Merge pull request #1824 from panicking/feature/add-yocto-cve-parser

Adding Yocto Scanner support.
jenkinsci · Sep 16, 2024 · 385abfa · 385abfa
2 parents e2cbe02 + 77f98ca
commit 385abfa
Show file tree

Hide file tree

Showing 4 changed files with 476 additions and 1 deletion.
diff --git a/plugin/pom.xml b/plugin/pom.xml
@@ -25,7 +25,7 @@
     <changelist>-SNAPSHOT</changelist>
     <module.name>${project.groupId}.warnings.ng</module.name>
 
-    <analysis-model-api.version>12.4.0</analysis-model-api.version>
+    <analysis-model-api.version>12.5.0</analysis-model-api.version>
     <analysis-model-tests.version>${analysis-model-api.version}</analysis-model-tests.version>
     <pull-request-monitoring.version>335.v525cd64ec76b_</pull-request-monitoring.version>
 

diff --git a/plugin/src/main/java/io/jenkins/plugins/analysis/warnings/YoctoScanner.java b/plugin/src/main/java/io/jenkins/plugins/analysis/warnings/YoctoScanner.java
@@ -0,0 +1,53 @@
+package io.jenkins.plugins.analysis.warnings;
+
+import org.kohsuke.stapler.DataBoundConstructor;
+import org.jenkinsci.Symbol;
+import hudson.Extension;
+
+import io.jenkins.plugins.analysis.core.model.AnalysisModelParser;
+import io.jenkins.plugins.analysis.core.model.StaticAnalysisLabelProvider;
+import io.jenkins.plugins.analysis.core.model.SymbolIconLabelProvider;
+
+/**
+ * Provides a parser and customized messages for Yocto Scanner CLI (scannercli) reports.
+ *
+ * @author Michael Trimarchi
+ */
+public class YoctoScanner extends AnalysisModelParser {
+    private static final long serialVersionUID = 1L;
+    private static final String ID = "yoctocli";
+
+    /**
+     * Creates a new instance of {@link YoctoScanner}.
+     */
+    @DataBoundConstructor
+    public YoctoScanner() {
+        super();
+        // empty constructor required for stapler
+    }
+
+    /** Descriptor for this static analysis tool. */
+    @Symbol("yoctoScanner")
+    @Extension
+    public static class Descriptor extends AnalysisModelParserDescriptor {
+        /** Creates the descriptor instance. */
+        public Descriptor() {
+            super(ID);
+        }
+
+        @Override
+        public boolean canScanConsoleLog() {
+            return false;
+        }
+
+        @Override
+        public boolean isPostProcessingEnabled() {
+            return false;
+        }
+
+        @Override
+        public StaticAnalysisLabelProvider getLabelProvider() {
+            return new SymbolIconLabelProvider(getId(), getDisplayName(), getDescriptionProvider(), "symbol-solid/shield-halved plugin-font-awesome-api");
+        }
+    }
+}
diff --git a/plugin/src/test/java/io/jenkins/plugins/analysis/warnings/steps/ParsersITest.java b/plugin/src/test/java/io/jenkins/plugins/analysis/warnings/steps/ParsersITest.java
@@ -196,6 +196,12 @@ void shouldFindAllYamlLintIssues() {
         shouldFindIssuesOfTool(4, new YamlLint(), "yamllint.txt");
     }
 
+    /** Runs the YamlLint parser on an output file that contains 4 issues. */
+    @Test
+    void shouldFindAllYoctoIssues() {
+        shouldFindIssuesOfTool(25, new YoctoScanner(), "yocto_scanner_result.json");
+    }
+
     /** Runs the Iar parser on an output file that contains 6 issues. */
     @Test
     void shouldFindAllIarIssues() {