How do I force msbuild to create SARIF Files on CodeAnalysis
If I run the code analysis in Visual Studio 2022 (on a c++ project) I get a XML and a SARIF file for every code file.
No I try to run the code analysis with MSBuild 2022:
MSBuild.exe solution.sln -p:Configuration=Release /p:RunCodeAnalysis=true
But with this call I only get the code analysis XML files and no SARIF files.
Any idea how to force MSBuild to create the SARIF files?
https://docs.microsoft.com/en-us/answers/questions/512275/what-to-do-with-static-code-analysis-result-xml-fi.html describes a solution:
Add a Directory.build.props file to your Visual Studio solution:
<?xml version="1.0" encoding="utf-8"?>
<Project xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
<ItemDefinitionGroup>
<ClCompile>
<AdditionalOptions>$(ClOptions) %(AdditionalOptions)</AdditionalOptions>
</ClCompile>
</ItemDefinitionGroup>
</Project>
Now I can extend my MSBuild Command line on my CI-Server (TeamCity):
/p:RunCodeAnalysis=true /p:ClOptions="/analyze:log%20MyApp.nativecodeanalysis.combined.sarif" (I had to replace the whitespace with %20).
And one SARIF file is generated, or if you want one SARIF file for every code file:
/p:RunCodeAnalysis=true /p:CaOptions="/analyze:log:format:sarif"
If you want to add additional command line switches you have to separate it with %20:
/p:CaOptions=/analyze:log:format:sarif%20/analyze:log:compilerwarnings
BUT: If I activate Clang-Tidy in my Visual Studio project I get the error CLANGTIDY : error : no such file or directory: '/analyze:log' [clang-diagnostic-error] and CLANGTIDY : error : unable to handle compilation, expected exactly one compiler job in ... - Does someone has an idea about that (except disabling Clang-Tidy)?
- How can one disable the first autoselect in a VS datagridview?
- Can't add members to SSAS role through Visual Studio
- How to install Microsoft.ReportingServices.ReportViewerControl.WebForms NuGet package to a non SDK style project using PackageReferences?
- Can I run Git commands in Visual Studio?
- SqlCommand doesn't return result from the C# application (MS Access database)
- Shared AssemblyInfo for uniform versioning across the solution
- is it possible to link an exe file as a lib file to another project?
- VS2015 "no symbols loaded for this document" for .lib file
- Can you publish a new standalone Angular project (esproj) directly from VS2022 to Azure?
- Unresolved external symbol in library in C++
- Embedding thread names in Windows minidump files
- I can no longer debug Office Add-in from Visual Studio
- Azure Active Directory passing empty GUID for tenantId with default template
- How to print values of multiple variables in one Console.WriteLine() statement?
- C2664 cannot convert argument from 'initializer list'
- Custom NuGet feed with invalid certificate
- Smart way to add same library/include paths to different projects in Visual Studio
- VS Code extension with webpack and link to node_modules
- Adding dynamic tabs to a tab control
- how to copy paste a WPF Window (clone) and not have errors
- Programmatically retrieve version of an installed application
- Visual Studio 2022 can't connect to a project due to bad filters
- Running two projects at once in Visual Studio
- Remove TFS Connection From Visual Studio 2019
- Aspire sample app - hidden css Web.styles.css?
- .NET solution - many projects vs one project
- How to fix "the setup for this installation of Visual Studio is not complete"
- Must delete massive inadvertent checkin from remote git repo
- 'Vite. http proxy error at /weatherforecast...' error when launching the Angular and ASP.NET Core app in Visual Studio
- Build error, This project references NuGet