Integrate file updates: SARIF enhancements, filters expansion, and project/application management improvements

- Add CodeFlow and ThreadFlow support to SARIF result structures with new types
- Extend BaseIncludeFilters with 41 additional file type patterns
- Enhance applications.go with project association polling and duplicate prevention
- Update result.go with CodeFlow handling in SARIF serialization
- Add IsInSource and CommitURL fields to SarifResultProperties
- Fix projects.go verifyApplicationAssociationDone and UpsertProjectGroups functions
- Change IaCS and KICS filter flags from String to StringSlice in scan.go

Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>

Author: cx-atish-jadhav

internal/commands/result.go

@@ -791,8 +791,8 @@ func scanCreateSubCommand(
 		commonParams.Branch, commonParams.BranchFlagUsage,
 	)
 	createScanCmd.PersistentFlags().String(commonParams.SastFilterFlag, "", commonParams.SastFilterUsage)
-	createScanCmd.PersistentFlags().String(commonParams.IacsFilterFlag, "", commonParams.IacsFilterUsage)
-	createScanCmd.PersistentFlags().String(commonParams.KicsFilterFlag, "", commonParams.KicsFilterUsage)
+	createScanCmd.PersistentFlags().StringSlice(commonParams.IacsFilterFlag, []string{}, commonParams.IacsFilterUsage)
+	createScanCmd.PersistentFlags().StringSlice(commonParams.KicsFilterFlag, []string{}, commonParams.KicsFilterUsage)
 
 	err = createScanCmd.PersistentFlags().MarkDeprecated(commonParams.KicsFilterFlag, "please use the replacement flag --iac-security-filter")
 	if err != nil {

internal/commands/scan.go

@@ -150,6 +150,47 @@ var BaseIncludeFilters = []string{
 	"*.html",
 	"*.xhtml",
 	"*.vm",
+	"*.ac",
+	"*.am",
+	"*.app",
+	"*.asax",
+	"*.cmake",
+	"*.dspf",
+	"*.env",
+	"*.evt",
+	"*.ftl",
+	"*.gsp",
+	"*.gtl",
+	"*.handlebars",
+	"*.ini",
+	"*.jade",
+	"*.jsf",
+	"*.latex",
+	"*.lock",
+	"*.master",
+	"*.mf",
+	"*.mustache",
+	"*.pc",
+	"*.ph",
+	"*.phk",
+	"*.pro",
+	"*.rpgle",
+	"*.rpg",
+	"*.rpg38",
+	"*.sqlrpg",
+	"*.sqlrpgle",
+	"*.tex",
+	"*.toml",
+	"*.tsql",
+	"*.txt",
+	"*.vue",
+	"*.xsaccess",
+	"*.xsapp",
+	"*.pug",
+	"*.lua",
+	"*.ec",
+	"*.csv",
+	"*.apxc",
 }
 
 var BaseExcludeFilters = []string{

internal/params/filters.go

@@ -79,12 +79,20 @@ func findApplicationAndUpdate(applicationName string, applicationsWrapper wrappe
 		return errors.Errorf("%s: %s", errorConstants.ApplicationNotFound, applicationName)
 	}
 
+	// Check if project is already associated (prevents unnecessary API calls for both when flag enabled/disabled)
+	for _, id := range applicationResp.ProjectIds {
+		if id == projectID {
+			logger.PrintfIfVerbose("Project is already associated with the application. Skipping association")
+			return nil
+		}
+	}
+
 	isEnabled, err := checkDirectAssociationEnabled(featureFlagsWrapper, tenantWrapper)
 	if err != nil {
 		return errors.Wrap(err, "error while checking if direct association is enabled")
 	}
 	if isEnabled {
-		err = associateProjectToApplication(applicationResp.ID, projectID, applicationResp.ProjectIds, applicationsWrapper)
+		err = associateProjectToApplication(applicationResp.ID, projectID, applicationsWrapper)
 		if err != nil {
 			return err
 		}
@@ -139,13 +147,7 @@ func updateApplication(applicationModel *wrappers.ApplicationConfiguration, appl
 	return handleApplicationUpdateResponse(errorModel, err)
 }
 
-func associateProjectToApplication(applicationID, projectID string, associatedProjectIds []string, applicationsWrapper wrappers.ApplicationsWrapper) error {
-	for _, id := range associatedProjectIds {
-		if id == projectID {
-			logger.PrintfIfVerbose("Project is already associated with the application. Skipping association")
-			return nil
-		}
-	}
+func associateProjectToApplication(applicationID, projectID string, applicationsWrapper wrappers.ApplicationsWrapper) error {
 	associateProjectsModel := &wrappers.AssociateProjectModel{
 		ProjectIds: []string{projectID},
 	}

internal/services/applications.go

@@ -11,6 +11,11 @@ import (
 	"gotest.tools/assert"
 )
 
+const (
+	mockApplicationName = "MOCK"
+	testProjectName     = "test-project"
+)
+
 func Test_createApplicationIds(t *testing.T) {
 	type args struct {
 		applicationID          []string
@@ -59,7 +64,7 @@ func Test_ProjectAssociation_ToApplicationDirectly(t *testing.T) {
 	for _, test := range tests {
 		tt := test
 		t.Run(tt.description, func(t *testing.T) {
-			err := associateProjectToApplication(tt.applicationName, tt.projectName, []string{}, applicationWrapper)
+			err := associateProjectToApplication(tt.applicationName, tt.projectName, applicationWrapper)
 			assert.Assert(t, strings.Contains(err.Error(), tt.error), err.Error())
 		})
 	}
@@ -91,9 +96,8 @@ func Test_ProjectAssociation_ToApplicationWithoutDirectAssociation(t *testing.T)
 
 func Test_AssociateProjectToApplication_ProjectAlreadyAssociated(t *testing.T) {
 	projectID := "project-123"
-	associatedProjectIds := []string{"project-123", "project-456"}
 	applicationName := "app-1"
 	applicationWrapper := &mock.ApplicationsMockWrapper{}
-	err := associateProjectToApplication(applicationName, projectID, associatedProjectIds, applicationWrapper)
+	err := associateProjectToApplication(applicationName, projectID, applicationWrapper)
 	assert.NilError(t, err)
 }

internal/services/applications_test.go

@@ -219,7 +219,6 @@ func updateProject(project *wrappers.ProjectResponseModel,
 	projModel.Name = projModelResp.Name
 	projModel.Groups = projModelResp.Groups
 	projModel.Tags = projModelResp.Tags
-	projModel.ApplicationIds = projModelResp.ApplicationIds
 	if projectTags != "" {
 		logger.PrintIfVerbose("Updating project tags")
 		projModel.Tags = createTagMap(projectTags)

internal/services/projects.go

@@ -31,12 +31,14 @@ func (a ApplicationsMockWrapper) Get(params map[string]string) (*wrappers.Applic
 		Name:        "MOCK",
 		Description: "This is a mock application",
 		Criticality: 2,
-		ProjectIds:  []string{"ProjectID1", "ProjectID2", "MOCK", "test_project", "ID-new-project-name", "ID-newProject"},
+		ProjectIds:  []string{"ProjectID1", "ProjectID2", "test_project", "ID-new-project-name"},
 		CreatedAt:   time.Now(),
 	}
 	if params["name"] == ExistingApplication {
 		mockApplication.Name = ExistingApplication
 		mockApplication.ID = "ID-newProject"
+		// For ExistingApplication, include "ID-newProject" for polling tests
+		mockApplication.ProjectIds = []string{"ProjectID1", "ProjectID2", "test_project", "ID-new-project-name", "ID-newProject"}
 		return &wrappers.ApplicationsResponseModel{
 			TotalCount:   1,
 			Applications: []wrappers.Application{mockApplication},

internal/wrappers/mock/application-mock.go

@@ -59,9 +59,22 @@ type SarifScanResult struct {
 	Message             SarifMessage            `json:"message"`
 	PartialFingerprints *SarifResultFingerprint `json:"partialFingerprints,omitempty"`
 	Locations           []SarifLocation         `json:"locations,omitempty"`
+	CodeFlows           []SarifCodeFlow         `json:"codeFlows,omitempty"`
 	Properties          *SarifResultProperties  `json:"properties,omitempty"`
 }
 
+type SarifCodeFlow struct {
+	ThreadFlows []SarifThreadFlow `json:"threadFlows"`
+}
+
+type SarifThreadFlow struct {
+	Locations []SarifThreadFlowLocation `json:"locations"`
+}
+
+type SarifThreadFlowLocation struct {
+	Location SarifLocation `json:"location"`
+}
+
 type SarifLocation struct {
 	PhysicalLocation SarifPhysicalLocation `json:"physicalLocation"`
 }