oasis-tcs/sarif-spec

Issues

• Ambiguous interpretation of square brackets in plaintext messages with embedded links (3.11.6)?

  #658 opened 3 months ago by davidmalcolm
  1

• SARIF artifact signing

  #607 opened a year ago by Motional-Charles-Wilson
  1

• Proposal: change underlying name of SARIF from Static ... to Systematic ...

  #603 opened a year ago by Motional-Charles-Wilson
  4

• No method is given for escaping link syntax in plain-text messages

  #597 opened a year ago by greedy
  2

• Is any escaping of URIs within "3.11.6 Messages with embedded links" needed?

  #657 opened 3 months ago by davidmalcolm
  2

• "Semantic" markup in SARIF messages

  #662 opened 2 months ago by davidmalcolm
  2

• "Progressive" or "dynamic" SARIF

  #661 opened 2 months ago by davidmalcolm
  1

• How to Convert Json value into Sarif format

  #660 opened 3 months ago by mohdrashid1
  1

• Clarify use (or extend design) of SARIF to express hierarchical diagnostics.

  #572 opened 2 years ago by michaelcfanning
  20

• Suspected typo in EXAMPLE 1 of "3.11.6 Messages with embedded links"

  #656 opened 3 months ago by davidmalcolm
  1

• artifact.sourceLanguage property (§3.24.10) for SARIF itself

  #654 opened 4 months ago by davidmalcolm
  0

• RFE: support for capturing chains of macro expansions?

  #650 opened 4 months ago by davidmalcolm
  2

• Clarification about ids of location objects below a *notification*

  #651 opened 4 months ago by davidmalcolm
  2

• 3.24.6 roles property has two "NOTE 3"s

  #634 opened 4 months ago by davidmalcolm
  1

• Consider r-using the "relevant to understanding the result" wording also in notifications/relatedLocation

  #649 opened 4 months ago by sthagen
  0

• Provide prose explaining the use of `guid`s across all occurrences

  #648 opened 4 months ago by sthagen
  0

• sarif 2.1.0 schema url in Schemata stopped working

  #646 opened 4 months ago by jsoref
  2

• Reset and Simplify the Revision History

  #637 opened 5 months ago by sthagen
  4

• Sourcemaps or #line directives

  #618 opened a year ago by ratmice
  5

• "3.11.6 Messages with embedded links" example mistake

  #619 opened a year ago by Marcono1234
  0

• Enhance `artifactContent` object with optional `context` property to accompany `text` property

  #630 opened 8 months ago by 247arjun
  1

• SARIF 2.2 proposal: `precision` field for reportingDescriptors and results

  #611 opened a year ago by adityasharad
  3

• Rationalize GitHub/CodeQL-proposed `precision` and `security-severity` properties

  #598 opened 8 months ago by michaelcfanning
  2

• SARIF 2.2 Proposal: `workItemUris` no longer required to be all or nothing for a run

  #614 opened a year ago by ShiningMassXAcc
  2

• SARIF 2.2 proposal: `security-severity` field for reportingDescriptors and results

  #612 opened a year ago by adityasharad
  4

• SARIF 2.2 Proposal: Add clearer and explicit relationships between `guid`, `correlationGuid`, `fingerprints`, `partialFingerprints`, and `workItemUris` `result` properties.

  #615 opened a year ago by ShiningMassXAcc
  1

• Consider adding a `generatedOrAugmentedByAI` tag

  #625 opened 10 months ago by michaelcfanning
  2

• Please clarify the licensing of the SARIF schema files

  #583 opened a year ago by davidmalcolm
  3

• Provide a SARIF v2.2.0 Seed Schema by Enhancing the v2.1.0 Errata 01 Schema

  #580 opened 2 years ago by sthagen
  2

• artifact.sourceLanguage property (§3.24.10) for assembly language

  #608 opened a year ago by davidmalcolm
  2

• Github Ingestion Rules - Specification

  #609 opened a year ago by rseeton
  3

• any spdx to sarif converter available?

  #602 opened a year ago by marcellodesales
  1

• SARIF schema / example testing

  #584 opened 2 years ago by Motional-Charles-Wilson
  1

• Support for diagrams in SARIF?

  #588 opened a year ago by davidmalcolm
  1

• Consider adding bucketized 'justification' field for suppression object.

  #574 opened 2 years ago by michaelcfanning
  3

• Provide a SARIF v2.2 Seed Prose by Transcribing the v2.1.0 Errata 01 Prose to Markdown

  #581 opened 2 years ago by sthagen
  1

• Consider normalizing all section titles to title case

  #594 opened a year ago by dmk42
  1

• Validity of comprehensible Example

  #600 opened a year ago by sthagen
  0

• Bugs

  #587 opened a year ago by dockter34
  1

• Errata01 20230619 Section 1.2 Terminology - Entry result management system - artifacts link broken

  #593 opened a year ago by sthagen
  2

• Errata01 20230619 Appendix M links to section 3 and 4 broken

  #591 opened a year ago by sthagen
  2

• Errata01 20230619 Section 2.4 Syntax notation - Second list item - ECMA ref link broken

  #592 opened a year ago by sthagen
  2

• Errata01 20230613 version: Example in K.3 has invalid key (typo, missing plural s for container)

  #589 opened a year ago by sthagen
  1

• Errata01 schema addition to region is invalid

  #578 opened a year ago by sthagen
  2

• Errata01 section 3.13.3, 4.3.2 (note 2 both) and title page - verify Schema URL is well chosen

  #577 opened a year ago by sthagen
  2

• Providing a tag for OS v2.1.0 Schema Artifacts as os-v2.1.0

  #586 opened 2 years ago by sthagen
  0

• Bucket issue: general document clean-up suggestions

  #585 opened 2 years ago by michaelcfanning
  0

• Proposal to move to versioned spec structure

  #579 opened 2 years ago by sthagen
  0

• Invalid regex in sarif JSON schema

  #576 opened 2 years ago by aeisenberg
  1

• add more severity options for level enum

  #575 opened 2 years ago by tmprender
  0