CRA Tool

Rule Violations

Allow users to easily track and prioritize important issues.

StatusOpen
TypeClosed-Source Collaborative
Eligible CoursesSEMI, PRAK/PROJ, Bachelor/Master Thesis
Scope5 ECTS - 30 ECTS
Use of Artificial IntelligenceAllowed
CLA Required?Yes

Summary

CRA Tool generates a large volume of "problems", including analysis warnings/errors, governance violations, vulnerabilities, license incompatibilities, version updates, and more. Managing this information can quickly become overwhelming, even for a single project.

As a proposed solution, users can define "rules" at project level to filter and prioritize relevant issues. Ideally, CRA Tool produces a prioritized, linear list of problems and provide guidance on how to resolve them.

Additional features can include:

  • Labels, assignees, priorities, status tracking, and event logs
  • Alerts and webhooks
  • Integration with existing issue trackers like GitHub Issues or Jira
  • Deduplication or grouping of similar problems
  • The ability to create "teams" (e.g., "security team" or "compliance team") that automatically assigns relevant issues to specific groups
  • ...

Related Tools:

  • GitHub/GitLab Issues
  • Sentry
  • Rule Violations in ORT/ORT Workbench
  • Rule Violations in DependencyTrack

Expected Tasks

  1. Create detailed GitHub issues
  2. Define an implementation timeline in the GitHub Project Roadmap
  3. Implement the solution and adapt your plan if necessary
  4. Write a brief project report (1-2 pages max)

Technologies

You should be familiar with the following programming languages:

  • TypeScript
  • Java

You should be familiar with the following frameworks/libraries:

  • Next.js
  • Spring Boot

GitHub Integration

Connect GitHub repositories to CRA Tool for streamlined project setup and automated pull request analysis.

SBOM Extraction

Support additional package managers for dependency graph extraction.

On this page

SummaryExpected TasksTechnologies