Example 1 with ToolComponentReference
use of com.mercedesbenz.sechub.sarif.model.ToolComponentReference in project sechub by mercedes-benz.
the class SarifV1JSONImporter method resolveTargetInformation.
private void resolveTargetInformation(Rule rule, ResultData data, Run run) {
List<ReportingDescriptorRelationship> relationShips = rule.getRelationships();
for (ReportingDescriptorRelationship relationShip : relationShips) {
ReportingDescriptorReference target = relationShip.getTarget();
if (target == null) {
continue;
}
String id = target.getId();
if (id == null) {
continue;
}
ToolComponentReference toolComponent = target.getToolComponent();
if (toolComponent == null) {
continue;
}
String toolComponentName = toolComponent.getName();
if (toolComponentName == null) {
continue;
}
if (CWE.equalsIgnoreCase(toolComponentName)) {
/* CWE found, so lets look after the id */
data.cweId = id;
}
}
}
Also used :
ToolComponentReference(com.mercedesbenz.sechub.sarif.model.ToolComponentReference)
ReportingDescriptorRelationship(com.mercedesbenz.sechub.sarif.model.ReportingDescriptorRelationship)
ReportingDescriptorReference(com.mercedesbenz.sechub.sarif.model.ReportingDescriptorReference)
Aggregations
ReportingDescriptorReference (com.mercedesbenz.sechub.sarif.model.ReportingDescriptorReference)1
ReportingDescriptorRelationship (com.mercedesbenz.sechub.sarif.model.ReportingDescriptorRelationship)1
ToolComponentReference (com.mercedesbenz.sechub.sarif.model.ToolComponentReference)1
