From 633dd3d72d19f89a2db6d781b0a7394629e6effc Mon Sep 17 00:00:00 2001 From: attiasas Date: Wed, 24 Dec 2025 11:08:30 +0200 Subject: [PATCH 1/3] Add option to only include specific targets in conversion --- utils/results/conversion/convertor.go | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/utils/results/conversion/convertor.go b/utils/results/conversion/convertor.go index 002e82262..533b2e5ee 100644 --- a/utils/results/conversion/convertor.go +++ b/utils/results/conversion/convertor.go @@ -1,6 +1,8 @@ package conversion import ( + "slices" + "github.com/CycloneDX/cyclonedx-go" "github.com/jfrog/jfrog-cli-security/utils" "github.com/jfrog/jfrog-cli-security/utils/formats" @@ -43,6 +45,8 @@ type ResultConvertParams struct { Pretty bool // The JFrog platform URL to be used in the results (Sarif only - GitHub integration) PlatformUrl string + // A list of target names to include in the output, if empty all targets will be included + IncludeTargets []string } func NewCommandResultsConvertor(params ResultConvertParams) *CommandResultsConvertor { @@ -108,6 +112,10 @@ func parseCommandResults[T interface{}](params ResultConvertParams, parser Resul return } for _, targetScansResults := range cmdResults.Targets { + if len(params.IncludeTargets) > 0 && !slices.Contains(params.IncludeTargets, targetScansResults.Target) { + // Skip this target as it's not in the include list + continue + } if err = parser.ParseNewTargetResults(targetScansResults.ScanTarget, targetScansResults.Errors...); err != nil { return } From 2b008ff6658bbbfc39f8885452894ad2faa0a077 Mon Sep 17 00:00:00 2001 From: attiasas Date: Wed, 31 Dec 2025 13:07:59 +0200 Subject: [PATCH 2/3] fix TestGitAuditJasSkipNotApplicableCvesViolations test --- git_test.go | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/git_test.go b/git_test.go index 86af84dfe..86425e6cc 100644 --- a/git_test.go +++ b/git_test.go @@ -290,8 +290,8 @@ func TestGitAuditJasSkipNotApplicableCvesViolations(t *testing.T) { xrayVersion, xscVersion, "", validations.ValidationParams{ Violations: &validations.ViolationCount{ - ValidateScan: &validations.ScanCount{Sca: 5, Sast: 2, Secrets: 2}, - ValidateApplicabilityStatus: &validations.ApplicabilityStatusCount{NotCovered: 5, Inactive: 2}, + ValidateScan: &validations.ScanCount{Sca: 6, Sast: 2, Secrets: 2}, + ValidateApplicabilityStatus: &validations.ApplicabilityStatusCount{NotCovered: 6, Inactive: 2}, }, ExactResultsMatch: true, }, From 4f5c418d8f32d40779a1cf8db76255d8b04a8ebf Mon Sep 17 00:00:00 2001 From: attiasas Date: Wed, 31 Dec 2025 15:59:50 +0200 Subject: [PATCH 3/3] fix tests --- git_test.go | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/git_test.go b/git_test.go index 86425e6cc..b8033ae47 100644 --- a/git_test.go +++ b/git_test.go @@ -262,8 +262,8 @@ func TestGitAuditJasSkipNotApplicableCvesViolations(t *testing.T) { xrayVersion, xscVersion, "", validations.ValidationParams{ Violations: &validations.ViolationCount{ - ValidateScan: &validations.ScanCount{Sca: 8, Sast: 2, Secrets: 2}, - ValidateApplicabilityStatus: &validations.ApplicabilityStatusCount{NotApplicable: 3, NotCovered: 5, Inactive: 2}, + ValidateScan: &validations.ScanCount{Sca: 9, Sast: 2, Secrets: 2}, + ValidateApplicabilityStatus: &validations.ApplicabilityStatusCount{NotApplicable: 3, NotCovered: 6, Inactive: 2}, }, ExactResultsMatch: true, },