88c7cab36b
SONAR-16364 fix rule description titles
2 years ago
41af7cd13e
SONAR-16364 Update Rule API to support multiple description sections
2 years ago
3637ca1ca9
SONAR-16361 fix randomly failing test
2 years ago
7c886613a7
SONAR-16361 adapt rule indexing to index multiple section description
2 years ago
85249a5a2a
SONAR-16302 remove RuleDefinitionDto and put information in RuleDto
2 years ago
5cea1b86e4
SONAR-16302 Renamed RULE_DESC_SECTIONS.DESCRIPTION to RULE_DESC_SECTIONS.CONTENT and corresponding java objects
2 years ago
6bb200a692
SONAR-16302 Adapt ExportRuleDto to handle new structure
2 years ago
63c72abe86
SONAR-16302 add management of indexing for rules description sections
2 years ago
c333b3ae69
SONAR-16302 persist and fetch rules with new DB structure
2 years ago
6e2ed638ee
SONAR-16302 adapt RuleDto, RuleDefinitionDto and introduce RuleSectionDescriptionDto to prepare for multiple section support
2 years ago
965034a2fb
SONAR-12499 - Increase the size of security standard facets returned in issue search
2 years ago
cd54028b99
SONAR-16130 - 'OWASP Top 10 - 2021' Facet and Filter for rules/search
2 years ago
89a3d21bc2
Update license headers for 2022 [update headers]
2 years ago
b174cb606f
SONAR-12166 Increase size for `repositories` facet to `MAX_FACET_SIZE`
2 years ago
39b94d8d74
SONAR-15102 Upgrade 3rd party dependencies
* Upgrade logback to 1.2.7
* Upgrade build-time-tracker to 2.1.0
* Upgrade com.auth0:java-jwt [3.10.3 -> 3.18.2]
* Upgrade com.github.ben-manes.versions:com.github.ben-manes.versions.gradle.plugin [0.33.0 -> 0.39.0]
* Upgrade com.github.everit-org.json-schema:org.everit.json.schema [1.12.2 -> 1.14.0]
* Upgrade com.google.code.gson:gson [2.8.6 -> 2.8.9]
* Upgrade com.google.protobuf:com.google.protobuf.gradle.plugin [0.8.13 -> 0.8.18]
* Upgrade com.google.protobuf:protobuf-java [3.17.3 -> 3.19.1]
* Upgrade com.googlecode.java-diff-utils:diffutils [1.2 -> 1.3.0]
* Upgrade com.hazelcast:hazelcast [4.2 -> 4.2.2]
* Upgrade com.jfrog.artifactory:com.jfrog.artifactory.gradle.plugin [4.21.0 -> 4.24.23]
* Upgrade com.squareup.okhttp3:mockwebserver [4.9.0 -> 4.9.3]
* Upgrade com.yworks:yguard [2.7.1 -> 2.10.0]
* Upgrade commons-codec:commons-codec [1.14 -> 1.15]
* Upgrade commons-io:commons-io [2.8.0 -> 2.11.0]
* Upgrade commons-logging:commons-logging [1.1.1 -> 1.2]
* Upgrade de.undercouch.download:de.undercouch.download.gradle.plugin [4.1.1 -> 4.1.2]
* Upgrade io.spring.dependency-management:io.spring.dependency-management.gradle.plugin [1.0.10.RELEASE -> 1.0.11.RELEASE]
* Upgrade junit:junit [4.13.1 -> 4.13.2]
* Upgrade net.javacrumbs.json-unit:json-unit-fluent [2.14.0 -> 2.28.0]
* Upgrade org.apache.commons:commons-csv [1.7 -> 1.9.0]
* Upgrade org.apache.commons:commons-lang3 [3.9 -> 3.12.0]
* Upgrade org.apache.tomcat.embed:tomcat-embed-core [8.5.72 -> 8.5.73]
* Upgrade org.assertj:assertj-core [3.15.0 -> 3.21.0]
* Upgrade org.assertj:assertj-guava [3.3.0 -> 3.4.0]
* Upgrade org.awaitility:awaitility [4.0.2 -> 4.1.1]
* Upgrade org.eclipse.jgit:org.eclipse.jgit [5.11.0.202103091610-r -> 5.13.0.202109080827-r]
* Upgrade org.jboss.byteman:byteman [4.0.10 -> 4.0.17]
* Upgrade org.jboss.resteasy:resteasy-client [3.11.0.Final -> 3.15.2.Final]
* Upgrade org.jfree:jfreechart [1.5.0 -> 1.5.3]
* Upgrade org.jsoup:jsoup [1.13.1 -> 1.14.3]
* Upgrade org.junit.jupiter:junit-jupiter-api [5.6.0 -> 5.8.1]
* Upgrade org.mockito:mockito-core [3.3.3 -> 3.12.4]
* Upgrade org.mybatis:mybatis [3.5.6 -> 3.5.7]
* Upgrade org.owasp.dependencycheck:org.owasp.dependencycheck.gradle.plugin [6.3.1 -> 6.5.0.1]
* Upgrade org.reflections:reflections [0.9.12 -> 0.10.2]
* Upgrade org.sonarqube:org.sonarqube.gradle.plugin [3.0 -> 3.3]
* Upgrade org.tmatesoft.svnkit:svnkit [1.10.1 -> 1.10.3]
* Upgrade org.xmlunit:xmlunit-core [2.6.4 -> 2.8.3]
* Upgrade org.xmlunit:xmlunit-matchers [2.6.4 -> 2.8.3]
2 years ago
3f9445c259
Improve code quality
2 years ago
a3d88ea27c
SONAR-15631 - Refactor UTs to stop using ExpectedException
2 years ago
6519110cd4
Fix code quality issues
2 years ago
bc4d1696a5
SONAR-15237 Improve startup performance of the web process
2 years ago
ffaa8f3cd6
SONAR-13357 Custom hotspot rule's description isn't split into tabs
3 years ago
6789a2ec09
SONAR-14245 Drop organization related tables
3 years ago
0f33764b53
Update license headers for 2021 [update headers]
3 years ago
5bfa95f6d5
SONAR-13999 Remove OrganizationDbTester
3 years ago
ffcea568c7
fix code smells
3 years ago
736bfc4d5a
Speed up unit tests by improving indexing in unit tests
* Unit tests no longer use the LargeSizeHandler for indexing. This handler is designed for indexing large amounts of data and is slower for the data sets used in unit tests.
* Insert all data in DB before indexing in unit tests (there is a huge overhead in each call to index)
3 years ago
f4751bd135
SONAR-12686 upgrade es client to 7.9.3 and move to HTTP
- add should minimum match eq 1 to user index queries
ES 7.X changed behaviour in case filter query with bool it defaults to '0'
https://www.elastic.co/guide/en/elasticsearch/reference/7.x/breaking-changes-7.0.html#_the_filter_context_has_been_removed
- fix issue index routing param
ES 7.X helped discover this bug as new setting has been auto configured which is 'index.number_of_routing_shards'.
This has changed how documents are distributed across shards depending on how many shards the index has.
Without that change issues docs has been incorrectly routed to the same shard hash as projects and it worked no matter what routing key you used projectUuid or auth_projectUuid.
- update ngram and edge_ngram names to match with es 7.x
nGram and edgeNgram has been deprecated in favour of ngram and edge_ngram
https://www.elastic.co/guide/en/elasticsearch/reference/current/breaking-changes-7.0.html#deprecated-ngram-edgengram-token-filter-cannot-be-used
- remove `_all : enabled` usage from UT
This field was already deprecated in 6.X, now it has been removed.
https://www.elastic.co/guide/en/elasticsearch/reference/current/breaking-changes-7.0.html#all-meta-field-removed
- add Elasticsearch High Level REST client dependency
- use sonar.search.port for ES HTTP
- main process use ES Rest client to check ES status
- sonar.cluster.search.hosts has HTTP ports on APP nodes
also sonar.search.port and sonar.search.host MUST be configured on each Search node with the host and HTTP port of the current node
- use Elasticsearch high level rest client
- use in EsTester
- use as primary es client
- use indices api to get all indices name instead of cluster api
- use cluster health api to check cluster state
- support raw requests for 'nodes/_stats' and '_cluster/stats'
- support raw requests for 'indices/_stats'
- leave netty4plugin as testCompile dependency it is used in UTs
- all ES non-test calls go through EsClient class
- add rest client ES profiling
4 years ago
e083e2e0ff
SONAR-13122 Reduce Log Level of rule indexing warnings on startup
3 years ago
13d76f2a2c
SONAR-13903 Remove use of organizations in Quality Profiles and Active Rules
3 years ago
56826fb52d
SONAR-12459 Security Category filters vulnerability issues only
3 years ago
cc10a68715
SONAR-13151 api/issues/search page size parameter negative value should not be allowed
3 years ago
bf05b3c7c2
SONAR-13221 change PK of RULES and update FK
4 years ago
b4545b42db
SONAR-12718 Improve rule description split in security hotspot page.
4 years ago
266881788f
SONAR-12726 add startup warning when hotspot rule desc can't be parsed
4 years ago
f816ceb0a3
SONAR-12717 a rule must map to a single SQ Security Category
if it's not the case, only one is taken into account
a WARN log is displayed at startup to indicate rules wich do not comply
4 years ago
8c4a7402f8
SONAR-12717 refactor SecurityStandardHelper into SecurityStandards
and cleanup responsibility for parsing serialized tags and security standards into table RULES
4 years ago
3f6f549627
Format all headers for 2020
4 years ago
6ce2c8689b
Extract implementation from plugin API and create new module sonar-plugin-api-impl
4 years ago
93dc977090
Extract implementation from plugin API and create new module sonar-plugin-api-impl
5 years ago
3b7745121f
SONAR-11180 add security facet to api/rules/search
5 years ago
67bbf94270
Upgrade assertj-core to 3.12.2 and assertj-guava to 3.2.1 for compatibility with Java 11
5 years ago
a8f011b7f5
SONAR-11791 use single type ES indices
5 years ago
252b3897e7
Fix license headers for 2019
5 years ago
1cacbb1d2e
SONAR-11209 Store ad hoc rules coming from scanner in rules_metadata
5 years ago
cfba7fcb65
SONAR-11209 Allow sensors to provide ad hoc rule metadata for external issues
5 years ago
6b71b52fde
SONAR-11212 Distinguish predefined and ad hoc external rules
5 years ago
839fff9396
SONAR-11205 Inconsistent facet "tags" in issues page
5 years ago
a6f541012b
SONAR-11127 Standardize facets behaviour between issues and rules page (#624)
5 years ago
9e3bc71eb9
sonar-ce-task-projectanalysis depends on only sonar-server-common
6 years ago
86a66a0278
move shared rule classes to server-common
6 years ago
8e1dc1628c
move ES index, indexer and client to sonar-server-common
6 years ago
Zipeng WU
Aurelien Poscia
Aurelien
Léo Geoffroy
Léo Geoffroy
Belen Pruvost
Pierre
Klaudio Sinani
Jacek
Duarte Meneses
Philippe Perrin
Wouter Admiraal
Michal Duda
colin-mueller-sonarsource
Mathieu Suen
Sébastien Lesaint
Julien HENRY
Julien Lancelot
Simon Brandhof
Stas Vilchik