class Brakeman::Report::Sonar

def generate_report

def generate_report
  report_object = {
    issues: all_warnings.map { |warning| issue_json(warning) }
  }
  return JSON.pretty_generate report_object
end

def issue_json(warning)

def issue_json(warning)
  {
    engineId: "Brakeman",
    ruleId: warning.warning_code,
    type: "VULNERABILITY",
    severity: severity_level_for(warning.confidence),
    primaryLocation: {
      message: warning.message,
      filePath: warning.file.relative,
      textRange: {
        "startLine": warning.line || 1,
        "endLine": warning.line || 1,
      }
    },
    effortMinutes: (4 - warning.confidence) * 15
  }
end

def severity_level_for(confidence)

def severity_level_for(confidence)
  if confidence == 0
    "CRITICAL"
  elsif confidence == 1
    "MAJOR"
  else
    "MINOR"
  end
end

Modules

Classes

class Brakeman::Report::Sonar

def generate_report

def issue_json(warning)

def severity_level_for(confidence)

Namespace

Parent class

Instance Methods

Defined in