Commit48c15c7

authored

fix: use discriminator to determine problem type (#480)

1 parentbc81011 commit48c15c7Copy full SHA for 48c15c7

File tree

2 files changed

+21

-21

lines changed

pkg/apiclients/testapi
- issues.go
- issues_internal_test.go

2 files changed

+21

-21

lines changed

`‎pkg/apiclients/testapi/issues.go‎`

Lines changed: 13 additions & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -242,7 +242,12 @@ func (g idBasedIssueGrouper) extractProblemID(finding FindingData) string {`
`242`	`242`	`}`
`243`	`243`
`244`	`244`	`// Check for Snyk ID pattern (case-insensitive, without allocations)`
`245`		`-ifisSnykID(id) {`
	`245`	`+discriminator,err:=problem.Discriminator()`
	`246`	`+iferr!=nil {`
	`247`	`+continue`
	`248`	`+}`
	`249`	`+`
	`250`	`+ifstartsWithSnyk(discriminator) {`
`246`	`251`	`returnid`
`247`	`252`	`}`
`248`	`253`
`@@ -255,17 +260,18 @@ func (g idBasedIssueGrouper) extractProblemID(finding FindingData) string {`
`255`	`260`	`returnfallbackID`
`256`	`261`	`}`
`257`	`262`
`258`		`-//isSnykID checks if an ID starts with "snyk" (case-insensitive)`
`259`		`-funcisSnykID(idstring)bool {`
`260`		`-iflen(id)<4 {`
	`263`	`+//startsWithSnyk checks if an ID starts with "snyk" (case-insensitive)`
	`264`	`+funcstartsWithSnyk(idstring)bool {`
	`265`	`+iflen(id)<5 {`
`261`	`266`	`returnfalse`
`262`	`267`	`}`
`263`	`268`
`264`	`269`	`// Manual case-insensitive check to avoid string allocation`
`265`	`270`	`return (id[0]=='s'\|\|id[0]=='S')&&`
`266`	`271`	`(id[1]=='n'\|\|id[1]=='N')&&`
`267`	`272`	`(id[2]=='y'\|\|id[2]=='Y')&&`
`268`		`-(id[3]=='k'\|\|id[3]=='K')`
	`273`	`+(id[3]=='k'\|\|id[3]=='K')&&`
	`274`	`+(id[4]=='_')`
`269`	`275`	`}`
`270`	`276`
`271`	`277`	`func (gidBasedIssueGrouper)getUniqueKey(findingFindingData)string {`
`@@ -628,7 +634,7 @@ func (b issueBuilder) processProblems(finding FindingData) {`
`628`	`634`	`}`
`629`	`635`
`630`	`636`	`// Fallback to first problem if no snyk_vuln or snyk_license found`
`631`		`-ifb.primaryProblem==nil&&discriminator!="cve"&&discriminator!="cwe" {`
	`637`	`+ifb.primaryProblem==nil&&startsWithSnyk(discriminator) {`
`632`	`638`	`b.primaryProblem=&problem`
`633`	`639`	`}`
`634`	`640`	`}`
`@@ -657,7 +663,7 @@ func (b issueBuilder) processSnykVulnProblem(problem Problem) {`
`657`	`663`	`b.severity=string(vulnProblem.Severity)`
`658`	`664`	`}`
`659`	`665`	`ifb.cvssScore==0.0 {`
`660`		`-b.cvssScore=float32(vulnProblem.CvssBaseScore)`
	`666`	`+b.cvssScore=vulnProblem.CvssBaseScore`
`661`	`667`	`}`
`662`	`668`	`if!b.isFixable {`
`663`	`669`	`b.isFixable=vulnProblem.IsFixable`

`‎pkg/apiclients/testapi/issues_internal_test.go‎`

Lines changed: 8 additions & 14 deletions

Original file line number	Diff line number	Diff line change
`@@ -10,21 +10,15 @@ import (`
`10`	`10`	`"github.com/stretchr/testify/require"`
`11`	`11`	`)`
`12`	`12`
`13`		`-funcTestIsSnykID(t*testing.T) {`
	`13`	`+funcTestStartsWithSnyk(t*testing.T) {`
`14`	`14`	`tests:= []struct {`
`15`	`15`	`namestring`
`16`	`16`	`idstring`
`17`	`17`	`expectedbool`
`18`	`18`	`}{`
`19`	`19`	`// Valid Snyk IDs`
`20`		`-{"uppercase with hyphen","SNYK-JS-LODASH-590103",true},`
`21`		`-{"lowercase with hyphen","snyk-js-lodash-590103",true},`
`22`		`-{"mixed case with hyphen","Snyk-JS-LODASH-590103",true},`
`23`		`-{"uppercase with colon","SNYK:LIC:NPM:PACKAGE:MPL-2.0",true},`
`24`		`-{"lowercase with colon","snyk:lic:npm:shescape:MPL-2.0",true},`
`25`		`-{"mixed case with colon","Snyk:lic:npm:package:MIT",true},`
`26`		`-{"just snyk","snyk",true},`
`27`		`-{"snyk with no delimiter","snyktest",true},`
	`20`	`+{"vuln","snyk_vuln",true},`
	`21`	`+{"license","snyk_license",true},`
`28`	`22`
`29`	`23`	`// Invalid/non-Snyk IDs`
`30`	`24`	`{"CVE","CVE-2021-1234",false},`
`@@ -38,16 +32,16 @@ func TestIsSnykID(t *testing.T) {`
`38`	`32`
`39`	`33`	`for_,tt:=rangetests {`
`40`	`34`	`t.Run(tt.name,func(t*testing.T) {`
`41`		`-result:=isSnykID(tt.id)`
`42`		`-assert.Equal(t,tt.expected,result,"isSnykID(%q) = %v, want %v",tt.id,result,tt.expected)`
	`35`	`+result:=startsWithSnyk(tt.id)`
	`36`	`+assert.Equal(t,tt.expected,result,"startsWithSnyk(%q) = %v, want %v",tt.id,result,tt.expected)`
`43`	`37`	`})`
`44`	`38`	`}`
`45`	`39`	`}`
`46`	`40`
`47`	`41`	`funcTestIdBasedIssueGrouper_ExtractProblemID(t*testing.T) {`
`48`	`42`	`grouper:=&idBasedIssueGrouper{}`
`49`	`43`
`50`		`-t.Run("prefersSNYK- ID over CVE",func(t*testing.T) {`
	`44`	`+t.Run("prefersSNYK_ ID over CVE",func(t*testing.T) {`
`51`	`45`	`finding:=&FindingData{`
`52`	`46`	`Attributes:&FindingAttributes{`
`53`	`47`	`FindingType:FindingTypeSca,`
`@@ -115,13 +109,13 @@ func TestIdBasedIssueGrouper_ExtractProblemID(t *testing.T) {`
`115`	`109`	`FindingType:FindingTypeSca,`
`116`	`110`	`Problems: []Problem{`
`117`	`111`	`createProblem(t,"CVE-2021-1234","cve"),`
`118`		`-createProblem(t,"Snyk-JS-LODASH-590103","snyk_vuln"),`
	`112`	`+createProblem(t,"SNYK-JS-LODASH-590103","snyk_vuln"),`
`119`	`113`	`},`
`120`	`114`	`},`
`121`	`115`	`}`
`122`	`116`
`123`	`117`	`id:=grouper.extractProblemID(finding)`
`124`		`-assert.Equal(t,"Snyk-JS-LODASH-590103",id)`
	`118`	`+assert.Equal(t,"SNYK-JS-LODASH-590103",id)`
`125`	`119`	`})`
`126`	`120`
`127`	`121`	`t.Run("returns empty string when no problems",func(t*testing.T) {`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit48c15c7

File tree

2 files changed

2 files changed

`‎pkg/apiclients/testapi/issues.go‎`

`‎pkg/apiclients/testapi/issues_internal_test.go‎`

0 commit comments