🎉 add file_path to SonarQube findings (#11078)

* 🎉 add file_path to SonarQube findings

* fix unittest

Author: manuel-sommer

dojo/tools/sonarqube/sonarqube_restapi_json.py

@@ -115,6 +115,7 @@ def get_json_items(self, json_content, test, mode):
                         component_version=component_version,
                         cwe=cwe,
                         cvssv3_score=cvss,
+                        file_path=component,
                         tags=["vulnerability"],
                     )
                     vulnids = []
@@ -183,6 +184,7 @@ def get_json_items(self, json_content, test, mode):
                         severity=self.severitytranslator(issue.get("severity")),
                         static_finding=True,
                         dynamic_finding=False,
+                        file_path=component,
                         tags=["code_smell"],
                     )
                 items.append(item)
@@ -225,6 +227,7 @@ def get_json_items(self, json_content, test, mode):
                     severity=self.severitytranslator(hotspot.get("vulnerabilityProbability")),
                     static_finding=True,
                     dynamic_finding=False,
+                    file_path=component,
                     tags=["hotspot"],
                 )
                 items.append(item)

unittests/tools/test_sonarqube_parser.py

@@ -642,6 +642,7 @@ def test_parse_json_file_from_api_with_multiple_findings_zip(self):
         item = findings[0]
         self.assertEqual(str, type(item.description))
         self.assertEqual("OWASP:UsingComponentWithKnownVulnerability_fjioefjwoefijo", item.title)
+        self.assertEqual("testapplication", item.file_path)
         self.assertEqual("Medium", item.severity)
         item = findings[3]
         self.assertEqual("OWASP:UsingComponentWithKnownVulnerability_fjioefjwo1123efijo", item.title)