SecureCodeWarrior
diff --git a/‎dist/index.js‎
Lines changed: 22 additions & 27 deletions b/‎dist/index.js‎
Lines changed: 22 additions & 27 deletions
diff --git a/‎dist/index.js.map‎
Lines changed: 1 addition & 1 deletion b/‎dist/index.js.map‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎fixtures/test003.sarif‎
Lines changed: 2 additions & 2 deletions b/‎fixtures/test003.sarif‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎fixtures/test004.sarif‎
Lines changed: 2 additions & 2 deletions b/‎fixtures/test004.sarif‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎fixtures/test005.sarif‎
Lines changed: 2 additions & 2 deletions b/‎fixtures/test005.sarif‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎index.js‎
Lines changed: 4 additions & 8 deletions b/‎index.js‎
Lines changed: 4 additions & 8 deletions
diff --git a/‎package-lock.json‎
Lines changed: 28 additions & 47 deletions b/‎package-lock.json‎
Lines changed: 28 additions & 47 deletions
diff --git a/‎package.json‎
Lines changed: 2 additions & 2 deletions b/‎package.json‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎sarifProcessors/resultProcessor.js‎
Lines changed: 13 additions & 1 deletion b/‎sarifProcessors/resultProcessor.js‎
Lines changed: 13 additions & 1 deletion
diff --git a/‎sarifProcessors/resultProcessor.test.js‎
Lines changed: 4 additions & 2 deletions b/‎sarifProcessors/resultProcessor.test.js‎
Lines changed: 4 additions & 2 deletions
@@ -31,7 +31,7 @@
       },
       "results": [
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "error",
           "message": {
             "text": "Result text. This result does not have a rule associated."
@@ -55,7 +55,7 @@
           }
         },
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "note",
           "message": {
             "text": "more different text."
 
@@ -39,7 +39,7 @@
       },
       "results": [
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "error",
           "message": {
             "text": "Result text. This result does not have a rule associated."
@@ -63,7 +63,7 @@
           }
         },
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "note",
           "message": {
             "text": "more different text."
 
@@ -39,7 +39,7 @@
       },
       "results": [
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "error",
           "message": {
             "text": "Result text. This result does not have a rule associated."
@@ -63,7 +63,7 @@
           }
         },
         {
-          "ruleId": "TEST01",
+          "ruleId": "TEST01 CWE-22",
           "level": "note",
           "message": {
             "text": "more different text."
 
@@ -8,7 +8,6 @@ const languageResolver = require('./languageResolver');
 const sarifLoader = require('./sarifLoader');
 const resultProcessor = require('./sarifProcessors/resultProcessor');
 const ruleProcessor = require('./sarifProcessors/ruleProcessor');
-const taxonomyProcessor = require('./sarifProcessors/taxonomyProcessor');
 
 const OUTPUT_DIR = 'processed-sarifs';
 
@@ -48,14 +47,11 @@ async function run() {
             // process each run
             if (sarif && sarif.runs) {
                 for (const run of sarif.runs) {
-                    // process run for rules
-                    await ruleProcessor.process(run, languageKey);
-
-                    // process run for taxonomies
-                    await taxonomyProcessor.process(run, languageKey);
-
                     // process run for results
-                    await resultProcessor.process(run, languageKey);
+                    const triggeredRules = await resultProcessor.process(run, languageKey);
+                    
+                    // process run for rules
+                    await ruleProcessor.process(run, languageKey, triggeredRules);
                 }
             }
 
 
@@ -1,6 +1,6 @@
 {
   "name": "github-action-add-sarif-contextual-training",
-  "version": "1.0.4",
+  "version": "1.0.6",
   "description": "GitHub Action for adding contextual training material to SARIF files",
   "main": "index.js",
   "scripts": {
@@ -36,7 +36,7 @@
   },
   "devDependencies": {
     "@vercel/ncc": "^0.25.1",
-    "eslint": "^7.13.0",
+    "eslint": "^7.15.0",
     "jest": "^26.6.3"
   }
 }
@@ -1,7 +1,19 @@
 "use strict";
 
 async function process(run) {
-    return run;
+    const ruleMap = new Map();
+
+    if (run && run.results) {
+        for (const result of run.results) {
+            const ruleId = result.ruleId;
+            const seen = ruleMap.get(ruleId);
+            if (seen === undefined) {
+                ruleMap.set(ruleId, true);
+            }
+        }
+    }
+
+    return ruleMap;
 }
 
 module.exports = {
 
@@ -6,7 +6,9 @@ const sarifLoader = require('../sarifLoader');
 test('resultProcessor should load test001 and add contextual micro-learning material', async () => {
   const sarifs = await sarifLoader.load('./fixtures/test001.sarif');
   for (const sarif of sarifs) {
-    const processed = await resultProcessor.process(sarif.runs[0]);
-    expect(processed.tool.driver.name).toEqual('Tool Name 3');
+    const ruleMap = await resultProcessor.process(sarif.runs[0]);
+    expect(ruleMap.has('TEST01')).toEqual(true);
+    expect(ruleMap.get('TEST01')).toEqual(true);
+    expect(ruleMap.get('TEST02')).toEqual(undefined);
   }
 });
Original file line number	Diff line number	Diff line change
`@@ -31,7 +31,7 @@`
`31`	`31`	`},`
`32`	`32`	`"results": [`
`33`	`33`	`{`
`34`		`- "ruleId": "TEST01",`
	`34`	`+ "ruleId": "TEST01 CWE-22",`
`35`	`35`	`"level": "error",`
`36`	`36`	`"message": {`
`37`	`37`	`"text": "Result text. This result does not have a rule associated."`
`@@ -55,7 +55,7 @@`
`55`	`55`	`}`
`56`	`56`	`},`
`57`	`57`	`{`
`58`		`- "ruleId": "TEST01",`
	`58`	`+ "ruleId": "TEST01 CWE-22",`
`59`	`59`	`"level": "note",`
`60`	`60`	`"message": {`
`61`	`61`	`"text": "more different text."`
Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,7 @@`
`39`	`39`	`},`
`40`	`40`	`"results": [`
`41`	`41`	`{`
`42`		`- "ruleId": "TEST01",`
	`42`	`+ "ruleId": "TEST01 CWE-22",`
`43`	`43`	`"level": "error",`
`44`	`44`	`"message": {`
`45`	`45`	`"text": "Result text. This result does not have a rule associated."`
`@@ -63,7 +63,7 @@`
`63`	`63`	`}`
`64`	`64`	`},`
`65`	`65`	`{`
`66`		`- "ruleId": "TEST01",`
	`66`	`+ "ruleId": "TEST01 CWE-22",`
`67`	`67`	`"level": "note",`
`68`	`68`	`"message": {`
`69`	`69`	`"text": "more different text."`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "github-action-add-sarif-contextual-training",`
`3`		`- "version": "1.0.4",`
	`3`	`+ "version": "1.0.6",`
`4`	`4`	`"description": "GitHub Action for adding contextual training material to SARIF files",`
`5`	`5`	`"main": "index.js",`
`6`	`6`	`"scripts": {`
`@@ -36,7 +36,7 @@`
`36`	`36`	`},`
`37`	`37`	`"devDependencies": {`
`38`	`38`	`"@vercel/ncc": "^0.25.1",`
`39`		`- "eslint": "^7.13.0",`
	`39`	`+ "eslint": "^7.15.0",`
`40`	`40`	`"jest": "^26.6.3"`
`41`	`41`	`}`
`42`	`42`	`}`