Merge pull request #233 from step-security/int

Do not create annotation if file under node_modules
step-security · Apr 22, 2022 · 45df612 · 45df612
2 parents ed2bdff + 9b88d8e
commit 45df612
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/eventhandler.go b/eventhandler.go
@@ -81,7 +81,9 @@ func (eventHandler *EventHandler) handleFileEvent(event *Event) {
 
 			if isFromDifferentProcess {
 				eventHandler.SourceCodeMap[event.FileName] = append(eventHandler.SourceCodeMap[event.FileName], event)
-				WriteAnnotation(fmt.Sprintf("StepSecurity Harden Runner: Source code overwritten %s syscall: %s by %s", event.FileName, event.Syscall, event.Exe))
+				if !strings.Contains(event.FileName, "node_modules/") { // node_modules folder has overwrites by design, even has .cs files in some cases. Need a better way to handle that
+					WriteAnnotation(fmt.Sprintf("StepSecurity Harden Runner: Source code overwritten %s syscall: %s by %s", event.FileName, event.Syscall, event.Exe))
+				}
 			}
 		}
 	}