if secret.ExtraDetails != nil {

Original file line number	Diff line number	Diff line change
`@@ -136,6 +136,7 @@ var (`
`136`	`136`	`Properties: Properties{`
`137`	`137`	`"validationStatus": string(result1.ValidationStatus),`
`138`	`138`	`"cvssScore": result1.CvssScore,`
	`139`	`+ "resultId": result1.ID,`
`139`	`140`	`},`
`140`	`141`	`}`
`141`	`142`	`result2Sarif = Results{`
`@@ -167,6 +168,7 @@ var (`
`167`	`168`	`Properties: Properties{`
`168`	`169`	`"validationStatus": string(result2.ValidationStatus),`
`169`	`170`	`"cvssScore": result2.CvssScore,`
	`171`	`+ "resultId": result2.ID,`
`170`	`172`	`},`
`171`	`173`	`}`
`172`	`174`	`result3Sarif = Results{`
`@@ -198,6 +200,7 @@ var (`
`198`	`200`	`Properties: Properties{`
`199`	`201`	`"validationStatus": string(result3.ValidationStatus),`
`200`	`202`	`"cvssScore": result3.CvssScore,`
	`203`	`+ "resultId": result3.ID,`
`201`	`204`	`},`
`202`	`205`	`}`
`203`	`206`	`result4Sarif = Results{`
`@@ -230,6 +233,7 @@ var (`
`230`	`233`	`"validationStatus": string(result4.ValidationStatus),`
`231`	`234`	`"cvssScore": result4.CvssScore,`
`232`	`235`	`"confluence.pageId": result4.ExtraDetails["confluence.pageId"],`
	`236`	`+ "resultId": result4.ID,`
`233`	`237`	`},`
`234`	`238`	`}`
`235`	`239`	`)`
Original file line number	Diff line number	Diff line change
`@@ -94,6 +94,7 @@ func getResults(report *Report) []Results {`
`94`	`94`	`props := Properties{`
`95`	`95`	`"validationStatus": secret.ValidationStatus,`
`96`	`96`	`"cvssScore": secret.CvssScore,`
	`97`	`+ "resultId": secret.ID,`
`97`	`98`	`}`
`98`	`99`
`99`	`100`	`if secret.ExtraDetails != nil {`