notification object
A notification object describes a condition encountered during the execution of an analysis tool
which is relevant to the operation of the tool itself, as opposed to being relevant to an artifact being analyzed by the tool.
Conditions relevant to artifacts being analyzed by a tool are represented by result objects.
Example
{
"$schema": "https://json.schemastore.org/sarif-2.1.0.json",
"version": "2.1.0",
"runs": [
{
"tool": {
"driver": {
"name": "CodeScanner",
"semanticVersion": "1.1.2-beta.12",
"informationUri": "https://codeScanner.dev",
"rules": [
{
"id": "CTN9999",
"shortDescription": {
"text": "First version of rule."
}
},
{
"id": "CTN9999",
"shortDescription": {
"text": "Second version of rule."
}
}
]
}
},
"invocations": [
{
"executionSuccessful": true,
"toolExecutionNotifications": [
{
"message": {
"text": "Exception evaluating rule 'C2001'. Rule configuration is missing."
},
"level": "error",
"descriptor": {
"index": 1,
"id": "CTN9999"
}
}
]
}
],
"results": [
{
"message": {
"text": "..."
},
"ruleId": "CTN9999"
}
]
}
]
}
How to generate
See full examples/reportingDescriptorReference.php script into repository.
[!NOTE] Since release 1.5.0, you may use fluent builders API as alternative. See full
examples/builder/reportingDescriptorReference.phpscript into repository.
<?php declare(strict_types=1);
use Bartlett\Sarif\Definition\Invocation;
use Bartlett\Sarif\Definition\Message;
use Bartlett\Sarif\Definition\Notification;
use Bartlett\Sarif\Definition\ReportingDescriptorReference;
$notification = new Notification(new Message("Exception evaluating rule 'C2001'. Rule configuration is missing."));
$notification->setAssociatedRule(new ReportingDescriptorReference(0, 'C2001'));
$notification->setDescriptor(new ReportingDescriptorReference(1, 'CTN9999'));
$notification->setLevel('error');
$invocation = new Invocation(true);
$invocation->addToolExecutionNotifications([$notification]);