Skip to content

Commit c1d8f9b

Browse files
NettozxNettozx
committed
match sarifSeverity for security-severity levels
1 parent e46a4fb commit c1d8f9b

1 file changed

Lines changed: 7 additions & 5 deletions

File tree

cli/cppcheckexecutor.cpp

Lines changed: 7 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -128,12 +128,14 @@ namespace {
128128
else if (finding.severity == Severity::error) {
129129
securitySeverity = 8.5; // high = 7.0 to 8.9
130130
}
131-
else if (finding.severity == Severity::warning) {
132-
securitySeverity = 5.5; // medium = 4.0 to 6.9
131+
else if (finding.severity == Severity::warning || finding.severity == Severity::performance ||
132+
finding.severity == Severity::portability || finding.severity == Severity::style)
133+
{
134+
securitySeverity = 5.5; // medium = 4.0 to 6.9
133135
}
134-
else if (finding.severity == Severity::performance ||
135-
finding.severity == Severity::portability ||
136-
finding.severity == Severity::style) {
136+
else if (finding.severity == Severity::information || finding.severity == Severity::internal ||
137+
finding.severity == Severity::debug || finding.severity == Severity::none)
138+
{
137139
securitySeverity = 2.0; // low = 0.1 to 3.9
138140
}
139141
if (securitySeverity > 0.0)

0 commit comments

Comments
 (0)