sast-parser

A simple tool to make understanding GitLab SAST reports a little bit easier.

Installation

pip install -r requirements.txt

Building

docker build -t sast-parser .

Running

From source

usage: parse-sast.py [-h] [--only-severities ONLY_SEVERITIES]
                     [--jsonpath-filter JSONPATH_FILTER]
                     [--no-verify-version]
                     files [files ...]

From docker

docker run --rm -it -v "$(pwd):/reports" sast-parser [-h] [--only-severities ONLY_SEVERITIES]
                     [--jsonpath-filter JSONPATH_FILTER]
                     files [files ...]

You can the create an alias to make it easier to run:

alias sast-parser="docker run --rm -it -v \"$(pwd):/reports\" sast-parser"