Skip to content

Hotfix upload-sarif not uploading non-.sarif files#3160

Merged
mbg merged 2 commits intomainfrom
mbg/fix/upload-sarif
Sep 26, 2025
Merged

Hotfix upload-sarif not uploading non-.sarif files#3160
mbg merged 2 commits intomainfrom
mbg/fix/upload-sarif

Conversation

@mbg
Copy link
Member

@mbg mbg commented Sep 26, 2025

Slimmed down #3157

Risk assessment

For internal use only. Please select the risk level of this change:

  • Low risk: Changes are fully under feature flags, or have been fully tested and validated in pre-production environments and are highly observable, or are documentation or test only.

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Consider adding a changelog entry for this change.
  • Confirm the readme and docs have been updated if necessary.

@mbg mbg requested a review from henrymercer September 26, 2025 16:48
@mbg mbg self-assigned this Sep 26, 2025
@mbg mbg requested a review from a team as a code owner September 26, 2025 16:48
Copilot AI review requested due to automatic review settings September 26, 2025 16:48
Copilot AI reviewed Sep 26, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR fixes a bug where the upload-sarif action was not uploading non-.sarif files for CodeScanning analysis. The fix modifies the file filtering logic to allow CodeScanning analysis to upload files that don't match the default SARIF predicate.

  • Updates the conditional logic in findAndUpload to handle non-SARIF files for CodeScanning
  • Adds specific handling for CodeScanning analysis kind when the file doesn't match standard SARIF extensions

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File Description
src/upload-sarif-action.ts Updates TypeScript source to fix file filtering logic for CodeScanning analysis
lib/upload-sarif-action.js Contains the compiled JavaScript equivalent of the TypeScript changes

henrymercer
henrymercer previously approved these changes Sep 26, 2025
View reviewed changes
@henrymercer
Copy link
Contributor

henrymercer commented Sep 26, 2025

Add a changelog note?

@mbg mbg requested a review from henrymercer September 26, 2025 16:52
@mbg mbg enabled auto-merge September 26, 2025 16:53
@mbg mbg merged commit 0a67bd4 into main Sep 26, 2025
233 checks passed
@mbg mbg deleted the mbg/fix/upload-sarif branch September 26, 2025 17:06
@github-actions github-actions bot mentioned this pull request Sep 26, 2025
Merged
8 tasks
This was referenced Sep 29, 2025
Merged
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@henrymercer henrymercer henrymercer approved these changes

Assignees

@mbg mbg

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mbg @henrymercer