bugfix:364 fix sarif parser bug where if no endline was provided the …

…output would end in '-'

pkg/sarif/sarif.go

@@ -199,6 +199,8 @@ func parseOut(run sarif.Run, rules map[string]*sarif.ReportingDescriptor, toolNa
 					}
 					if loc.PhysicalLocation.Region.EndLine != nil {
 						el = fmt.Sprintf("%d", *loc.PhysicalLocation.Region.EndLine)
+					} else {
+						el = sl
 					}
 					target = fmt.Sprintf("%s:%s-%s", uri, sl, el)
 				} else {

pkg/sarif/sarif_test.go

@@ -27,6 +27,14 @@ func Test_ParseOut(t *testing.T) {
 	}
 
 	expectedIssues := []*v1.Issue{
+		{
+			Target:      "main.go:83-83",
+			Type:        "G404",
+			Title:       "[test for missing endLine, common in some tools]",
+			Severity:    v1.Severity_SEVERITY_HIGH,
+			Confidence:  v1.Confidence_CONFIDENCE_UNSPECIFIED,
+			Description: "Message: [test for missing endLine, common in some tools]",
+		},
 		{
 			Target:      "main.go:83-83",
 			Type:        "G404",

pkg/sarif/testdata/example_output.json

@@ -1,6 +1,29 @@
 {
 	"runs": [{
-		"results": [{
+		"results": [
+			{
+				"level": "error",
+				"locations": [{
+					"physicalLocation": {
+						"artifactLocation": {
+							"uri": "main.go"
+						},
+						"region": {
+							"snippet": {
+								"text": "r := rand.New(rand.NewSource(time.Now().UnixNano()))"
+							},
+							"sourceLanguage": "go",
+							"startColumn": 7,
+							"startLine": 83
+						}
+					}
+				}],
+				"message": {
+					"text": "[test for missing endLine, common in some tools]"
+				},
+				"ruleId": "G404"
+			},
+			{
 				"level": "error",
 				"locations": [{
 					"physicalLocation": {
@@ -60,4 +83,4 @@
 	}],
 	"$schema": "https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schemata/sarif-schema-2.1.0.json",
 	"version": "2.1.0"
-}
+}