]>
source.dussan.org Git - sonarqube.git/log
Belen Pruvost [Wed, 1 Dec 2021 09:36:41 +0000 (10:36 +0100)]
SONAR-15702 - Return 403 or filter issues when user can't access child projects in app
- api/issues/search
- api/hotspots/search
- api/governance_reports/download
- api/governance_reports/subscribe
- api/applications/create_branch
- api/applications/update_branch
Jeremy Davis [Mon, 29 Nov 2021 17:29:47 +0000 (18:29 +0100)]
SONAR-15702 Prevent displaying App if no access to child projects
Mathieu Suen [Fri, 26 Nov 2021 16:12:49 +0000 (17:12 +0100)]
SONAR-15702 Disable menu if some project in application is inaccessible
Jacek [Tue, 30 Nov 2021 10:59:21 +0000 (11:59 +0100)]
SONAR-15702 Return '403' in case WEB API called without access to all application's projects
- api/measures/component_tree
- api/measures/search_history
- api/qualitygates/application_status
- api/applications/show_leak
- api/project_analysis/search
Jacek [Mon, 29 Nov 2021 10:09:49 +0000 (11:09 +0100)]
SONAR-15702 Add 'canBrowseAllChildProjects' to ComponentAction
Belen Pruvost [Fri, 26 Nov 2021 17:18:25 +0000 (18:18 +0100)]
SONAR-15741 - Centralized check for child projects permission
Jeremy Davis [Fri, 26 Nov 2021 13:43:29 +0000 (14:43 +0100)]
SONAR-15702 Prevent editing App branches if can't browse all child projects
Julien HENRY [Fri, 3 Dec 2021 09:56:25 +0000 (10:56 +0100)]
SONAR-15761 new API to identify Sensors processing files independently (#5091)
Wouter Admiraal [Thu, 2 Dec 2021 07:23:37 +0000 (08:23 +0100)]
[NO JIRA] Clone the full history for the SonarQube analysis
Philippe Perrin [Tue, 30 Nov 2021 18:18:45 +0000 (19:18 +0100)]
[NO-JIRA] Remove Gradle time tracker plugin
Wouter Admiraal [Tue, 30 Nov 2021 11:11:12 +0000 (12:11 +0100)]
[NO JIRA] Simplify sonar-docs build, as it's not analyzed in SonarQube
Right now, we're not analyzing anything in server/sonar-docs. This means
running things like coverage, JUnit reports, or ESLint, is meaningless,
as the analysis will never be able to link the results to any known
files.
Wouter Admiraal [Tue, 30 Nov 2021 11:06:55 +0000 (12:06 +0100)]
[NO-JIRA] Update frontend source code inclusions/exclusions
Wouter Admiraal [Tue, 30 Nov 2021 12:08:25 +0000 (13:08 +0100)]
SONAR-15677 Pass JUnit reports to analysis
Philippe Perrin [Tue, 30 Nov 2021 17:08:27 +0000 (18:08 +0100)]
[NO-JIRA] Remove Gradle files dependency to Cirrus env variables
Tobias Trabelsi [Wed, 1 Dec 2021 09:47:06 +0000 (10:47 +0100)]
BUILD-1180 removed invalid token
Philippe Perrin [Tue, 30 Nov 2021 12:57:36 +0000 (13:57 +0100)]
[NO-JIRA] Improve git clone performance
Duarte Meneses [Tue, 23 Nov 2021 19:06:28 +0000 (13:06 -0600)]
SONAR-15686 Files provided are restricted when PR for selected sensors
Wouter Admiraal [Fri, 26 Nov 2021 14:16:57 +0000 (15:16 +0100)]
SONAR-15677 Fix build number error
Malena Ebert [Fri, 26 Nov 2021 14:38:23 +0000 (15:38 +0100)]
BUILD-1180 Rotate secret
Mathieu Suen [Wed, 17 Nov 2021 16:06:55 +0000 (17:06 +0100)]
SONAR-15655 Change Project perspective and sorting to use react-select@v5
Jacek [Thu, 25 Nov 2021 15:46:52 +0000 (16:46 +0100)]
SONAR-15698 Bump orchestrator version
Wouter Admiraal [Fri, 19 Nov 2021 11:55:03 +0000 (12:55 +0100)]
SONAR-15677 Update build pipeline
Zipeng WU [Thu, 25 Nov 2021 17:22:47 +0000 (18:22 +0100)]
SONAR-15694 fix SSF-214
Belen Pruvost [Thu, 25 Nov 2021 14:57:57 +0000 (15:57 +0100)]
[NO-JIRA] Fix Validate Task
belen-pruvost-sonarsource [Thu, 25 Nov 2021 10:14:00 +0000 (11:14 +0100)]
SONAR-15681 - IT for Owasp Top 10 2021 support in sonar-plugin-api
Jacek [Wed, 24 Nov 2021 09:33:51 +0000 (10:33 +0100)]
SONAR-15681 Support Owasp Top 10 2021 in sonar-plugin-api
Jacek [Wed, 24 Nov 2021 15:49:01 +0000 (16:49 +0100)]
SONAR-15690 Add check for default configuration in sonar.properties file
Mathieu Suen [Wed, 24 Nov 2021 13:15:18 +0000 (14:15 +0100)]
[NO JIRA] Revert dependencyCheck version to fix yarn issue
Philippe Perrin [Wed, 10 Nov 2021 17:39:25 +0000 (18:39 +0100)]
BUILD-1202 Add gradle cache in cirrus cache
Wouter Admiraal [Tue, 23 Nov 2021 14:05:26 +0000 (15:05 +0100)]
SONAR-15682 Fix sonar-docs analyzer docs extraction
Jacek [Mon, 22 Nov 2021 14:51:42 +0000 (15:51 +0100)]
SONAR-15102 Upgrade 3rd party dependencies
* Upgrade logback to 1.2.7
* Upgrade build-time-tracker to 2.1.0
* Upgrade com.auth0:java-jwt [3.10.3 -> 3.18.2]
* Upgrade com.github.ben-manes.versions:com.github.ben-manes.versions.gradle.plugin [0.33.0 -> 0.39.0]
* Upgrade com.github.everit-org.json-schema:org.everit.json.schema [1.12.2 -> 1.14.0]
* Upgrade com.google.code.gson:gson [2.8.6 -> 2.8.9]
* Upgrade com.google.protobuf:com.google.protobuf.gradle.plugin [0.8.13 -> 0.8.18]
* Upgrade com.google.protobuf:protobuf-java [3.17.3 -> 3.19.1]
* Upgrade com.googlecode.java-diff-utils:diffutils [1.2 -> 1.3.0]
* Upgrade com.hazelcast:hazelcast [4.2 -> 4.2.2]
* Upgrade com.jfrog.artifactory:com.jfrog.artifactory.gradle.plugin [4.21.0 -> 4.24.23]
* Upgrade com.squareup.okhttp3:mockwebserver [4.9.0 -> 4.9.3]
* Upgrade com.yworks:yguard [2.7.1 -> 2.10.0]
* Upgrade commons-codec:commons-codec [1.14 -> 1.15]
* Upgrade commons-io:commons-io [2.8.0 -> 2.11.0]
* Upgrade commons-logging:commons-logging [1.1.1 -> 1.2]
* Upgrade de.undercouch.download:de.undercouch.download.gradle.plugin [4.1.1 -> 4.1.2]
* Upgrade io.spring.dependency-management:io.spring.dependency-management.gradle.plugin [1.0.10.RELEASE -> 1.0.11.RELEASE]
* Upgrade junit:junit [4.13.1 -> 4.13.2]
* Upgrade net.javacrumbs.json-unit:json-unit-fluent [2.14.0 -> 2.28.0]
* Upgrade org.apache.commons:commons-csv [1.7 -> 1.9.0]
* Upgrade org.apache.commons:commons-lang3 [3.9 -> 3.12.0]
* Upgrade org.apache.tomcat.embed:tomcat-embed-core [8.5.72 -> 8.5.73]
* Upgrade org.assertj:assertj-core [3.15.0 -> 3.21.0]
* Upgrade org.assertj:assertj-guava [3.3.0 -> 3.4.0]
* Upgrade org.awaitility:awaitility [4.0.2 -> 4.1.1]
* Upgrade org.eclipse.jgit:org.eclipse.jgit [5.11.0.
202103091610 -r -> 5.13.0.
202109080827 -r]
* Upgrade org.jboss.byteman:byteman [4.0.10 -> 4.0.17]
* Upgrade org.jboss.resteasy:resteasy-client [3.11.0.Final -> 3.15.2.Final]
* Upgrade org.jfree:jfreechart [1.5.0 -> 1.5.3]
* Upgrade org.jsoup:jsoup [1.13.1 -> 1.14.3]
* Upgrade org.junit.jupiter:junit-jupiter-api [5.6.0 -> 5.8.1]
* Upgrade org.mockito:mockito-core [3.3.3 -> 3.12.4]
* Upgrade org.mybatis:mybatis [3.5.6 -> 3.5.7]
* Upgrade org.owasp.dependencycheck:org.owasp.dependencycheck.gradle.plugin [6.3.1 -> 6.5.0.1]
* Upgrade org.reflections:reflections [0.9.12 -> 0.10.2]
* Upgrade org.sonarqube:org.sonarqube.gradle.plugin [3.0 -> 3.3]
* Upgrade org.tmatesoft.svnkit:svnkit [1.10.1 -> 1.10.3]
* Upgrade org.xmlunit:xmlunit-core [2.6.4 -> 2.8.3]
* Upgrade org.xmlunit:xmlunit-matchers [2.6.4 -> 2.8.3]
Duarte Meneses [Thu, 18 Nov 2021 22:45:02 +0000 (16:45 -0600)]
Improve code quality
Zipeng WU [Thu, 18 Nov 2021 15:56:25 +0000 (16:56 +0100)]
SONAR-15639 Measure time of SQ analysis step on Cirrus CI
Klaudio Sinani [Wed, 17 Nov 2021 21:54:06 +0000 (22:54 +0100)]
SONAR-15631 - Refactor UTs to stop using ExpectedException
Belen Pruvost [Thu, 11 Nov 2021 13:16:24 +0000 (14:16 +0100)]
SONAR-15631 - New UT Monitoring Module
Jacek [Fri, 19 Nov 2021 10:23:59 +0000 (11:23 +0100)]
SONAR-15676 Drop hardcoded ip address in sonar.properties
Lukasz Jarocki [Fri, 19 Nov 2021 08:07:55 +0000 (09:07 +0100)]
NO-JIRA preparing for version 9.3
michaelbirnstiehl [Wed, 17 Nov 2021 15:19:29 +0000 (09:19 -0600)]
DOCS delete the architecture and integration page
Duarte Meneses [Thu, 18 Nov 2021 17:28:19 +0000 (11:28 -0600)]
Fix unstable UT
Duarte Meneses [Thu, 18 Nov 2021 17:24:55 +0000 (11:24 -0600)]
SONAR-14315 Cannot paginate /api/project_tags/search
michaelbirnstiehl [Thu, 18 Nov 2021 15:11:58 +0000 (09:11 -0600)]
SONAR-15498 update unicity note
Philippe Perrin [Tue, 16 Nov 2021 15:48:18 +0000 (16:48 +0100)]
SONAR-15498 Allow user to select project that already belongs to an other portfolio
Jacek [Tue, 16 Nov 2021 13:05:12 +0000 (14:05 +0100)]
SONAR-15498 Allow to define different branches for same project within portfolio hierarchy
Duarte Meneses [Thu, 18 Nov 2021 15:08:40 +0000 (09:08 -0600)]
Improve code quality
Duarte Meneses [Wed, 17 Nov 2021 20:03:41 +0000 (14:03 -0600)]
SONAR-15398 update class and method names
Duarte Meneses [Mon, 15 Nov 2021 21:42:14 +0000 (15:42 -0600)]
SONAR-15398 Project is not removed from application_projects table when deleted
Tobias Trabelsi [Thu, 18 Nov 2021 11:24:45 +0000 (12:24 +0100)]
[DOCS] SONAR-15626 added documentation about the network topology and recommendations
Philippe Perrin [Tue, 16 Nov 2021 09:53:24 +0000 (10:53 +0100)]
SONAR-15614 Drop the 'sonar.lf.aboutText' property
Philippe Perrin [Wed, 17 Nov 2021 15:17:38 +0000 (16:17 +0100)]
SONAR-15614 Drop the About page
Jacek [Wed, 17 Nov 2021 16:09:46 +0000 (17:09 +0100)]
SONAR-15070 Fix error when sometimes setting sonar.search.host causes SQ to fail at start
Pierre [Wed, 17 Nov 2021 15:11:26 +0000 (16:11 +0100)]
SONAR-13426 Validate token for public project when auth is forced
Mathieu Suen [Tue, 16 Nov 2021 11:05:12 +0000 (12:05 +0100)]
SONAR-15627 Make the system update prompt same as globle prompt
Lukasz Jarocki [Wed, 17 Nov 2021 09:36:11 +0000 (10:36 +0100)]
SONAR-15671 new sonarsecurity version
Philippe Perrin [Wed, 17 Nov 2021 09:02:39 +0000 (10:02 +0100)]
SONAR-15657 Improve Terraform/CloudFormation analysis
Wouter Admiraal [Tue, 16 Nov 2021 14:42:45 +0000 (15:42 +0100)]
SONAR-14907 Update WebAPI examples
Wouter Admiraal [Tue, 16 Nov 2021 14:00:40 +0000 (15:00 +0100)]
SONAR-15311 Fix static documentation build
Lukasz Jarocki [Tue, 16 Nov 2021 15:54:58 +0000 (16:54 +0100)]
SONAR-15650 SONAR-15659 SONAR-15658 SONAR-15630 SONAR-15662 SONAR-15670 SONAR-15663 SONAR-15653 SONAR-15529 SONAR-15669 SONAR-15657 Analyzer upgrades for SonarQube 9.2
Jeremy Davis [Tue, 16 Nov 2021 17:15:09 +0000 (18:15 +0100)]
SONAR-15633 Fix test reporting for extensions
Tobias Trabelsi [Wed, 17 Nov 2021 07:14:04 +0000 (08:14 +0100)]
SONAR-15654 added liveness endpoint to allowlist with passcode
Tobias Trabelsi [Wed, 17 Nov 2021 07:12:25 +0000 (08:12 +0100)]
SONAR-15551 added missing env description for ES auth settings
michaelbirnstiehl [Mon, 15 Nov 2021 00:06:01 +0000 (18:06 -0600)]
SONAR-15618 Update Portfolio documentation on permissions and sub-portfolios
Philippe Perrin [Fri, 12 Nov 2021 11:38:32 +0000 (12:38 +0100)]
SONAR-15086 Link C/C++ sample projects to tutorial
Lukasz Jarocki [Tue, 16 Nov 2021 14:19:28 +0000 (15:19 +0100)]
SONAR-13427 implement ITs
Duarte Meneses [Mon, 15 Nov 2021 20:12:45 +0000 (14:12 -0600)]
SONAR-15406 Issue change log is not sort by createdDate
Mathieu Suen [Tue, 16 Nov 2021 10:00:03 +0000 (11:00 +0100)]
SONAR-15661 Add a link to open plugin matrix in a new window
Mathieu Suen [Tue, 16 Nov 2021 09:14:39 +0000 (10:14 +0100)]
SONAR-15466 Fix typo link
Lukasz Jarocki [Tue, 16 Nov 2021 10:05:55 +0000 (11:05 +0100)]
SONAR-13434 fixing a typo
Jeremy Davis [Fri, 12 Nov 2021 09:08:53 +0000 (10:08 +0100)]
SONAR-15635 Send frontend reports to Elastic instance
Jeremy Davis [Thu, 11 Nov 2021 10:20:48 +0000 (11:20 +0100)]
SONAR-15633 collect jest test data for Kibana
Mathieu Suen [Thu, 11 Nov 2021 17:04:34 +0000 (18:04 +0100)]
SONAR-13427 Add renew token badge for admin
Mathieu Suen [Wed, 10 Nov 2021 14:58:41 +0000 (15:58 +0100)]
SONAR-13426 Enable project badge for private project
michaelbirnstiehl [Tue, 9 Nov 2021 22:04:11 +0000 (16:04 -0600)]
SONAR-13434 Update documentation on project visiblity/badges
Lukasz Jarocki [Mon, 15 Nov 2021 15:06:52 +0000 (16:06 +0100)]
SONAR-13427 Added a new endpoint to renew the project badge token
Duarte Meneses [Thu, 11 Nov 2021 20:35:10 +0000 (14:35 -0600)]
SONAR-15360 Deprecate old built-in JS/TS quality profile
Tobias Trabelsi [Mon, 15 Nov 2021 15:17:01 +0000 (16:17 +0100)]
SONAR-15656 added more documentation about the PKCS11 container
michaelbirnstiehl [Thu, 11 Nov 2021 19:59:10 +0000 (13:59 -0600)]
DOCS Update project move documentation
Philippe Perrin [Mon, 15 Nov 2021 08:48:12 +0000 (09:48 +0100)]
SONAR-15498 Display branch information on issue page
Pierre [Fri, 12 Nov 2021 13:30:05 +0000 (14:30 +0100)]
SONAR-13426 purge project_badge_token when a project is deleted
Pierre Guillot [Mon, 15 Nov 2021 09:26:53 +0000 (10:26 +0100)]
Add a link to our jobs in 'Contributing' section
Co-authored-by: MikeBirnstiehl <michael.birnstiehl@sonarsource.com>
Jacek [Wed, 10 Nov 2021 14:51:58 +0000 (15:51 +0100)]
SONAR-15474 Upgrade java-saml version to 2.8.0
Pierre [Fri, 12 Nov 2021 09:39:19 +0000 (10:39 +0100)]
SONAR-13426 accept tokens on api/project_badges/measure and quality_gate endpoints, including with force auth enabled
Pierre [Wed, 10 Nov 2021 16:43:31 +0000 (17:43 +0100)]
SONAR-13426 add api/project_badges/token endpoint
Pierre [Wed, 10 Nov 2021 10:10:31 +0000 (11:10 +0100)]
SONAR-13426 add project_badge_token table
Tibor Blenessy [Thu, 11 Nov 2021 14:13:58 +0000 (15:13 +0100)]
SONAR-15644 Remove CSS plugin (#4975)
CSS analysis is integrated into the javascript plugin
Lukasz Jarocki [Wed, 10 Nov 2021 13:13:01 +0000 (14:13 +0100)]
NO-JIRA fixed unit test that was not passing on windows
Duarte Meneses [Tue, 9 Nov 2021 22:24:04 +0000 (16:24 -0600)]
SONAR-15623 Update netty from 4.1.65 to 4.1.70
Philippe Perrin [Wed, 10 Nov 2021 09:53:09 +0000 (10:53 +0100)]
SONAR-15180 Document support for Azure DevOps Server Express editions
Jeremy Davis [Tue, 9 Nov 2021 14:02:36 +0000 (15:02 +0100)]
SONAR-15430 Fix C-family tutorial for GH Actions on linux
Jacek [Mon, 8 Nov 2021 11:15:28 +0000 (12:15 +0100)]
Make new portfolio queries oracle compliant
Duarte Meneses [Thu, 4 Nov 2021 21:01:17 +0000 (16:01 -0500)]
SONAR-15498 add IT and Purge should delete selected project if it only selects a branch being deleted
michaelbirnstiehl [Mon, 1 Nov 2021 22:14:31 +0000 (17:14 -0500)]
SONAR-15545 Add documentation on branches in portfolios
Jacek [Tue, 2 Nov 2021 13:12:43 +0000 (14:12 +0100)]
SONAR-15528 Support export project branches in portfolio in XML
Duarte Meneses [Mon, 1 Nov 2021 16:59:02 +0000 (11:59 -0500)]
Use Java 11 API instead of Guava
Duarte Meneses [Fri, 29 Oct 2021 16:12:24 +0000 (11:12 -0500)]
SONAR-15499 Show portfolio branch selection in views/show WS and clean selected branches in portfolios
Philippe Perrin [Wed, 20 Oct 2021 08:48:08 +0000 (10:48 +0200)]
SONAR-15498 Manual selection of project's branches for portfolio
Display portfolio's children branch information and group issues by project and branch
Duarte Meneses [Thu, 28 Oct 2021 17:07:23 +0000 (12:07 -0500)]
SONAR-15498 Compute manually selected projects in portfolio
Jacek [Tue, 26 Oct 2021 09:58:48 +0000 (11:58 +0200)]
SONAR-15498 Compute manually selected projects in portfolio
Duarte Meneses [Mon, 18 Oct 2021 21:21:38 +0000 (16:21 -0500)]
SONAR-15498 DB schema and WS supports project branches selection in portfolios
Zipeng WU [Mon, 8 Nov 2021 15:20:32 +0000 (16:20 +0100)]
SONAR-14658 Show additional security-related rules are available in security reports
Klaudio Sinani [Mon, 8 Nov 2021 16:56:58 +0000 (17:56 +0100)]
SONAR-15579 Improve error verbosity on permission template matching key collision + unit test