✨ allow SARIF to be bound from multiple rule IDs (#421)

Author: ryandens

plugins/codemodder-plugin-appscan/src/main/java/io/codemodder/providers/sarif/appscan/AppScanModule.java

@@ -41,10 +41,22 @@ protected void configure() {
               .findFirst();
 
       annotation.ifPresent(
-          providedAppScanScan ->
-              bind(RuleSarif.class)
-                  .annotatedWith(providedAppScanScan)
-                  .toInstance(map.getOrDefault(providedAppScanScan.ruleId(), RuleSarif.EMPTY)));
+          providedAppScanScan -> {
+            RuleSarif sarif = null;
+            for (final var ruleId : providedAppScanScan.ruleIds()) {
+              final var value = map.get(ruleId);
+              if (value != null) {
+                sarif = value;
+                break;
+              }
+            }
+
+            if (sarif == null) {
+              sarif = RuleSarif.EMPTY;
+            }
+
+            bind(RuleSarif.class).annotatedWith(providedAppScanScan).toInstance(sarif);
+          });
     }
   }
 }

plugins/codemodder-plugin-appscan/src/main/java/io/codemodder/providers/sarif/appscan/ProvidedAppScanScan.java

@@ -13,6 +13,9 @@
 @Target(ElementType.PARAMETER)
 public @interface ProvidedAppScanScan {
 
-  /** The AppScan rule "id" field from the sarif. */
-  String ruleId();
+  /**
+   * The AppScan rule "id" field from the sarif. If multiple are provided, we look for the first ID
+   * in the SARIF before looking up alternative rule IDs
+   */
+  String[] ruleIds();
 }

plugins/codemodder-plugin-appscan/src/test/java/io/codemodder/providers/sarif/appscan/AppScanModuleTest.java

@@ -28,7 +28,7 @@ static class AppScanSarifTestCodemod implements CodeChanger {
     private final RuleSarif ruleSarif;
 
     @Inject
-    AppScanSarifTestCodemod(@ProvidedAppScanScan(ruleId = "SA2813462719") RuleSarif ruleSarif) {
+    AppScanSarifTestCodemod(@ProvidedAppScanScan(ruleIds = {"SA2813462719"}) RuleSarif ruleSarif) {
       this.ruleSarif = ruleSarif;
     }