Bump Sarif.Sdk from 4.1.0 to 4.2.2

[dependabot]

Bumps Sarif.Sdk from 4.1.0 to 4.2.2.

Release notes

Sourced from Sarif.Sdk's releases.

v4.2.1

SARIF Package Release History (SDK, Driver, Converters, and Multitool)

v4.2.1 Sdk | Driver | Converters | Multitool | Multitool Library

• BUG: Resolve NotSupportedException thrown (on .NET 4.8 and earlier) on accessing DeflateStream.Length from MultithreadedZipArchiveArtifactProvider.SizeInBytes property.

Changelog

Sourced from Sarif.Sdk's changelog.

v4.2.2 Sdk | Driver | Converters | Multitool | Multitool Library

• BUG: Resolve NullReferenceException retrieving MultithreadedZipArchiveArtifactProvider.SizeInBytes after content have been faulted in.

v4.2.1 Sdk | Driver | Converters | Multitool | Multitool Library

• BUG: Resolve NotSupportedException thrown (on .NET 4.8 and earlier) on accessing DeflateStream.Length from MultithreadedZipArchiveArtifactProvider.SizeInBytes property.

v4.2.0 Sdk | Driver | Converters | Multitool | Multitool Library

• BRK: Change ArtifactProvicer.SizeInBytes property type from ulong to long. #2675
• BRK: Update SarifLog.Post(Uri, StreamWriter, HttpClient) return value to HttpResponseMessage (to make returned correlation id and error messages available). #2672
• BRK: RuntimeConditions now of type long to permit more flag values. Many literal values have changed for individual members. #2660
• BRK: RuntimeConditions.OneOrMoreFilesSkippedDueToSize renamed to OneOrMoreFilesSkippedDueToExceedingSizeLimits. #2660
• BRK: Notes.LogFileSkippedDueToSize renamed to LogFileExceedingSizeLimitSkipped. #2660
• BRK: Command-line argument automationGuid renamed to automation-guid. #2647
• BRK: Command-line argument automationId renamed to automation-id. #2647
• BRK: Update AnalyzeOptionsBase Quiet, Recurse, LogEnvironment, and RichReturnCode properties to bool? type. #2644
• BRK: Rename Errors.LogExceptionCreatingLogFile to Errors.LogExceptionCreatingOutputFile to reflect its general purpose. #2643
• BRK: Add IAnalysisContext.FileRegionsCache property. Used for data sharing across analysis phases. #2642
• BRK: Remove FileRegionsCache.Instance singleton object. Analysis should always prefer context file region context instead. #2642
• BRK: fileRegionsCache parameter is now required for the InsertOptionalDataVisitor. #2642
• BRK: Add IAnalysisLogger.TargetAnalysisComplete method. #2637
• BRK: Remove unused quiet parameter from SarifLogger. [Decompiling copy with condition is not supported #2639]microsoft/sarif-sdk#2639
• BRK: Remove ComputeHashData and AnalysisTargetToHashDataMap properties from SarifLogger (in preference of new fileRegionsCache parameter. #2639
• BRK: Eliminate proactive hashing of artifacts in SarifLogger constructor when OptionallyEmittedData.Hashes is specified. #2639
• BUG: Provider better size return values for in-memory EnumeratedArtifact instances. #2674
• BUG: Fixed ERR999.UnhandledEngineException: System.InvalidOperationException: This operation is not supported for a relative URI when running in Linux with files skipped due to zero byte size. #2664
• BUG: Properly report skipping empty files (rather than reporting file was skipped due to exceeding size limits). #2660
• BUG: Update user messages and code comments that refer to --force (replaced by --log ForceOverwrite). #2656
• BUG: Handle return code 422 UnprocessableEntity when validating that log file POST endpoint is available. #2656
• BUG: Eliminate erroneous Posted log file successfully message when context PostUri is non-null but empty. #2655
• BUG: Resolves IOException raised by calling FileSystem.ReadAllText on file locked for write (but not read). #2655
• BUG: Correct toolComponent.language regex in JSON schema. [Bump @types/node from 15.0.2 to 15.0.3 in /src/highlightjs #2653]microsoft/sarif-sdk#2653
• BUG: Generate IAnalysisLogger.AnalyzingTarget callbacks from MulthreadedAnalyzeCommandBase. #2637
• BUG: Persist fileRegionsCache parameter in SarifLogger to support retrieving hash data. #2639
• BUG: Allow override of FailureLevels and ResultKinds in context objects. #2639
• NEW: Add general Notes.LogFileSkipped notification mechanism for any skipped files. #2675
• NEW: Add 50K files to analysis channel (rather than previous value of 25k). Smooths performance analyzing many small artifacts. #2674
• NEW: Provide new ETW telemetry for runtime behavior, provider SarifDriver, guid c84480b4-a77f-421f-8a11-48210c1724d4. microsoft/sarif-sdk#2668
• NEW: Provide convenience enumerator at the SarifLog level that iterates over all results in all runs in the log. #2660
• NEW: Provide Notes.LogEmptyFileSkipped helper for reporting zero-byte files skipped at scan time. #2660
• NEW: Add MemoryStreamSarifLogger (for in-memory SARIF generation). #2655
• NEW: Add AnalyzeContext.VersionControlProvenance property. #2646
• NEW: Add DefaultTraces.ResultsSummary property that drives naive results summary in console logger. #2643
• NEW: Prove AnalyzeContextBase.Inline helper. #2643
• NEW: SarifLogger.FileRegionsCache property added (to support sharing this instance with context and other classes). #2642
• NEW: MultithreadedAnalyzeCommandBase.Tool is now public to support in-memory analysis (and logging) of targets. #2639
• NEW: Add DefaultTraces.TargetsScanned which is used by ConsoleLogger to emit target start and stop analysis messages. #2637
• NEW: Update FileRegionsCache to retrieve cached newline indices and hash data via GetNewLineIndex and GetHashData methods. #2639

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Microsoft Reviewers: Open in CodeFlow

[ghost]

[ghost]

[ghost]

Hello @msftbot[bot]!

Because this pull request has the auto-merge label, I will be glad to assist with helping to merge this pull request once all check-in policies pass.

Do note that I've been instructed to only help merge pull requests of this repository that have been opened for at least 5 minutes. No worries though, I will be back when the time is right! 😉

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (@msftbot) and give me an instruction to get started! Learn more here.

[github-actions]

Test Results (win-x64)

       33 files  ±0         33 suites  ±0   33m 13s ⏱️ - 3m 34s
10 160 tests ±0  10 160 ✔️ ±0  0 💤 ±0  0 ❌ ±0 
12 375 runs  ±0  12 375 ✔️ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit fb1753d. ± Comparison against base commit 9733c93.

[github-actions]

Test Results (osx-x64)

       33 files  ±0         33 suites  ±0   1h 25m 30s ⏱️ + 5m 14s
10 152 tests ±0  10 152 ✔️ ±0  0 💤 ±0  0 ❌ ±0 
12 368 runs  ±0  12 368 ✔️ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit fb1753d. ± Comparison against base commit 9733c93.

[github-actions]

Test Results (linux-musl-x64)

       33 files  ±0         33 suites  ±0   34m 52s ⏱️ + 2m 24s
10 148 tests ±0  10 148 ✔️ ±0  0 💤 ±0  0 ❌ ±0 
12 364 runs  ±0  12 364 ✔️ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit fb1753d. ± Comparison against base commit 9733c93.

[github-actions]

Test Results (linux-x64)

       33 files  ±0         33 suites  ±0   29m 7s ⏱️ - 2m 29s
10 148 tests ±0  10 148 ✔️ ±0  0 💤 ±0  0 ❌ ±0 
12 364 runs  ±0  12 364 ✔️ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit fb1753d. ± Comparison against base commit 9733c93.