]>
source.dussan.org Git - sonarqube.git/log
Mathieu Suen [Tue, 8 Dec 2020 08:43:13 +0000 (09:43 +0100)]
upgrade to 8.7
Jacek [Tue, 8 Dec 2020 07:49:35 +0000 (08:49 +0100)]
SONAR-14224 return correct number of total issues in case index.max_result_window exceeded
Tobias Trabelsi [Tue, 8 Dec 2020 10:07:09 +0000 (11:07 +0100)]
[OWASP] Findings of the night
* updated tomcat to version 8.5.60
* supressed CVE-2020-25649
Zipeng WU [Thu, 3 Dec 2020 13:34:56 +0000 (14:34 +0100)]
SONAR-12821 Fail to update an application branch name
Jean-Baptiste Lievremont [Fri, 4 Dec 2020 15:01:46 +0000 (16:01 +0100)]
SONAR-14111 Fix label in IDE selection dropdown when description is empty
Mathieu Suen [Fri, 4 Dec 2020 18:10:07 +0000 (19:10 +0100)]
SONAR-14219,SONAR-14217,SONAR-14209,SONAR-14220 Upgrade analyzer plugin
Michal Duda [Thu, 3 Dec 2020 16:32:12 +0000 (17:32 +0100)]
SONAR-14189 sonar.dbcleaner.branchesToKeepWhenInactive ignored when set on project level
Jeremy Davis [Thu, 3 Dec 2020 10:56:59 +0000 (11:56 +0100)]
SONAR-11556 Make bubblechart legend actionable
Jeremy Davis [Wed, 2 Dec 2020 15:33:31 +0000 (16:33 +0100)]
SONAR-13564 Allow sorting projects by security review rating
Tobias Trabelsi [Fri, 4 Dec 2020 10:04:37 +0000 (11:04 +0100)]
SONAR-10662 updated docs to match wrapper behaviour
michaelbirnstiehl [Thu, 3 Dec 2020 16:04:39 +0000 (10:04 -0600)]
DOCS add youtube links to documentation
Wouter Admiraal [Mon, 30 Nov 2020 14:02:02 +0000 (15:02 +0100)]
SONAR-13984 Do not use email address from controlled input
Wouter Admiraal [Mon, 30 Nov 2020 10:59:05 +0000 (11:59 +0100)]
SONAR-14154 Report API errors when updating issues
Wouter Admiraal [Mon, 30 Nov 2020 10:46:59 +0000 (11:46 +0100)]
SONAR-14077 Disable 'Configure analysis' button when issue sync is still in place
Malena Ebert [Thu, 3 Dec 2020 08:16:42 +0000 (09:16 +0100)]
Update Junit
Michal Duda [Wed, 2 Dec 2020 12:02:05 +0000 (13:02 +0100)]
SONAR-14024 fix not purging some pull requests
Julien HENRY [Fri, 27 Nov 2020 15:27:33 +0000 (16:27 +0100)]
SONAR-14157 Rename quality gate events to Passed/Failed instead of Green/Red
Julien HENRY [Thu, 3 Dec 2020 08:37:58 +0000 (09:37 +0100)]
SONAR-8427 Add a timeZone param to api/issues/search
Jeremy Davis [Tue, 1 Dec 2020 13:39:15 +0000 (14:39 +0100)]
SONAR-14130 Always underline Primary Location in snippets
Jeremy Davis [Mon, 30 Nov 2020 17:03:18 +0000 (18:03 +0100)]
SONAR-14120 Display file-level issues with multi-locations
Malena Ebert [Tue, 1 Dec 2020 11:42:13 +0000 (12:42 +0100)]
BUILD Switch time tracker plugin.
The recent used time tracker plugin is not maintained anymore and it is using gradle features, which will be removed in the next versions.
michaelbirnstiehl [Tue, 1 Dec 2020 20:45:51 +0000 (14:45 -0600)]
SONAR-13836 Add PKIX path building failed error to analysis FAQ
michaelbirnstiehl [Tue, 1 Dec 2020 20:18:45 +0000 (14:18 -0600)]
SONAR-14200 Update Security Hotspot review status
michaelbirnstiehl [Tue, 1 Dec 2020 19:59:33 +0000 (13:59 -0600)]
DOCS move deploying plugins to community
michaelbirnstiehl [Tue, 1 Dec 2020 19:36:13 +0000 (13:36 -0600)]
SONAR-13934 Update landing page graphics
Zipeng WU [Tue, 1 Dec 2020 13:42:05 +0000 (14:42 +0100)]
SSF-130 secure gitlab secrets
Julien Lancelot [Wed, 2 Dec 2020 16:10:32 +0000 (17:10 +0100)]
SONAR-14176 Fix upgrade notes
Belen Pruvost [Mon, 30 Nov 2020 13:08:57 +0000 (13:08 +0000)]
SONAR-12659 Improve Quality Profiles Query Performance
Tobias Trabelsi [Wed, 2 Dec 2020 14:06:22 +0000 (15:06 +0100)]
[BUILD] removed nvd cache from owasp task
michaelbirnstiehl [Tue, 1 Dec 2020 21:25:36 +0000 (15:25 -0600)]
DOCS update links to SonarScanner for MSBuild
Wouter Admiraal [Fri, 27 Nov 2020 10:48:41 +0000 (11:48 +0100)]
SONAR-14181 Fix SSF-136
Wouter Admiraal [Fri, 27 Nov 2020 10:12:19 +0000 (11:12 +0100)]
SONAR-14125 Fix BBS Onboarding search results
Pierre Guillot [Wed, 2 Dec 2020 11:25:40 +0000 (12:25 +0100)]
SONAR-13793 improve ncloc count performance by using projects instead of components
michaelbirnstiehl [Tue, 1 Dec 2020 01:09:08 +0000 (19:09 -0600)]
DOCS update ALM integration pages
michaelbirnstiehl [Wed, 25 Nov 2020 13:05:51 +0000 (07:05 -0600)]
SONAR-14167 Improve Azure DevOps integration page
Philippe Perrin [Wed, 18 Nov 2020 12:23:52 +0000 (13:23 +0100)]
SONAR-14079 Add Azure Pipelines tutorial for Azure DevOps Server
Benoît Gianinetti [Mon, 30 Nov 2020 15:20:10 +0000 (16:20 +0100)]
SSF-134 Fail to parse jwt using 'none' algorithm
Julien Lancelot [Mon, 30 Nov 2020 15:44:05 +0000 (16:44 +0100)]
SONAR-14176 Move warning from web.log to sonar.log
Julien Lancelot [Mon, 30 Nov 2020 09:44:46 +0000 (10:44 +0100)]
SONAR-14176 Send email to admins when default admin credential is detected
Jacek [Thu, 26 Nov 2020 11:41:10 +0000 (12:41 +0100)]
SONAR-14175 Redirect when 'reset_password' is set
Mathieu Suen [Wed, 25 Nov 2020 14:09:54 +0000 (15:09 +0100)]
SONAR-14175 Adding the reset password form.
Julien Lancelot [Fri, 27 Nov 2020 15:16:52 +0000 (16:16 +0100)]
SONAR-14175 Update doc about admin password reset
* SONAR-14175 Add upgrade note about default admin credentials usage
* SONAR-14175 Update docs to set reset_password to true in the resetting admin password SQL
Julien Lancelot [Fri, 27 Nov 2020 08:16:06 +0000 (09:16 +0100)]
SONAR-14175 SONAR-14176 Detect usage of admin account with default credential
SONAR-14175 Add a startup task to detect admin default credential usage and set reset_password flag to true
SONAR-14176 Warn administrators when default admin credential is detected
Jacek [Wed, 25 Nov 2020 15:19:57 +0000 (16:19 +0100)]
SONAR-14175 Add 'reset_password' column to 'users' table
- add and populate 'reset_password' column in users table
- add boolean 'resetPassword' to UserDto
Julien Lancelot [Thu, 26 Nov 2020 07:56:50 +0000 (08:56 +0100)]
SONAR-14175 Prevent using same password as before in api/users/change_password
* Prevent using same password as before in api/users/change_password
* Improve UT
- Replace usage of ExpectedException by assertThatThrownBy
- Add expected message when exceptions are thrown (help me to detect that some UTs were not covering the correct use case)
- Use generated values as much as possible
Michal Duda [Mon, 30 Nov 2020 17:06:25 +0000 (18:06 +0100)]
SONAR-14033 fix migration for applications with no projects
Duarte Meneses [Fri, 27 Nov 2020 02:34:42 +0000 (20:34 -0600)]
Speed up unit tests by improving indexing in unit tests
* Unit tests no longer use the LargeSizeHandler for indexing. This handler is designed for indexing large amounts of data and is slower for the data sets used in unit tests.
* Insert all data in DB before indexing in unit tests (there is a huge overhead in each call to index)
Duarte Meneses [Fri, 27 Nov 2020 02:32:28 +0000 (20:32 -0600)]
Fix cache of MyBatis configuration extensions in unit tests
The cache used a map with an ineffective key, that changed in every call. It now depends on the set of extensions being loaded.
Jeremy Davis [Thu, 26 Nov 2020 16:24:50 +0000 (17:24 +0100)]
SONAR-14156 Handle time in createdAfter issue filter
Pierre Guillot [Mon, 30 Nov 2020 10:50:10 +0000 (11:50 +0100)]
SONAR-14091 handle indexation tasks bound to an orphan branch
Duarte Meneses [Wed, 14 Oct 2020 21:43:30 +0000 (16:43 -0500)]
SONAR-14033 Refactor storage of applications
Mathieu Suen [Mon, 26 Oct 2020 14:00:18 +0000 (15:00 +0100)]
SONAR-14043 Write End-to-End tests for Applications
Jean-Baptiste Lievremont [Tue, 24 Nov 2020 17:04:12 +0000 (18:04 +0100)]
DOCS SONAR-14170 Document security hotspot "Open in IDE" feature
Jean-Baptiste Lievremont [Wed, 18 Nov 2020 21:23:15 +0000 (22:23 +0100)]
SONAR-14113 Make hotspot show WS public, add line hash of primary location
Jean-Baptiste Lievremont [Thu, 12 Nov 2020 14:43:50 +0000 (15:43 +0100)]
SONAR-14111 Allow user to select IDE when several ones are detected
Jean-Baptiste Lievremont [Thu, 5 Nov 2020 14:17:27 +0000 (15:17 +0100)]
SONAR-14110 Add "Open in IDE" button to Security Hotspots page
Pierre Guillot [Thu, 26 Nov 2020 13:53:10 +0000 (14:53 +0100)]
clean code smells (unused import)
Belen Pruvost [Thu, 26 Nov 2020 08:34:18 +0000 (10:34 +0200)]
SONAR-14061 Azure DevOps settings validation
Jacek [Mon, 23 Nov 2020 19:51:55 +0000 (20:51 +0100)]
Update orchestrator version to 3.34
By default this version is disabling force authentication for 8.6 and greater.
Also it allows to enable default behaviour, which will be used.
Jacek [Wed, 18 Nov 2020 09:08:33 +0000 (10:08 +0100)]
SONAR-14159 enforce user authentication by default
michaelbirnstiehl [Thu, 19 Nov 2020 23:27:09 +0000 (17:27 -0600)]
SONAR-14160 Raise awareness about authentication being enabled by default
Pierre Guillot [Wed, 25 Nov 2020 15:03:57 +0000 (16:03 +0100)]
remove code smells
mickael-caro-sonarsource [Wed, 25 Nov 2020 13:17:06 +0000 (14:17 +0100)]
SONAR-14101 Update SonarScanner for MSBuild doc to reflect new 5.0 version. (#3309)
* Update SonarScanner for MSBuild doc to relfect new 5.0 version.
Joe Tingsanchali [Tue, 17 Nov 2020 17:14:12 +0000 (11:14 -0600)]
DOCS SONAR-14155 Update monitoring docs for formatting, grammar, and rewording for emphasis
DOCS SONAR-14155 Update JVM resource being costly with heap resizing and oxford comma
DOCS SONAR-14155 Emphasize tone of heap resizing
Jeremy Davis [Tue, 24 Nov 2020 17:03:05 +0000 (18:03 +0100)]
SONAR-14057 Highlight search query in results
Belen Pruvost [Tue, 24 Nov 2020 09:19:44 +0000 (11:19 +0200)]
SONAR-14057 realign API
belen-pruvost-sonarsource [Thu, 19 Nov 2020 13:52:57 +0000 (14:52 +0100)]
SONAR-14057 Set sqProjectKey and sqProjectName
Jeremy Davis [Wed, 18 Nov 2020 10:03:26 +0000 (11:03 +0100)]
SONAR-14057 Mark Azure projects previously imported
Jeremy Davis [Tue, 17 Nov 2020 16:17:26 +0000 (17:17 +0100)]
SONAR-14059 Enable import of Azure repositories
belen-pruvost-sonarsource [Wed, 18 Nov 2020 16:01:23 +0000 (17:01 +0100)]
SONAR-14057 Update List AzDo projects Action
Jeremy Davis [Wed, 18 Nov 2020 08:29:46 +0000 (09:29 +0100)]
SONAR-14133 Add identifying fields to azure project binding
Jeremy Davis [Tue, 17 Nov 2020 10:31:48 +0000 (11:31 +0100)]
SONAR-14057 Enable Search for Azure Repositories
Pierre [Fri, 13 Nov 2020 15:57:23 +0000 (16:57 +0100)]
SONAR-14133 add parameters to set_azure_binding
Jeremy Davis [Mon, 16 Nov 2020 14:00:59 +0000 (15:00 +0100)]
SONAR-14057 Display Azure Projects and Repositories
Belen Pruvost [Tue, 17 Nov 2020 07:07:39 +0000 (09:07 +0200)]
SONAR-14133 add warning when ado project and repo are not set
Pierre [Mon, 16 Nov 2020 10:07:50 +0000 (11:07 +0100)]
SONAR-14133 update get_binding changelog
Belen Pruvost [Thu, 12 Nov 2020 12:41:35 +0000 (14:41 +0200)]
SONAR-14057 Search Ado repos
Jeremy Davis [Mon, 9 Nov 2020 16:16:09 +0000 (17:16 +0100)]
SONAR-14057 Add PAT form for azure onboarding
Belen Pruvost [Wed, 11 Nov 2020 09:06:12 +0000 (11:06 +0200)]
SONAR-14057 list ado projects
Tobias Trabelsi [Tue, 10 Nov 2020 14:29:09 +0000 (15:29 +0100)]
[DOCS] document azdo agent bug
Co-authored-by: MikeBirnstiehl <michael.birnstiehl@sonarsource.com>
Julien Lancelot [Mon, 9 Nov 2020 14:32:10 +0000 (15:32 +0100)]
SONAR-13992 Upgrade Apache httpclient to 4.5.13
Belen Pruvost [Fri, 6 Nov 2020 08:48:01 +0000 (10:48 +0200)]
SONAR-14058 add url to list endpoint
Fixing missing ITs (thank you Cirrus)
Adding mandatory params to Gitlab related ITs + making sure tests run
Belen Pruvost [Thu, 5 Nov 2020 11:52:17 +0000 (13:52 +0200)]
SONAR-14058 add url to list_definitions endpoint
Jeremy Davis [Wed, 4 Nov 2020 14:06:42 +0000 (15:06 +0100)]
SONAR-14058 Add URL to azure config form
Belen Pruvost [Wed, 4 Nov 2020 16:29:42 +0000 (18:29 +0200)]
SONAR-14058 add url to update_azure endpoint
Pierre [Wed, 4 Nov 2020 16:06:16 +0000 (17:06 +0100)]
SONAR-14058 add url to create_azure endpoint
Mathieu Suen [Tue, 24 Nov 2020 09:53:46 +0000 (10:53 +0100)]
SONAR-14174, SONAR-14150, SONAR-14148, SONAR-14151, SONAR-14163,
SONAR-14164, SONAR-14149, SONAR-14153, SONAR-14152, SONAR-14173, SONAR-14174 Language plugin upgrade for 8.6.
Malena Ebert [Tue, 24 Nov 2020 08:45:52 +0000 (09:45 +0100)]
BUILD enable weekly owasp scan for latest release
michaelbirnstiehl [Mon, 26 Oct 2020 00:47:18 +0000 (19:47 -0500)]
SONAR-14015 Create GitHub ALM Integration page
michaelbirnstiehl [Wed, 28 Oct 2020 18:14:12 +0000 (13:14 -0500)]
SONAR-14016 Create GitLab ALM integration page
michaelbirnstiehl [Tue, 10 Nov 2020 23:04:28 +0000 (17:04 -0600)]
SONAR-14018 Create Bitbucket ALM integration page
michaelbirnstiehl [Wed, 11 Nov 2020 21:42:30 +0000 (15:42 -0600)]
SONAR-14026 Clean up old references to ALM integration info
michaelbirnstiehl [Mon, 16 Nov 2020 00:48:25 +0000 (18:48 -0600)]
SONAR-14017 Create Azure DevOps ALM integration page
Mathieu Suen [Thu, 19 Nov 2020 10:21:26 +0000 (11:21 +0100)]
Fixing codesmell
Mathieu Suen [Mon, 16 Nov 2020 10:46:30 +0000 (11:46 +0100)]
SONAR-14047 Remove delete button on app console.
Mathieu Suen [Thu, 12 Nov 2020 14:04:38 +0000 (15:04 +0100)]
Fix frontend duplication.
Malena Ebert [Mon, 16 Nov 2020 11:26:08 +0000 (12:26 +0100)]
BUILD Add slack notification for SonarQube repo
Malena Ebert [Tue, 17 Nov 2020 08:29:18 +0000 (09:29 +0100)]
BUILD Fix unauthorized builds with artifactory repo
Due to a misbehavior in artifactory, the wrong http status code is returned and the build will stop immediately. This happens if you access a virtual repository which contains a repository which requires authentication.
As a workaround a virtual repository is used, which does not include non-public repositories.
https://www.jfrog.com/jira/browse/RTFACT-13797
Antoine Vigneau [Thu, 22 Oct 2020 07:15:15 +0000 (09:15 +0200)]
Fix tag filtering docs for the WS api/components/search_projects
Julien Lancelot [Fri, 6 Nov 2020 07:57:59 +0000 (08:57 +0100)]
SONAR-13991 Fix SSF-128