Hi there,
After a bit of investigation, I think there's a regression in the latest 2.1.0 version (at least, assuming that GitHub's sarif submission function is correct!)
It's been failing my scheduled GitHub actions since July 12, 05:13 - which was my next run after the latest release dropped on July 11. I automatically pick up the latest version, so I started seeing the problem over the weekend and picked it up today.
Prior runs uploaded fine, now I now see this error:
Unable to upload "osv_scan_results.sarif" as it is not valid SARIF:
- instance.runs[0].tool.driver.rules[0].shortDescription requires property "text"
- instance.runs[0].tool.driver.rules[0].fullDescription requires property "text"
- instance.runs[0].tool.driver.rules[1].shortDescription requires property "text"
...
If I'm reading everything right. "text" looks like a required field for these properties in the current SARIF spec which would make this an osv-scanner issue?
Hi there,
After a bit of investigation, I think there's a regression in the latest 2.1.0 version (at least, assuming that GitHub's sarif submission function is correct!)
It's been failing my scheduled GitHub actions since July 12, 05:13 - which was my next run after the latest release dropped on July 11. I automatically pick up the latest version, so I started seeing the problem over the weekend and picked it up today.
Prior runs uploaded fine, now I now see this error:
If I'm reading everything right. "text" looks like a required field for these properties in the current SARIF spec which would make this an osv-scanner issue?