This command can be installed locally as a dependency or globally. Please notice that currently for global installation ts-node should be installed globally too.
npm install -g gitlab-sast-to-sonarqube ts-node
To convert gitlab SAST json artifact to sonarqube external format please use the following command:
gitlab2sq gl-sast-report.json > sonarqube-report.json
or
gitlab2sq gl-sast-report.json --target=sonarqube-report.json
where gl-sast-report.json
is existing SAST pipeline artifact and sonarqube-report.json
is a new file
You can also use gitlab2sq function in your code. Both import and return object types are declared according to Gitlab and SonarQube specs
import gitlab2sq from "gitlab-sast-to-sonarqube/src/functions/gitlab2sq";