update sarif to be lowercase

Signed-off-by: pxp928 <[email protected]>

Author: pxp928

kusari/cmd/repo_scan.go

@@ -20,7 +20,7 @@ var (
 func init() {
 	scancmd.Flags().StringVarP(&platformUrl, "platform-url", "", "https://platform.api.us.kusari.cloud/", "platform url")
 	scancmd.Flags().BoolVarP(&wait, "wait", "w", true, "wait for results")
-	scancmd.Flags().StringVarP(&outputFormat, "output-format", "", "markdown", "output format (markdown or SARIF)")
+	scancmd.Flags().StringVarP(&outputFormat, "output-format", "", "markdown", "output format (markdown or sarif)")
 
 	// Bind flags to viper
 	mustBindPFlag("platform-url", scancmd.Flags().Lookup("platform-url"))
@@ -33,8 +33,8 @@ func scan() *cobra.Command {
 		cmd.SilenceUsage = true
 
 		// Validate output format
-		if outputFormat != "markdown" && outputFormat != "SARIF" {
-			return fmt.Errorf("invalid output format: %s (must be 'markdown' or 'SARIF')", outputFormat)
+		if outputFormat != "markdown" && outputFormat != "sarif" {
+			return fmt.Errorf("invalid output format: %s (must be 'markdown' or 'sarif')", outputFormat)
 		}
 
 		dir := args[0]

pkg/repo/scanner.go

@@ -267,8 +267,8 @@ func queryForResult(platformUrl string, epoch *string, accessToken string, conso
 					s.Stop()
 
 					// Check output format
-					if outputFormat == "SARIF" {
-						// Output SARIF format
+					if outputFormat == "sarif" {
+						// Output sarif format
 						sarifOutput, err := sarif.ConvertToSARIF(results[0].Analysis.RawLLMAnalysis)
 						if err != nil {
 							return fmt.Errorf("failed to convert to SARIF: %w", err)

pkg/sarif/sarif.go

@@ -35,15 +35,15 @@ type SarifRule struct {
 	ShortDescription SarifMultiformatMessageString `json:"shortDescription,omitempty"`
 	FullDescription  SarifMultiformatMessageString `json:"fullDescription,omitempty"`
 	Help             SarifMultiformatMessageString `json:"help,omitempty"`
-	Properties       map[string]interface{}        `json:"properties,omitempty"`
+	Properties       map[string]any                `json:"properties,omitempty"`
 }
 
 type SarifResult struct {
-	RuleID     string                 `json:"ruleId"`
-	Level      string                 `json:"level,omitempty"` // "error", "warning", "note", "none"
-	Message    SarifMessage           `json:"message"`
-	Locations  []SarifLocation        `json:"locations,omitempty"`
-	Properties map[string]interface{} `json:"properties,omitempty"`
+	RuleID     string          `json:"ruleId"`
+	Level      string          `json:"level,omitempty"` // "error", "warning", "note", "none"
+	Message    SarifMessage    `json:"message"`
+	Locations  []SarifLocation `json:"locations,omitempty"`
+	Properties map[string]any  `json:"properties,omitempty"`
 }
 
 type SarifMessage struct {
@@ -178,7 +178,8 @@ func ConvertToSARIF(analysis *api.SecurityAnalysis) (string, error) {
 					},
 				},
 			},
-			Properties: map[string]interface{}{
+			Properties: map[string]any{
+				"type":        "code",
 				"line_number": mitigation.LineNumber,
 			},
 		}
@@ -193,7 +194,7 @@ func ConvertToSARIF(analysis *api.SecurityAnalysis) (string, error) {
 			Message: SarifMessage{
 				Text: mitigation.Content,
 			},
-			Properties: map[string]interface{}{
+			Properties: map[string]any{
 				"type": "dependency",
 			},
 		}
@@ -203,7 +204,7 @@ func ConvertToSARIF(analysis *api.SecurityAnalysis) (string, error) {
 	// Convert to JSON
 	jsonBytes, err := json.MarshalIndent(sarifLog, "", "  ")
 	if err != nil {
-		return "", fmt.Errorf("failed to marshal SARIF: %w", err)
+		return "", fmt.Errorf("failed to marshal sarif: %w", err)
 	}
 
 	return string(jsonBytes), nil