S0-AN-01: Findings Normalization & Schema #2
Description
Scope: Normalize static analysis findings (Ruff, Semgrep) into a unified schema.
Tasks:
- Pin Ruff and Semgrep versions.
- Create baseline configs (
.ruff.toml,semgrep.yml). - Export findings as JSON with consistent schema.
- Define schema:
schemas/findings.v1.json. - Normalize output (deduplicate, unify file:line format, add severity labels).
DoD: Running Ruff/Semgrep in CI produces a valid findings.json matching schema.