From 49859335b58101fc0e2988e3f4068b11a7d1123a Mon Sep 17 00:00:00 2001
From: Valentin Kovalenko <valentin.kovalenko@mongodb.com>
Date: Mon, 27 May 2024 16:15:06 -0600
Subject: [PATCH] Add `ssdlc-report.sh` that uses SpotBugs to create SARIF
 files

In the future this script may do more work for us.

JAVA-5431
---
 .evergreen/ssdlc-report.sh | 15 +++++++++++++++
 build.gradle               |  5 ++++-
 2 files changed, 19 insertions(+), 1 deletion(-)
 create mode 100755 .evergreen/ssdlc-report.sh

diff --git a/.evergreen/ssdlc-report.sh b/.evergreen/ssdlc-report.sh
new file mode 100755
index 00000000000..f11a587a20a
--- /dev/null
+++ b/.evergreen/ssdlc-report.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+set -o errexit
+
+############################################
+#            Main Program                  #
+############################################
+RELATIVE_DIR_PATH="$(dirname "${BASH_SOURCE[0]:-$0}")"
+source "${RELATIVE_DIR_PATH}/javaConfig.bash"
+
+echo "Creating SSLDC reports"
+./gradlew -version
+./gradlew -PssdlcReport.enabled=true --continue -x test -x integrationTest -x spotlessApply clean check scalaCheck kotlinCheck testClasses || true
+echo "SpotBugs created the following SARIF files"
+find . -path "*/spotbugs/*.sarif"
diff --git a/build.gradle b/build.gradle
index 08e6ae4a376..2ba15e3daf8 100644
--- a/build.gradle
+++ b/build.gradle
@@ -338,7 +338,9 @@ configure(javaCodeCheckedProjects) {
     }
 
     spotbugs {
-        excludeFilter = new File(configDir, 'spotbugs/exclude.xml')
+        if (!project.buildingWith('ssdlcReport.enabled')) {
+            excludeFilter = new File(configDir, 'spotbugs/exclude.xml')
+        }
     }
 
     codenarc {
@@ -350,6 +352,7 @@ configure(javaCodeCheckedProjects) {
         reports {
             xml.enabled = project.buildingWith('xmlReports.enabled')
             html.enabled = !project.buildingWith('xmlReports.enabled')
+            sarif.enabled = project.buildingWith('ssdlcReport.enabled')
         }
     }