Skip to content

Dump soon to be uploaded SARIF on request#3097

Merged
redsun82 merged 2 commits intomainfrom
redsun82/only-dump-sarif
Sep 10, 2025
Merged

Dump soon to be uploaded SARIF on request#3097
redsun82 merged 2 commits intomainfrom
redsun82/only-dump-sarif

Conversation

@redsun82
Copy link
Contributor

@redsun82 redsun82 commented Sep 10, 2025

This introduces a new internal environment variable flag (CODEQL_ACTION_SARIF_DUMP_DIR) that, when set to true, causes the SARIF file that will be uploaded to be dumped to the specified directory. The filename will be upload.sarif or upload.quality.sarif depending on the upload target.

Risk assessment

For internal use only. Please select the risk level of this change:

  • Low risk: Changes are fully under feature flags, or have been fully tested and validated in pre-production environments and are highly observable, or are documentation or test only.

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Consider adding a changelog entry for this change.
  • Confirm the readme and docs have been updated if necessary.

@redsun82
Dump soon to be uploaded SARIF on request
dae3742 
This introduces a new internal environment variable flag
(`CODEQL_ACTION_SARIF_DUMP_DIR`) that, when set to `true`, causes the
SARIF file that will be uploaded to be dumped to the specified
directory. The filename will be `upload.sarif` or `upload.quality.sarif`
depending on the upload target.
@redsun82 redsun82 requested a review from mbg September 10, 2025 05:48
@redsun82 redsun82 requested a review from a team as a code owner September 10, 2025 05:48
Copilot AI review requested due to automatic review settings September 10, 2025 05:48
Copilot AI reviewed Sep 10, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR introduces a new internal environment variable flag that enables dumping the processed SARIF file to a specified directory before upload for testing and debugging purposes.

  • Adds CODEQL_ACTION_SARIF_DUMP_DIR environment variable to control SARIF dumping
  • Implements dumpSarifFile function to write processed SARIF content to disk
  • Integrates SARIF dumping into the upload workflow with appropriate file naming

Reviewed Changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 1 comment.

File Description
src/environment.ts Adds new environment variable constant for SARIF dump directory
src/upload-lib.ts Implements SARIF dumping functionality and integrates it into upload process

@redsun82 redsun82 mentioned this pull request Sep 10, 2025
Closed
@redsun82 redsun82 merged commit eb50a88 into main Sep 10, 2025
290 checks passed
@redsun82 redsun82 deleted the redsun82/only-dump-sarif branch September 10, 2025 10:07
mbg
mbg reviewed Sep 10, 2025
View reviewed changes
Copy link
Member

@mbg mbg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems that I can't approve anymore now that the PR is merged, but consider this my approval on this PR as well :)

This was referenced Sep 10, 2025
Closed
Merged
@mbg mbg mentioned this pull request Oct 21, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mbg mbg mbg left review comments

Copilot code review Copilot Copilot left review comments

@esbena esbena esbena approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@redsun82 @mbg @esbena