3.2.0
Mar 6, 2024
717
version = 1
[[analyzers]]
name = "dart-analyze"
type = "community"
variables:
DART_TAG: "latest"
stages:
- scan_and_report
before_script:
- apt update
- apt install -y python3
scan_and_report:
stage: scan_and_report
image: dart:${DART_TAG}
script:
- dart analyze > dart_analyze.txt || true
- curl -sSL https://raw.githubusercontent.com/advanced-security/dart-analyzer-sarif/main/dart_analyzer_sarif.py > dart-analyzer-sarif
- python3 dart-analyzer-sarif dart_analyze.txt dart_analyze.sarif $CI_PROJECT_DIR --repo-uri $CI_PROJECT_URL --branch $CI_COMMIT_REF_NAME --revision-id $CI_COMMIT_SHA
- curl -sSL https://deepsource.io/cli | sh
- ./bin/deepsource report --analyzer dart-analyze --analyzer-type community --value-file ./dart_analyze.sarif
rules:
- if: $CI_PIPELINE_SOURCE == "push"
Anti-pattern
174
Bug risk
543