jfrog-cli icon indicating copy to clipboard operation
jfrog-cli copied to clipboard
verified publisher icon jfrog

Missing JFrog Licenses in SARIF format

Open marcandre-larochelle opened this issue 1 year ago • 2 comments

Describe the bug

None of the JFrog licenses are included in the SARIF format.

Current behavior

None of the JFrog licenses are included in the SARIF format.

Reproduction steps

  1. Create 2 reports (1 JSON and 1 SARIF)
  2. jf audit --licenses --format json > foss_result.json
  3. jf audit --licenses --format sarif > foss_result.sarif
  4. Compare the outputs of the reports

Expected behavior

The SARIF format contains the same license information as the json output.

JFrog CLI version

2.52.9

Operating system type and version

Docker

JFrog Artifactory version

No response

JFrog Xray version

No response

marcandre-larochelle avatar Feb 27 '24 19:02 marcandre-larochelle

Related of: https://github.com/jfrog/jfrog-cli/issues/2063 (open since July 2023, issue present from at least version 2.42.1)

marcandre-larochelle avatar Feb 27 '24 19:02 marcandre-larochelle

Based on https://github.com/jfrog/jfrog-cli/issues/2270 it seems like https://github.com/jfrog/jfrog-cli/issues/2063 has been partially addressed, but nothing regarding licenses yet.

marcandre-larochelle avatar Feb 27 '24 19:02 marcandre-larochelle