Project

danger-warnings

0.0
No commit activity in last 3 years
No release in over 3 years
There's a lot of open issues
danger-warningskyaak/danger-warningsHomepageDocumentationSource CodeBug TrackerWiki
Report lint warnings
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
3,832
Stars
1
Forks
0
Watchers
2
 Releases
Current version
0.1.0
Total releases
2
First release
2019-01-21
Latest release
2019-01-24
 Issues
Open Issues
10
Closed Issues
5
Total Issues
15
Issue Closure Rate
33%
 Pull Requests
Open Pull Requests
1
Closed Pull Requests
0
Merged Pull Requests
13
Pull Request Acceptance Rate
92%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2019-01-21
Reverse Dependencies
0

 Dependencies

Development

bundler
>= 1.3
guard
~> 2.14
guard-rspec
~> 4.7
listen
= 3.0.7
mocha
~> 1.2
pry
>= 0
rake
~> 10.0
rspec
~> 3.4
rubocop
~> 0.60
simplecov
~> 0.16
simplecov-console
~> 0.4
yard
~> 0.9

Runtime

abstract_method
~> 1.2
danger-plugin-api
~> 1.0
 Project Readme

danger-warnings



This danger plugin provides a uniform report format for various tools.
The purpose is a simple to use plugin regardless of the tool used to find issues in your project 🕵️

This plugin was inspired by the work of warnings-ng-plugin 🙇‍♂️

Table of Contents

  • How it looks like
  • Installation
  • Examples
  • Configuration
  • Parsers

How it looks like

As markdown

Bandit Report

Severity File Message
Low example/ply/yacc_1.py:2853 [B403-blacklist] Consider possible security implications associated with pickle module.
Medium example/ply/yacc_2.py:3255 [B102-exec_used] Use of exec detected.
High example/ply/yacc_3.py:3255 [B102-exec_used] Use of exec detected.

As inline comment

Low
[B403-blacklist]
Consider possible security implications associated with pickle module.

Installation

$ gem install danger-warnings

Examples

Methods and attributes from this plugin are available in 
your `Dangerfile` under the `warnings` namespace.

Minimal example:

# Create a bandit report with default settings.
warnings.report(          
  parser: :bandit,
  file: 'reports/bandit.json'         
)

Simple example:

# Create a bandit report with a custom name, fails if any high warning exists 
# and evaluates all issues (not only the changed files) .
warnings.report( 
  name: 'My Bandit Report',            
  parser: :bandit,
  file: 'reports/bandit.json',
  fail_error: true,
  filter: false         
)

Complex example:

# Define base settings to be applied to all new reporter.
warnings.inline = true
warning.fail_error = true

# Use custom names to separate the table reports in the danger comment. 
warnings.report(
  name: 'Report 1',          
  parser: :bandit,
  file: 'reports/bandit.json'
  # Not necessary because already defined as default.   
  # inline: true,
  # fail_error: true      
)

warnings.report( 
  name: 'Report 2',         
  parser: :bandit,
  file: 'reports/bandit.json'         
  # Not necessary because already defined as default.   
  # inline: true,
  # fail_error: true      
)

warnings.report( 
  name: 'Report 3',         
  parser: :bandit,
  file: 'reports/bandit.json',         
  # Override the newly defined default settings only for this reporter.   
  inline: false,
  fail_error: false      
)

Configuration

Override default settings

These values apply to all reports.
It is possible to override the values in the report method.

Field Default Description
warnings.inline False Whether to comment as markdown report or do an inline comment on the file.
warnings.filter True Whether to filter and report only for changes (modified, created) files. If this is set to false, all issues of a report are included in the comment.
warnings.fail_error False Whether to fail if any High issue is reported.

Create a report

The method warnings.report(*args) is the main method of this plugin.
Configure the details of your report using the arguments passed by.

Parameter Class Description
name String A custom name for this report. If none is given, the parser name is used. Useful to separate different reports using the same common style (e.g. checkstyle).
parser Symbol, String Define the parser to evaluate the report file. Must be a key of the supported parser
file String Path to the file to read and parse.
baseline String Define a baseline for your files. Useful if the report removes a path segment but is required to identify them in the repository. E.g. /src/main/java

All default fields can be passed as parameters to report.

  • inline
  • filter
  • fail_error

These will override the configuration for this report only.

What it does not

It is not the responsibility of this plugin to exclude / include files or directories. We will only process the result and present it to you. Something like this belongs to your tool configuration before running it.

Parsers

Find a list with supported report formats and their parsers.

If your desired parser is not explicitly named, look into your tools documentation - maybe you can format the report in a different style (and give it a custom name when calling warnings.report).

any file format means that the file is most likely read line by line, so the extension is not important.

Your parser is missing and you cannot export into another format? -> Create an Issue

Number Name ID File Format Formatter
1 Bandit bandit json json
2 Pylint pylint any parseable
3 RuboCop rubocop json, any json, simple