Giters

secretlint / secretlint

Pluggable linting tool to prevent committing credential.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Install a package that handles sarif with Docker images

k-hal opened this issue · comments

commented

Summary

Allow Docker images to handle sarif format.

Motivation

When using docker with github actions, use sarif to make code scanning easier to use.

commented

It is hard to extends existing docker image.
So, I agree that install sarif formatter as built-in docker image.

Probably, we can resolve this issue by adding @secretlint/secretlint-formatter-sarif into here

secretlint/publish/docker/Dockerfile

Line 11 in 032b311

RUN npm install -g secretlint@${SECRETLINT_VERSION} @secretlint/secretlint-rule-preset-recommend@${SECRETLINT_VERSION} && \