Merge pull request #27 from advanced-security/fix-container-path-issue

GeekMasher · web-flow · commit 4c3657e30075 · 2025-09-12T15:25:01.000+01:00
Fix container path issue and bump version to v0.1.5
diff --git a/.release.yml b/.release.yml
@@ -1,6 +1,6 @@
 name: "codeql-extractor-action"
 repository: "advanced-security/codeql-extractor-action"
-version: 0.1.4
+version: 0.1.5
 
 ecosystems:
   - Docs
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,7 +1,7 @@
 [package]
 name = "codeql-extractor-action"
 description = "GitHub Action for CodeQL Extractors"
-version = "0.1.4"
+version = "0.1.5"
 authors = ["GeekMasher"]
 
 license = "MIT"
diff --git a/README.md b/README.md
@@ -29,7 +29,7 @@ This action is designed to be used in conjunction with the [CodeQL][CodeQL] anal
 
 ```yml
 - name: "CodeQL Extractor Action"
-  uses: advanced-security/codeql-extractor-action@v0.1.4
+  uses: advanced-security/codeql-extractor-action@v0.1.5
   with:
     # Repository reference (e.g. "owner/repo", "owner/repo@ref")
     extractor: "advanced-security/codeql-extractor-iac"
diff --git a/action.Dockerfile b/action.Dockerfile
@@ -1,3 +1,3 @@
-FROM ghcr.io/advanced-security/codeql-extractor-action:v0.1.4
+FROM ghcr.io/advanced-security/codeql-extractor-action:v0.1.5
 
 ENTRYPOINT [ "codeql-extractor-action" ]
diff --git a/src/main.rs b/src/main.rs
@@ -287,7 +287,21 @@ async fn main() -> Result<()> {
         groupend!();
     }
 
-    action.set_sarif_results(sarif_output.display().to_string());
+    // If the action is running in Actions, the SARIF file must be a relative path
+    // This is because we assume that this code is running in a container which mounts
+    // the repository at /github/workspace
+    if std::env::var("CI").is_ok() {
+        // If running in a CI environment, set the SARIF as a relative path
+        let relative_path = sarif_output.strip_prefix(&cwd).unwrap_or(&sarif_output);
+        log::debug!(
+            "CI environment detected, setting SARIF path as relative: {}",
+            relative_path.display()
+        );
+        action.set_sarif_results(relative_path.display().to_string());
+    } else {
+        log::debug!("Setting SARIF path as absolute: {}", sarif_output.display());
+        action.set_sarif_results(sarif_output.display().to_string());
+    }
 
     log::info!("All databases created and analyzed");
 

-Original file line number
+Diff line change
 ```yml
 - name: "CodeQL Extractor Action"
 -  uses: advanced-security/[email protected].4
 +  uses: advanced-security/[email protected].5
   with:
     # Repository reference (e.g. "owner/repo", "owner/repo@ref")
     extractor: "advanced-security/codeql-extractor-iac"
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,3 @@`
`1`		`-FROM ghcr.io/advanced-security/codeql-extractor-action:v0.1.4`
	`1`	`+FROM ghcr.io/advanced-security/codeql-extractor-action:v0.1.5`
`2`	`2`
`3`	`3`	`ENTRYPOINT [ "codeql-extractor-action" ]`