Skip to content

Commit

Permalink
feat: Render output as a markdown table for use in github comments (g…
Browse files Browse the repository at this point in the history
…oogle#156)

* - render output as markdown table (rebase)

* - Run gofmt -s on main.go

* Fix import

* Merge markdown and table logic into one function

---------

Co-authored-by: Rex Pan <[email protected]>
Co-authored-by: Rex P <[email protected]>
  • Loading branch information
3 people authored and julieqiu committed May 2, 2023
1 parent 1efe3ee commit b148067
Show file tree
Hide file tree
Showing 5 changed files with 58 additions and 10 deletions.
10 changes: 7 additions & 3 deletions cmd/osv-scanner/main.go
Original file line number Diff line number Diff line change
Expand Up @@ -63,11 +63,15 @@ func run(args []string, stdout, stderr io.Writer) int {
Usage: "sets the output format",
Value: "table",
Action: func(context *cli.Context, s string) error {
if s != "table" && s != "json" {
return fmt.Errorf("unsupported output format \"%s\" - must be either \"table\" or \"json\"", s)
switch s {
case
"table",
"json",
"markdown":
return nil
}

return nil
return fmt.Errorf("unsupported output format \"%s\" - must be one of: \"table\", \"json\", \"markdown\"", s)
},
},
&cli.BoolFlag{
Expand Down
11 changes: 11 additions & 0 deletions cmd/osv-scanner/main_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -222,6 +222,17 @@ func TestRun(t *testing.T) {
Scanned %%/fixtures/locks-many/composer.lock file and found 1 packages
`,
},
// output format: markdown table
{
name: "",
args: []string{"", "--format", "markdown", "./fixtures/locks-many/composer.lock"},
wantExitCode: 0,
wantStdout: `
Scanning dir ./fixtures/locks-many/composer.lock
Scanned %%/fixtures/locks-many/composer.lock file and found 1 packages
`,
wantStderr: "",
},
}
for _, tt := range tests {
tt := tt
Expand Down
23 changes: 23 additions & 0 deletions internal/output/markdowntable.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
package output

import (
"io"

"github.com/google/osv-scanner/pkg/models"

"github.com/jedib0t/go-pretty/v6/table"
)

// PrintTableResults prints the osv scan results into a human friendly table.
func PrintMarkdownTableResults(vulnResult *models.VulnerabilityResults, outputWriter io.Writer) {
outputTable := table.NewWriter()
outputTable.SetOutputMirror(outputWriter)
outputTable.AppendHeader(table.Row{"OSV URL", "Ecosystem", "Package", "Version", "Source"})

outputTable = tableBuilder(outputTable, vulnResult, false)

if outputTable.Length() == 0 {
return
}
outputTable.RenderMarkdown()
}
2 changes: 2 additions & 0 deletions internal/output/reporter.go
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,8 @@ func (r *Reporter) PrintResult(vulnResult *models.VulnerabilityResults) error {
switch r.format {
case "json":
return PrintJSONResults(vulnResult, r.stdout)
case "markdown":
PrintMarkdownTableResults(vulnResult, r.stdout)
case "table":
PrintTableResults(vulnResult, r.stdout)
}
Expand Down
22 changes: 15 additions & 7 deletions internal/output/table.go
Original file line number Diff line number Diff line change
Expand Up @@ -31,25 +31,36 @@ func PrintTableResults(vulnResult *models.VulnerabilityResults, outputWriter io.
isTerminal = true
} // Otherwise use default ascii (e.g. getting piped to a file)

outputTable = tableBuilder(outputTable, vulnResult, isTerminal)

if outputTable.Length() == 0 {
return
}
outputTable.Render()
}

func tableBuilder(outputTable table.Writer, vulnResult *models.VulnerabilityResults, addStyling bool) table.Writer {
// Working directory used to simplify path
workingDir, workingDirErr := os.Getwd()
for _, sourceRes := range vulnResult.Results {
for _, pkg := range sourceRes.Packages {
workingDir, err := os.Getwd()
source := sourceRes.Source
if err == nil {
if workingDirErr == nil {
sourcePath, err := filepath.Rel(workingDir, source.Path)
if err == nil { // Simplify the path if possible
source.Path = sourcePath
}
}

// Merge groups into the same row
for _, group := range pkg.Groups {
outputRow := table.Row{}
shouldMerge := false

var links []string

for _, vuln := range group.IDs {
if isTerminal {
if addStyling {
links = append(links, osv.BaseVulnerabilityURL+text.Bold.EscapeSeq()+vuln+text.Reset.EscapeSeq())
} else {
links = append(links, osv.BaseVulnerabilityURL+vuln)
Expand All @@ -71,8 +82,5 @@ func PrintTableResults(vulnResult *models.VulnerabilityResults, outputWriter io.
}
}

if outputTable.Length() == 0 {
return
}
outputTable.Render()
return outputTable
}

0 comments on commit b148067

Please sign in to comment.