update format to use clean code

2024-04-02 18:26:27 +02:00 · 2024-04-02 18:26:27 +02:00 · 3d255dcfc5
commit 3d255dcfc5
parent 4da5ece94d
1 changed files with 30 additions and 17 deletions
--- a/index.js
+++ b/index.js
@ -25,40 +25,53 @@ async function readAudit() {
 const severities = {
-  info: 'INFO',
+  info: 'LOW',
-  low: 'MINOR',
+  low: 'LOW',
-  moderate: 'MINOR',
+  moderate: 'MEDIUM',
-  high: 'CRITICAL',
+  high: 'MEDIUM',
-  critical: 'BLOCKER',
+  critical: 'HIGH',
 };
 async function main() {
  const pnpmAudit = await readAudit()
  const rules = []
  const issues = []
  for (const advice of Object.values(pnpmAudit.advisories || [])) {
-    issues.push({
+    rules.push({
-      "engineId": "pnpm-audit",
+      id: `${advice.id}`,
-      "ruleId": advice.id,
+      name: advice.github_advisory_id || advice.npm_advisory_id || `rule_${advice.id}`,
-      "severity": severities[advice.severity],
+      description: `<h1>${advice.module_name} ${advice.vulnerable_versions}</h1>
-      "type": "VULNERABILITY",
+<h2>${advice.title || ''}</h2>
      "efforMinutes": 0,
      "primaryLocation": {
        "message": `${advice.module_name} ${advice.vulnerable_versions}
 ${advice.title || ''}
 Overview:
 <pre>
 ${advice.overview || ''}
 </pre>
 References:
 <pre>
 ${advice.references || ''}
 </pre>
 `,
-        "filePath": "pnpm-lock.yaml",
+      cleanCodeAttribute: "TRUSTWORTHY",
      engineId: "pnpm-audit",
      impacts: [{
        softwareQuality: "SECURITY",
        severity: severities[advice.severity],
      }]
    })
    issues.push({
      ruleId: `${advice.id}`,
      efforMinutes: 0,
      primaryLocation: {
        message: advice.title,
        filePath: "pnpm-lock.yaml",
      },
-      "secondaryLocations": []
+      secondaryLocations: []
    })
  }
-  console.log(JSON.stringify({ issues }, null, 2))
+  console.log(JSON.stringify({ rules, issues }, null, 2))
 }
 main()