more static

attiasas · attiasas · commit 04bc87225509 · 2025-11-10T14:31:29.000+02:00
diff --git a/commands/audit/audit.go b/commands/audit/audit.go
@@ -155,7 +155,7 @@ func CreateAuditResultsContext(serverDetails *config.ServerDetails, xrayVersion
 
 // If the user requested to include vulnerabilities, or if the user didn't provide any watches, project key, artifactory repo path or git repo key, we should include vulnerabilities.
 func shouldIncludeVulnerabilities(includeVulnerabilities bool, watches []string, artifactoryRepoPath, projectKey, gitRepoHttpsCloneUrl string) bool {
-	return includeVulnerabilities || len(watches) <= 0 && projectKey == "" && artifactoryRepoPath == "" && gitRepoHttpsCloneUrl == ""
+	return includeVulnerabilities || len(watches) == 0 && projectKey == "" && artifactoryRepoPath == "" && gitRepoHttpsCloneUrl == ""
 }
 
 func (auditCmd *AuditCommand) Run() (err error) {
diff --git a/commands/audit/audit_test.go b/commands/audit/audit_test.go
@@ -753,7 +753,7 @@ func TestAuditWithPartialResults(t *testing.T) {
 		t.Run(testcase.name, func(t *testing.T) {
 			serverMock, serverDetails := validations.CreateXrayRestsMockServer(func(w http.ResponseWriter, r *http.Request) {
 				if r.RequestURI == "/xray/api/v1/system/version" {
-					_, err := w.Write([]byte(fmt.Sprintf(`{"xray_version": "%s", "xray_revision": "xxx"}`, utils.EntitlementsMinVersion)))
+					_, err := fmt.Fprintf(w, `{"version":"%s", "xray_revision": "xxx"}`, utils.EntitlementsMinVersion)
 					if !assert.NoError(t, err) {
 						return
 					}
diff --git a/commands/audit/auditparams.go b/commands/audit/auditparams.go
@@ -199,7 +199,7 @@ func (params *AuditParams) createXrayGraphScanParams() *services.XrayGraphScanPa
 }
 
 func (params *AuditParams) ToBuildInfoBomGenParams() (bomParams technologies.BuildInfoBomGeneratorParams, err error) {
-	serverDetails, err := params.AuditBasicParams.ServerDetails()
+	serverDetails, err := params.ServerDetails()
 	if err != nil {
 		return
 	}
diff --git a/sca/bom/buildinfo/technologies/gem/gem.go b/sca/bom/buildinfo/technologies/gem/gem.go
@@ -2,6 +2,7 @@ package gem
 
 import (
 	"bufio"
+	"errors"
 	"fmt"
 	"os"
 	"os/exec"
@@ -195,7 +196,11 @@ func parseLockfileToInternalData(lockFilePath string) (
 	if ioErr != nil {
 		return nil, nil, fmt.Errorf("opening lockfile %s: %w", lockFilePath, ioErr)
 	}
-	defer file.Close()
+	defer func() {
+		if cerr := file.Close(); cerr != nil {
+			err = errors.Join(err, fmt.Errorf("closing lockfile %s: %w", lockFilePath, cerr))
+		}
+	}()
 
 	scanner := bufio.NewScanner(file)
 
diff --git a/tests/validations/test_mocks.go b/tests/validations/test_mocks.go
@@ -174,7 +174,7 @@ func XrayServer(t *testing.T, params MockServerParams) (*httptest.Server, *confi
 			if r.Method == http.MethodPost {
 				apiCallCounts[GraphScanPostAPI]++
 				w.WriteHeader(http.StatusCreated)
-				_, err := w.Write([]byte(fmt.Sprintf(`{"scan_id" : "%s"}`, TestScaScanId)))
+				_, err := fmt.Fprintf(w, `{"scan_id" : "%s"}`, TestScaScanId)
 				if !assert.NoError(t, err) {
 					return
 				}
diff --git a/utils/results/common.go b/utils/results/common.go
@@ -728,7 +728,7 @@ func GetCveApplicabilityFieldAndFilterDisqualify(cveId string, applicabilityScan
 	// Filter out evidences that are disqualified
 	filteredEvidence := make([]formats.Evidence, 0, len(applicability.Evidence))
 	for _, evidence := range applicability.Evidence {
-		fileName := evidence.Location.File
+		fileName := evidence.File
 		if fileName == "" || !shouldDisqualifyEvidence(components, filepath.Clean(fileName)) {
 			// If the file name is empty, we cannot determine if it should be disqualified
 			// If the evidence is not disqualified, keep it
diff --git a/utils/results/conversion/simplejsonparser/simplejsonparser.go b/utils/results/conversion/simplejsonparser/simplejsonparser.go
@@ -831,6 +831,6 @@ func sortSourceCodeRow(rows []formats.SourceCodeRow) {
 		if rows[i].Applicability != nil && rows[j].Applicability != nil {
 			return jasutils.TokenValidationOrder[rows[i].Applicability.Status] < jasutils.TokenValidationOrder[rows[j].Applicability.Status]
 		}
-		return rows[i].Location.File > rows[j].Location.File
+		return rows[i].File > rows[j].File
 	})
 }
diff --git a/utils/results/conversion/summaryparser/summaryparser.go b/utils/results/conversion/summaryparser/summaryparser.go
@@ -133,7 +133,7 @@ func (sc *CmdResultsSummaryConverter) getScaSecurityViolationHandler(parsed *dat
 			}
 			parsed.Add(key)
 			// Count the violation
-			scaSecurityHandler(sc.currentScan.Violations.ScanResultSummary.ScaResults, severity, applicabilityStatus)
+			scaSecurityHandler(sc.currentScan.Violations.ScaResults, severity, applicabilityStatus)
 		}
 		return
 	}

Original file line number	Diff line number	Diff line change
`@@ -155,7 +155,7 @@ func CreateAuditResultsContext(serverDetails *config.ServerDetails, xrayVersion`
`155`	`155`
`156`	`156`	`// If the user requested to include vulnerabilities, or if the user didn't provide any watches, project key, artifactory repo path or git repo key, we should include vulnerabilities.`
`157`	`157`	`func shouldIncludeVulnerabilities(includeVulnerabilities bool, watches []string, artifactoryRepoPath, projectKey, gitRepoHttpsCloneUrl string) bool {`
`158`		`- return includeVulnerabilities \|\| len(watches) <= 0 && projectKey == "" && artifactoryRepoPath == "" && gitRepoHttpsCloneUrl == ""`
	`158`	`+ return includeVulnerabilities \|\| len(watches) == 0 && projectKey == "" && artifactoryRepoPath == "" && gitRepoHttpsCloneUrl == ""`
`159`	`159`	`}`
`160`	`160`
`161`	`161`	`func (auditCmd *AuditCommand) Run() (err error) {`
Original file line number	Diff line number	Diff line change
`@@ -753,7 +753,7 @@ func TestAuditWithPartialResults(t *testing.T) {`
`753`	`753`	`t.Run(testcase.name, func(t *testing.T) {`
`754`	`754`	`serverMock, serverDetails := validations.CreateXrayRestsMockServer(func(w http.ResponseWriter, r *http.Request) {`
`755`	`755`	`if r.RequestURI == "/xray/api/v1/system/version" {`
`756`		- _, err := w.Write([]byte(fmt.Sprintf(`{"xray_version": "%s", "xray_revision": "xxx"}`, utils.EntitlementsMinVersion)))
	`756`	+ _, err := fmt.Fprintf(w, `{"version":"%s", "xray_revision": "xxx"}`, utils.EntitlementsMinVersion)
`757`	`757`	`if !assert.NoError(t, err) {`
`758`	`758`	`return`
`759`	`759`	`}`
Original file line number	Diff line number	Diff line change
`@@ -199,7 +199,7 @@ func (params AuditParams) createXrayGraphScanParams() services.XrayGraphScanPa`
`199`	`199`	`}`
`200`	`200`
`201`	`201`	`func (params *AuditParams) ToBuildInfoBomGenParams() (bomParams technologies.BuildInfoBomGeneratorParams, err error) {`
`202`		`- serverDetails, err := params.AuditBasicParams.ServerDetails()`
	`202`	`+ serverDetails, err := params.ServerDetails()`
`203`	`203`	`if err != nil {`
`204`	`204`	`return`
`205`	`205`	`}`
Original file line number	Diff line number	Diff line change
`@@ -174,7 +174,7 @@ func XrayServer(t testing.T, params MockServerParams) (httptest.Server, *confi`
`174`	`174`	`if r.Method == http.MethodPost {`
`175`	`175`	`apiCallCounts[GraphScanPostAPI]++`
`176`	`176`	`w.WriteHeader(http.StatusCreated)`
`177`		- _, err := w.Write([]byte(fmt.Sprintf(`{"scan_id" : "%s"}`, TestScaScanId)))
	`177`	+ _, err := fmt.Fprintf(w, `{"scan_id" : "%s"}`, TestScaScanId)
`178`	`178`	`if !assert.NoError(t, err) {`
`179`	`179`	`return`
`180`	`180`	`}`
Original file line number	Diff line number	Diff line change
`@@ -831,6 +831,6 @@ func sortSourceCodeRow(rows []formats.SourceCodeRow) {`
`831`	`831`	`if rows[i].Applicability != nil && rows[j].Applicability != nil {`
`832`	`832`	`return jasutils.TokenValidationOrder[rows[i].Applicability.Status] < jasutils.TokenValidationOrder[rows[j].Applicability.Status]`
`833`	`833`	`}`
`834`		`- return rows[i].Location.File > rows[j].Location.File`
	`834`	`+ return rows[i].File > rows[j].File`
`835`	`835`	`})`
`836`	`836`	`}`
Original file line number	Diff line number	Diff line change
`@@ -133,7 +133,7 @@ func (sc CmdResultsSummaryConverter) getScaSecurityViolationHandler(parsed dat`
`133`	`133`	`}`
`134`	`134`	`parsed.Add(key)`
`135`	`135`	`// Count the violation`
`136`		`- scaSecurityHandler(sc.currentScan.Violations.ScanResultSummary.ScaResults, severity, applicabilityStatus)`
	`136`	`+ scaSecurityHandler(sc.currentScan.Violations.ScaResults, severity, applicabilityStatus)`
`137`	`137`	`}`
`138`	`138`	`return`
`139`	`139`	`}`