]> source.dussan.org Git - sonarqube.git/log
sonarqube.git
3 years ago[OWASP] Findings of the night
Tobias Trabelsi [Wed, 9 Dec 2020 07:00:05 +0000 (08:00 +0100)]
[OWASP] Findings of the night

* updated tomcat to version 8.5.60

3 years agoSONAR-14224 return correct number of total issues in case index.max_result_window...
Jacek [Tue, 8 Dec 2020 07:49:35 +0000 (08:49 +0100)]
SONAR-14224 return correct number of total issues in case index.max_result_window exceeded

(cherry picked from commit 05958a5bee3282f681696ad311d0a0d98e7cc0bf)

3 years agoSONAR-12821 Fail to update an application branch name
Zipeng WU [Thu, 3 Dec 2020 13:34:56 +0000 (14:34 +0100)]
SONAR-12821 Fail to update an application branch name

3 years agoSONAR-14111 Fix label in IDE selection dropdown when description is empty
Jean-Baptiste Lievremont [Fri, 4 Dec 2020 15:01:46 +0000 (16:01 +0100)]
SONAR-14111 Fix label in IDE selection dropdown when description is empty

3 years agoSONAR-14219,SONAR-14217,SONAR-14209,SONAR-14220 Upgrade analyzer plugin
Mathieu Suen [Fri, 4 Dec 2020 18:10:07 +0000 (19:10 +0100)]
SONAR-14219,SONAR-14217,SONAR-14209,SONAR-14220 Upgrade analyzer plugin

3 years agoSONAR-14189 sonar.dbcleaner.branchesToKeepWhenInactive ignored when set on project...
Michal Duda [Thu, 3 Dec 2020 16:32:12 +0000 (17:32 +0100)]
SONAR-14189 sonar.dbcleaner.branchesToKeepWhenInactive ignored when set on project level

3 years agoSONAR-11556 Make bubblechart legend actionable
Jeremy Davis [Thu, 3 Dec 2020 10:56:59 +0000 (11:56 +0100)]
SONAR-11556 Make bubblechart legend actionable

3 years agoSONAR-13564 Allow sorting projects by security review rating
Jeremy Davis [Wed, 2 Dec 2020 15:33:31 +0000 (16:33 +0100)]
SONAR-13564 Allow sorting projects by security review rating

3 years agoSONAR-10662 updated docs to match wrapper behaviour
Tobias Trabelsi [Fri, 4 Dec 2020 10:04:37 +0000 (11:04 +0100)]
SONAR-10662 updated docs to match wrapper behaviour

3 years agoDOCS add youtube links to documentation
michaelbirnstiehl [Thu, 3 Dec 2020 16:04:39 +0000 (10:04 -0600)]
DOCS add youtube links to documentation

3 years agoSONAR-13984 Do not use email address from controlled input
Wouter Admiraal [Mon, 30 Nov 2020 14:02:02 +0000 (15:02 +0100)]
SONAR-13984 Do not use email address from controlled input

3 years agoSONAR-14154 Report API errors when updating issues
Wouter Admiraal [Mon, 30 Nov 2020 10:59:05 +0000 (11:59 +0100)]
SONAR-14154 Report API errors when updating issues

3 years agoSONAR-14077 Disable 'Configure analysis' button when issue sync is still in place
Wouter Admiraal [Mon, 30 Nov 2020 10:46:59 +0000 (11:46 +0100)]
SONAR-14077 Disable 'Configure analysis' button when issue sync is still in place

3 years agoUpdate Junit
Malena Ebert [Thu, 3 Dec 2020 08:16:42 +0000 (09:16 +0100)]
Update Junit

3 years agoSONAR-14024 fix not purging some pull requests
Michal Duda [Wed, 2 Dec 2020 12:02:05 +0000 (13:02 +0100)]
SONAR-14024 fix not purging some pull requests

3 years agoSONAR-14157 Rename quality gate events to Passed/Failed instead of Green/Red
Julien HENRY [Fri, 27 Nov 2020 15:27:33 +0000 (16:27 +0100)]
SONAR-14157 Rename quality gate events to Passed/Failed instead of Green/Red

3 years agoSONAR-8427 Add a timeZone param to api/issues/search
Julien HENRY [Thu, 3 Dec 2020 08:37:58 +0000 (09:37 +0100)]
SONAR-8427 Add a timeZone param to api/issues/search

3 years agoSONAR-14130 Always underline Primary Location in snippets
Jeremy Davis [Tue, 1 Dec 2020 13:39:15 +0000 (14:39 +0100)]
SONAR-14130 Always underline Primary Location in snippets

3 years agoSONAR-14120 Display file-level issues with multi-locations
Jeremy Davis [Mon, 30 Nov 2020 17:03:18 +0000 (18:03 +0100)]
SONAR-14120 Display file-level issues with multi-locations

3 years agoBUILD Switch time tracker plugin.
Malena Ebert [Tue, 1 Dec 2020 11:42:13 +0000 (12:42 +0100)]
BUILD Switch time tracker plugin.

The recent used time tracker plugin is not maintained anymore and it is using gradle features, which will be removed in the next versions.

3 years agoSONAR-13836 Add PKIX path building failed error to analysis FAQ
michaelbirnstiehl [Tue, 1 Dec 2020 20:45:51 +0000 (14:45 -0600)]
SONAR-13836 Add PKIX path building failed error to analysis FAQ

3 years agoSONAR-14200 Update Security Hotspot review status
michaelbirnstiehl [Tue, 1 Dec 2020 20:18:45 +0000 (14:18 -0600)]
SONAR-14200 Update Security Hotspot review status

3 years agoDOCS move deploying plugins to community
michaelbirnstiehl [Tue, 1 Dec 2020 19:59:33 +0000 (13:59 -0600)]
DOCS move deploying plugins to community

3 years agoSONAR-13934 Update landing page graphics
michaelbirnstiehl [Tue, 1 Dec 2020 19:36:13 +0000 (13:36 -0600)]
SONAR-13934 Update landing page graphics

3 years agoSSF-130 secure gitlab secrets
Zipeng WU [Tue, 1 Dec 2020 13:42:05 +0000 (14:42 +0100)]
SSF-130 secure gitlab secrets

3 years agoSONAR-14176 Fix upgrade notes
Julien Lancelot [Wed, 2 Dec 2020 16:10:32 +0000 (17:10 +0100)]
SONAR-14176 Fix upgrade notes

3 years agoSONAR-12659 Improve Quality Profiles Query Performance
Belen Pruvost [Mon, 30 Nov 2020 13:08:57 +0000 (13:08 +0000)]
SONAR-12659 Improve Quality Profiles Query Performance

3 years ago[BUILD] removed nvd cache from owasp task
Tobias Trabelsi [Wed, 2 Dec 2020 14:06:22 +0000 (15:06 +0100)]
[BUILD] removed nvd cache from owasp task

3 years agoDOCS update links to SonarScanner for MSBuild
michaelbirnstiehl [Tue, 1 Dec 2020 21:25:36 +0000 (15:25 -0600)]
DOCS update links to SonarScanner for MSBuild

3 years agoSONAR-14181 Fix SSF-136
Wouter Admiraal [Fri, 27 Nov 2020 10:48:41 +0000 (11:48 +0100)]
SONAR-14181 Fix SSF-136

3 years agoSONAR-14125 Fix BBS Onboarding search results
Wouter Admiraal [Fri, 27 Nov 2020 10:12:19 +0000 (11:12 +0100)]
SONAR-14125 Fix BBS Onboarding search results

3 years agoSONAR-13793 improve ncloc count performance by using projects instead of components
Pierre Guillot [Wed, 2 Dec 2020 11:25:40 +0000 (12:25 +0100)]
SONAR-13793 improve ncloc count performance by using projects instead of components

3 years agoDOCS update ALM integration pages
michaelbirnstiehl [Tue, 1 Dec 2020 01:09:08 +0000 (19:09 -0600)]
DOCS update ALM integration pages

3 years agoSONAR-14167 Improve Azure DevOps integration page
michaelbirnstiehl [Wed, 25 Nov 2020 13:05:51 +0000 (07:05 -0600)]
SONAR-14167 Improve Azure DevOps integration page

3 years agoSONAR-14079 Add Azure Pipelines tutorial for Azure DevOps Server
Philippe Perrin [Wed, 18 Nov 2020 12:23:52 +0000 (13:23 +0100)]
SONAR-14079 Add Azure Pipelines tutorial for Azure DevOps Server

3 years agoSSF-134 Fail to parse jwt using 'none' algorithm
Benoît Gianinetti [Mon, 30 Nov 2020 15:20:10 +0000 (16:20 +0100)]
SSF-134 Fail to parse jwt using 'none' algorithm

3 years agoSONAR-14176 Move warning from web.log to sonar.log
Julien Lancelot [Mon, 30 Nov 2020 15:44:05 +0000 (16:44 +0100)]
SONAR-14176 Move warning from web.log to sonar.log

3 years agoSONAR-14176 Send email to admins when default admin credential is detected
Julien Lancelot [Mon, 30 Nov 2020 09:44:46 +0000 (10:44 +0100)]
SONAR-14176 Send email to admins when default admin credential is detected

3 years agoSONAR-14175 Redirect when 'reset_password' is set
Jacek [Thu, 26 Nov 2020 11:41:10 +0000 (12:41 +0100)]
SONAR-14175 Redirect when 'reset_password' is set

3 years agoSONAR-14175 Adding the reset password form.
Mathieu Suen [Wed, 25 Nov 2020 14:09:54 +0000 (15:09 +0100)]
SONAR-14175 Adding the reset password form.

3 years agoSONAR-14175 Update doc about admin password reset
Julien Lancelot [Fri, 27 Nov 2020 15:16:52 +0000 (16:16 +0100)]
SONAR-14175 Update doc about admin password reset

* SONAR-14175 Add upgrade note about default admin credentials usage
* SONAR-14175 Update docs to set reset_password to true in the resetting admin password SQL

3 years agoSONAR-14175 SONAR-14176 Detect usage of admin account with default credential
Julien Lancelot [Fri, 27 Nov 2020 08:16:06 +0000 (09:16 +0100)]
SONAR-14175 SONAR-14176 Detect usage of admin account with default credential

SONAR-14175 Add a startup task to detect admin default credential usage and set reset_password flag to true
SONAR-14176 Warn administrators when default admin credential is detected

3 years agoSONAR-14175 Add 'reset_password' column to 'users' table
Jacek [Wed, 25 Nov 2020 15:19:57 +0000 (16:19 +0100)]
SONAR-14175 Add 'reset_password' column to 'users' table

 - add and populate 'reset_password' column in users table
 - add boolean 'resetPassword' to UserDto

3 years agoSONAR-14175 Prevent using same password as before in api/users/change_password
Julien Lancelot [Thu, 26 Nov 2020 07:56:50 +0000 (08:56 +0100)]
SONAR-14175 Prevent using same password as before in api/users/change_password

* Prevent using same password as before in api/users/change_password
* Improve UT
- Replace usage of ExpectedException by assertThatThrownBy
- Add expected message when exceptions are thrown (help me to detect that some UTs were not covering the correct use case)
- Use generated values as much as possible

3 years agoSONAR-14033 fix migration for applications with no projects
Michal Duda [Mon, 30 Nov 2020 17:06:25 +0000 (18:06 +0100)]
SONAR-14033 fix migration for applications with no projects

3 years agoSpeed up unit tests by improving indexing in unit tests
Duarte Meneses [Fri, 27 Nov 2020 02:34:42 +0000 (20:34 -0600)]
Speed up unit tests by improving indexing in unit tests

* Unit tests no longer use the LargeSizeHandler for indexing. This handler is designed for indexing large amounts of data and is slower for the data sets used in unit tests.
* Insert all data in DB before indexing in unit tests (there is a huge overhead in each call to index)

3 years agoFix cache of MyBatis configuration extensions in unit tests
Duarte Meneses [Fri, 27 Nov 2020 02:32:28 +0000 (20:32 -0600)]
Fix cache of MyBatis configuration extensions in unit tests

The cache used a map with an ineffective key, that changed in every call. It now depends on the set of extensions being loaded.

3 years agoSONAR-14156 Handle time in createdAfter issue filter
Jeremy Davis [Thu, 26 Nov 2020 16:24:50 +0000 (17:24 +0100)]
SONAR-14156 Handle time in createdAfter issue filter

3 years agoSONAR-14091 handle indexation tasks bound to an orphan branch
Pierre Guillot [Mon, 30 Nov 2020 10:50:10 +0000 (11:50 +0100)]
SONAR-14091 handle indexation tasks bound to an orphan branch

3 years agoSONAR-14033 Refactor storage of applications
Duarte Meneses [Wed, 14 Oct 2020 21:43:30 +0000 (16:43 -0500)]
SONAR-14033 Refactor storage of applications

3 years agoSONAR-14043 Write End-to-End tests for Applications
Mathieu Suen [Mon, 26 Oct 2020 14:00:18 +0000 (15:00 +0100)]
SONAR-14043 Write End-to-End tests for Applications

3 years agoDOCS SONAR-14170 Document security hotspot "Open in IDE" feature
Jean-Baptiste Lievremont [Tue, 24 Nov 2020 17:04:12 +0000 (18:04 +0100)]
DOCS SONAR-14170 Document security hotspot "Open in IDE" feature

3 years agoSONAR-14113 Make hotspot show WS public, add line hash of primary location
Jean-Baptiste Lievremont [Wed, 18 Nov 2020 21:23:15 +0000 (22:23 +0100)]
SONAR-14113 Make hotspot show WS public, add line hash of primary location

3 years agoSONAR-14111 Allow user to select IDE when several ones are detected
Jean-Baptiste Lievremont [Thu, 12 Nov 2020 14:43:50 +0000 (15:43 +0100)]
SONAR-14111 Allow user to select IDE when several ones are detected

3 years agoSONAR-14110 Add "Open in IDE" button to Security Hotspots page
Jean-Baptiste Lievremont [Thu, 5 Nov 2020 14:17:27 +0000 (15:17 +0100)]
SONAR-14110 Add "Open in IDE" button to Security Hotspots page

3 years agoclean code smells (unused import)
Pierre Guillot [Thu, 26 Nov 2020 13:53:10 +0000 (14:53 +0100)]
clean code smells (unused import)

3 years agoSONAR-14061 Azure DevOps settings validation
Belen Pruvost [Thu, 26 Nov 2020 08:34:18 +0000 (10:34 +0200)]
SONAR-14061 Azure DevOps settings validation

3 years agoUpdate orchestrator version to 3.34
Jacek [Mon, 23 Nov 2020 19:51:55 +0000 (20:51 +0100)]
Update orchestrator version to 3.34

By default this version is disabling force authentication for 8.6 and greater.
Also it allows to enable default behaviour, which will be used.

3 years agoSONAR-14159 enforce user authentication by default
Jacek [Wed, 18 Nov 2020 09:08:33 +0000 (10:08 +0100)]
SONAR-14159 enforce user authentication by default

3 years agoSONAR-14160 Raise awareness about authentication being enabled by default
michaelbirnstiehl [Thu, 19 Nov 2020 23:27:09 +0000 (17:27 -0600)]
SONAR-14160 Raise awareness about authentication being enabled by default

4 years agoremove code smells
Pierre Guillot [Wed, 25 Nov 2020 15:03:57 +0000 (16:03 +0100)]
remove code smells

4 years agoSONAR-14101 Update SonarScanner for MSBuild doc to reflect new 5.0 version. (#3309)
mickael-caro-sonarsource [Wed, 25 Nov 2020 13:17:06 +0000 (14:17 +0100)]
SONAR-14101 Update SonarScanner for MSBuild doc to reflect new 5.0 version. (#3309)

* Update SonarScanner for MSBuild doc to relfect new 5.0 version.

4 years agoDOCS SONAR-14155 Update monitoring docs for formatting, grammar, and rewording for...
Joe Tingsanchali [Tue, 17 Nov 2020 17:14:12 +0000 (11:14 -0600)]
DOCS SONAR-14155 Update monitoring docs for formatting, grammar, and rewording for emphasis

DOCS SONAR-14155 Update JVM resource being costly with heap resizing and oxford comma

DOCS SONAR-14155 Emphasize tone of heap resizing

4 years agoSONAR-14057 Highlight search query in results
Jeremy Davis [Tue, 24 Nov 2020 17:03:05 +0000 (18:03 +0100)]
SONAR-14057 Highlight search query in results

4 years agoSONAR-14057 realign API
Belen Pruvost [Tue, 24 Nov 2020 09:19:44 +0000 (11:19 +0200)]
SONAR-14057 realign API

4 years agoSONAR-14057 Set sqProjectKey and sqProjectName
belen-pruvost-sonarsource [Thu, 19 Nov 2020 13:52:57 +0000 (14:52 +0100)]
SONAR-14057 Set sqProjectKey and sqProjectName

4 years agoSONAR-14057 Mark Azure projects previously imported
Jeremy Davis [Wed, 18 Nov 2020 10:03:26 +0000 (11:03 +0100)]
SONAR-14057 Mark Azure projects previously imported

4 years agoSONAR-14059 Enable import of Azure repositories
Jeremy Davis [Tue, 17 Nov 2020 16:17:26 +0000 (17:17 +0100)]
SONAR-14059 Enable import of Azure repositories

4 years agoSONAR-14057 Update List AzDo projects Action
belen-pruvost-sonarsource [Wed, 18 Nov 2020 16:01:23 +0000 (17:01 +0100)]
SONAR-14057 Update List AzDo projects Action

4 years agoSONAR-14133 Add identifying fields to azure project binding
Jeremy Davis [Wed, 18 Nov 2020 08:29:46 +0000 (09:29 +0100)]
SONAR-14133 Add identifying fields to azure project binding

4 years agoSONAR-14057 Enable Search for Azure Repositories
Jeremy Davis [Tue, 17 Nov 2020 10:31:48 +0000 (11:31 +0100)]
SONAR-14057 Enable Search for Azure Repositories

4 years agoSONAR-14133 add parameters to set_azure_binding
Pierre [Fri, 13 Nov 2020 15:57:23 +0000 (16:57 +0100)]
SONAR-14133 add parameters to set_azure_binding

4 years agoSONAR-14057 Display Azure Projects and Repositories
Jeremy Davis [Mon, 16 Nov 2020 14:00:59 +0000 (15:00 +0100)]
SONAR-14057 Display Azure Projects and Repositories

4 years agoSONAR-14133 add warning when ado project and repo are not set
Belen Pruvost [Tue, 17 Nov 2020 07:07:39 +0000 (09:07 +0200)]
SONAR-14133 add warning when ado project and repo are not set

4 years agoSONAR-14133 update get_binding changelog
Pierre [Mon, 16 Nov 2020 10:07:50 +0000 (11:07 +0100)]
SONAR-14133 update get_binding changelog

4 years agoSONAR-14057 Search Ado repos
Belen Pruvost [Thu, 12 Nov 2020 12:41:35 +0000 (14:41 +0200)]
SONAR-14057 Search Ado repos

4 years agoSONAR-14057 Add PAT form for azure onboarding
Jeremy Davis [Mon, 9 Nov 2020 16:16:09 +0000 (17:16 +0100)]
SONAR-14057 Add PAT form for azure onboarding

4 years agoSONAR-14057 list ado projects
Belen Pruvost [Wed, 11 Nov 2020 09:06:12 +0000 (11:06 +0200)]
SONAR-14057 list ado projects

4 years ago[DOCS] document azdo agent bug
Tobias Trabelsi [Tue, 10 Nov 2020 14:29:09 +0000 (15:29 +0100)]
[DOCS] document azdo agent bug

Co-authored-by: MikeBirnstiehl <michael.birnstiehl@sonarsource.com>
4 years agoSONAR-13992 Upgrade Apache httpclient to 4.5.13
Julien Lancelot [Mon, 9 Nov 2020 14:32:10 +0000 (15:32 +0100)]
SONAR-13992 Upgrade Apache httpclient to 4.5.13

4 years agoSONAR-14058 add url to list endpoint
Belen Pruvost [Fri, 6 Nov 2020 08:48:01 +0000 (10:48 +0200)]
SONAR-14058 add url to list endpoint

Fixing missing ITs (thank you Cirrus)

Adding mandatory params to Gitlab related ITs + making sure tests run

4 years agoSONAR-14058 add url to list_definitions endpoint
Belen Pruvost [Thu, 5 Nov 2020 11:52:17 +0000 (13:52 +0200)]
SONAR-14058 add url to list_definitions endpoint

4 years agoSONAR-14058 Add URL to azure config form
Jeremy Davis [Wed, 4 Nov 2020 14:06:42 +0000 (15:06 +0100)]
SONAR-14058 Add URL to azure config form

4 years agoSONAR-14058 add url to update_azure endpoint
Belen Pruvost [Wed, 4 Nov 2020 16:29:42 +0000 (18:29 +0200)]
SONAR-14058 add url to update_azure endpoint

4 years agoSONAR-14058 add url to create_azure endpoint
Pierre [Wed, 4 Nov 2020 16:06:16 +0000 (17:06 +0100)]
SONAR-14058 add url to create_azure endpoint

4 years agoSONAR-14174, SONAR-14150, SONAR-14148, SONAR-14151, SONAR-14163,
Mathieu Suen [Tue, 24 Nov 2020 09:53:46 +0000 (10:53 +0100)]
SONAR-14174, SONAR-14150, SONAR-14148, SONAR-14151, SONAR-14163,
SONAR-14164, SONAR-14149, SONAR-14153, SONAR-14152, SONAR-14173, SONAR-14174 Language plugin upgrade for 8.6.

4 years agoBUILD enable weekly owasp scan for latest release
Malena Ebert [Tue, 24 Nov 2020 08:45:52 +0000 (09:45 +0100)]
BUILD enable weekly owasp scan for latest release

4 years agoSONAR-14015 Create GitHub ALM Integration page
michaelbirnstiehl [Mon, 26 Oct 2020 00:47:18 +0000 (19:47 -0500)]
SONAR-14015 Create GitHub ALM Integration page

4 years agoSONAR-14016 Create GitLab ALM integration page
michaelbirnstiehl [Wed, 28 Oct 2020 18:14:12 +0000 (13:14 -0500)]
SONAR-14016 Create GitLab ALM integration page

4 years agoSONAR-14018 Create Bitbucket ALM integration page
michaelbirnstiehl [Tue, 10 Nov 2020 23:04:28 +0000 (17:04 -0600)]
SONAR-14018 Create Bitbucket ALM integration page

4 years agoSONAR-14026 Clean up old references to ALM integration info
michaelbirnstiehl [Wed, 11 Nov 2020 21:42:30 +0000 (15:42 -0600)]
SONAR-14026 Clean up old references to ALM integration info

4 years agoSONAR-14017 Create Azure DevOps ALM integration page
michaelbirnstiehl [Mon, 16 Nov 2020 00:48:25 +0000 (18:48 -0600)]
SONAR-14017 Create Azure DevOps ALM integration page

4 years agoFixing codesmell
Mathieu Suen [Thu, 19 Nov 2020 10:21:26 +0000 (11:21 +0100)]
Fixing codesmell

4 years agoSONAR-14047 Remove delete button on app console.
Mathieu Suen [Mon, 16 Nov 2020 10:46:30 +0000 (11:46 +0100)]
SONAR-14047 Remove delete button on app console.

4 years agoFix frontend duplication.
Mathieu Suen [Thu, 12 Nov 2020 14:04:38 +0000 (15:04 +0100)]
Fix frontend duplication.

4 years agoBUILD Add slack notification for SonarQube repo
Malena Ebert [Mon, 16 Nov 2020 11:26:08 +0000 (12:26 +0100)]
BUILD Add slack notification for SonarQube repo

4 years agoBUILD Fix unauthorized builds with artifactory repo
Malena Ebert [Tue, 17 Nov 2020 08:29:18 +0000 (09:29 +0100)]
BUILD Fix unauthorized builds with artifactory repo

Due to a misbehavior in artifactory, the wrong http status code is returned and the build will stop immediately. This happens if you access a virtual repository which contains a repository which requires authentication.

As a workaround a virtual repository is used, which does not include non-public repositories.

https://www.jfrog.com/jira/browse/RTFACT-13797

4 years agoFix tag filtering docs for the WS api/components/search_projects
Antoine Vigneau [Thu, 22 Oct 2020 07:15:15 +0000 (09:15 +0200)]
Fix tag filtering docs for the WS api/components/search_projects

4 years agoSONAR-13991 Fix SSF-128
Julien Lancelot [Fri, 6 Nov 2020 07:57:59 +0000 (08:57 +0100)]
SONAR-13991 Fix SSF-128

4 years agoSONAR-12686 turn off Elasticsearch client deprecation logging
Jacek [Wed, 4 Nov 2020 14:48:15 +0000 (15:48 +0100)]
SONAR-12686 turn off Elasticsearch client deprecation logging