mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31539 Commits
59 Branches
Tree: 3f9445c259
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3f9445c259'
${ noResults }
sonarqube/server/sonar-ce-task-projectanalysis/src/test/java/org/sonar/ce/task/projectanalysis/qualitymodel/NewSecurityReviewMeasuresVi...

NewSecurityReviewMeasuresVisitorTest.java 21KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.ce.task.projectanalysis.qualitymodel;

  21. 

  22. import java.util.Arrays;

  23. import java.util.Date;

  24. import javax.annotation.Nullable;

  25. import org.assertj.core.api.Assertions;

  26. import org.assertj.core.data.Offset;

  27. import org.junit.Rule;

  28. import org.junit.Test;

  29. import org.sonar.api.rules.RuleType;

  30. import org.sonar.ce.task.projectanalysis.analysis.AnalysisMetadataHolderRule;

  31. import org.sonar.ce.task.projectanalysis.analysis.Branch;

  32. import org.sonar.ce.task.projectanalysis.component.Component;

  33. import org.sonar.ce.task.projectanalysis.component.FileAttributes;

  34. import org.sonar.ce.task.projectanalysis.component.TreeRootHolderRule;

  35. import org.sonar.ce.task.projectanalysis.component.VisitorsCrawler;

  36. import org.sonar.ce.task.projectanalysis.issue.ComponentIssuesRepositoryRule;

  37. import org.sonar.ce.task.projectanalysis.issue.FillComponentIssuesVisitorRule;

  38. import org.sonar.ce.task.projectanalysis.measure.MeasureRepositoryRule;

  39. import org.sonar.ce.task.projectanalysis.metric.MetricRepositoryRule;

  40. import org.sonar.ce.task.projectanalysis.period.Period;

  41. import org.sonar.ce.task.projectanalysis.period.PeriodHolderRule;

  42. import org.sonar.core.issue.DefaultIssue;

  43. import org.sonar.core.util.Uuids;

  44. import org.sonar.db.component.BranchType;

  45. import org.sonar.server.measure.Rating;

  46. 

  47. import static org.assertj.core.api.Assertions.assertThat;

  48. import static org.mockito.Mockito.mock;

  49. import static org.mockito.Mockito.when;

  50. import static org.sonar.api.issue.Issue.RESOLUTION_FIXED;

  51. import static org.sonar.api.issue.Issue.STATUS_REVIEWED;

  52. import static org.sonar.api.issue.Issue.STATUS_TO_REVIEW;

  53. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_REVIEWED;

  54. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_REVIEWED_KEY;

  55. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_REVIEWED_STATUS;

  56. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_REVIEWED_STATUS_KEY;

  57. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_TO_REVIEW_STATUS;

  58. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_HOTSPOTS_TO_REVIEW_STATUS_KEY;

  59. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_REVIEW_RATING;

  60. import static org.sonar.api.measures.CoreMetrics.NEW_SECURITY_REVIEW_RATING_KEY;

  61. import static org.sonar.api.rule.Severity.MAJOR;

  62. import static org.sonar.api.rule.Severity.MINOR;

  63. import static org.sonar.ce.task.projectanalysis.component.Component.Type.DIRECTORY;

  64. import static org.sonar.ce.task.projectanalysis.component.Component.Type.FILE;

  65. import static org.sonar.ce.task.projectanalysis.component.ReportComponent.builder;

  66. import static org.sonar.ce.task.projectanalysis.measure.MeasureAssert.assertThat;

  67. import static org.sonar.server.measure.Rating.A;

  68. import static org.sonar.server.measure.Rating.B;

  69. import static org.sonar.server.measure.Rating.C;

  70. import static org.sonar.server.measure.Rating.D;

  71. import static org.sonar.server.measure.Rating.E;

  72. 

  73. public class NewSecurityReviewMeasuresVisitorTest {

  74. 

  75.   private static final Offset<Double> VARIATION_COMPARISON_OFFSET = Offset.offset(0.01);

  76. 

  77.   private static final long LEAK_PERIOD_SNAPSHOT_IN_MILLISEC = 12323L;

  78.   private static final Date DEFAULT_CREATION_DATE = new Date(1000L);

  79.   private static final Date BEFORE_LEAK_PERIOD_DATE = new Date(LEAK_PERIOD_SNAPSHOT_IN_MILLISEC - 5000L);

  80.   private static final Date AFTER_LEAK_PERIOD_DATE = new Date(LEAK_PERIOD_SNAPSHOT_IN_MILLISEC + 5000L);

  81. 

  82.   private static final String LANGUAGE_KEY_1 = "lKey1";

  83. 

  84.   private static final int PROJECT_REF = 1;

  85.   private static final int ROOT_DIR_REF = 12;

  86.   private static final int DIRECTORY_REF = 123;

  87.   private static final int FILE_1_REF = 1231;

  88.   private static final int FILE_2_REF = 1232;

  89. 

  90.   private static final Component ROOT_PROJECT = builder(Component.Type.PROJECT, PROJECT_REF).setKey("project")

  91.     .addChildren(

  92.       builder(DIRECTORY, ROOT_DIR_REF).setKey("dir")

  93.         .addChildren(

  94.           builder(DIRECTORY, DIRECTORY_REF).setKey("directory")

  95.             .addChildren(

  96.               builder(FILE, FILE_1_REF).setFileAttributes(new FileAttributes(false, LANGUAGE_KEY_1, 1)).setKey("file1").build(),

  97.               builder(FILE, FILE_2_REF).setFileAttributes(new FileAttributes(false, LANGUAGE_KEY_1, 1)).setKey("file2").build())

  98.             .build())

  99.         .build())

  100.     .build();

  101. 

  102.   @Rule

  103.   public TreeRootHolderRule treeRootHolder = new TreeRootHolderRule();

  104.   @Rule

  105.   public MetricRepositoryRule metricRepository = new MetricRepositoryRule()

  106.     .add(NEW_SECURITY_REVIEW_RATING)

  107.     .add(NEW_SECURITY_HOTSPOTS_REVIEWED)

  108.     .add(NEW_SECURITY_HOTSPOTS_REVIEWED_STATUS)

  109.     .add(NEW_SECURITY_HOTSPOTS_TO_REVIEW_STATUS);

  110.   @Rule

  111.   public MeasureRepositoryRule measureRepository = MeasureRepositoryRule.create(treeRootHolder, metricRepository);

  112.   @Rule

  113.   public PeriodHolderRule periodsHolder = new PeriodHolderRule().setPeriod(new Period("mode", null, LEAK_PERIOD_SNAPSHOT_IN_MILLISEC));

  114.   @Rule

  115.   public AnalysisMetadataHolderRule analysisMetadataHolder = new AnalysisMetadataHolderRule();

  116.   @Rule

  117.   public ComponentIssuesRepositoryRule componentIssuesRepositoryRule = new ComponentIssuesRepositoryRule(treeRootHolder);

  118.   @Rule

  119.   public FillComponentIssuesVisitorRule fillComponentIssuesVisitorRule = new FillComponentIssuesVisitorRule(componentIssuesRepositoryRule, treeRootHolder);

  120. 

  121.   private VisitorsCrawler underTest = new VisitorsCrawler(Arrays.asList(fillComponentIssuesVisitorRule,

  122.     new NewSecurityReviewMeasuresVisitor(componentIssuesRepositoryRule, measureRepository, periodsHolder, analysisMetadataHolder, metricRepository)));

  123. 

  124.   @Test

  125.   public void compute_measures_when_100_percent_hotspots_reviewed() {

  126.     treeRootHolder.setRoot(ROOT_PROJECT);

  127.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  128.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  129.       // Should not be taken into account

  130.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  131.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  132.       newIssue().setCreationDate(AFTER_LEAK_PERIOD_DATE));

  133.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  134.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  135.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE));

  136.     fillComponentIssuesVisitorRule.setIssues(ROOT_DIR_REF,

  137.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE));

  138. 

  139.     underTest.visit(ROOT_PROJECT);

  140. 

  141.     verifyRatingAndReviewedMeasures(FILE_1_REF, A, 100.0);

  142.     verifyRatingAndReviewedMeasures(FILE_2_REF, A, 100.0);

  143.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, A, 100.0);

  144.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, A, 100.0);

  145.     verifyRatingAndReviewedMeasures(PROJECT_REF, A, 100.0);

  146.   }

  147. 

  148.   @Test

  149.   public void compute_measures_when_more_than_80_percent_hotspots_reviewed() {

  150.     treeRootHolder.setRoot(ROOT_PROJECT);

  151.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  152.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  153.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  154.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  155.       // Should not be taken into account

  156.       newIssue().setCreationDate(AFTER_LEAK_PERIOD_DATE));

  157.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  158.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  159.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  160.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  161.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  162.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  163.       // Should not be taken into account

  164.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  165.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  166.       newIssue());

  167. 

  168.     underTest.visit(ROOT_PROJECT);

  169. 

  170.     verifyRatingAndReviewedMeasures(FILE_1_REF, A, 100.0);

  171.     verifyRatingAndReviewedMeasures(FILE_2_REF, A, 80.0);

  172.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, A, 87.5);

  173.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, A, 87.5);

  174.     verifyRatingAndReviewedMeasures(PROJECT_REF, A, 87.5);

  175.   }

  176. 

  177.   @Test

  178.   public void compute_measures_when_more_than_70_percent_hotspots_reviewed() {

  179.     treeRootHolder.setRoot(ROOT_PROJECT);

  180.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  181.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  182.       // Should not be taken into account

  183.       newIssue().setCreationDate(AFTER_LEAK_PERIOD_DATE));

  184.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  185.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  186.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  187.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  188.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  189.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  190.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  191.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  192.       // Should not be taken into account

  193.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  194.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  195.       newIssue());

  196. 

  197.     underTest.visit(ROOT_PROJECT);

  198. 

  199.     verifyRatingAndReviewedMeasures(FILE_1_REF, A, 100.0);

  200.     verifyRatingAndReviewedMeasures(FILE_2_REF, B, 71.42);

  201.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, B, 75.0);

  202.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, B, 75.0);

  203.     verifyRatingAndReviewedMeasures(PROJECT_REF, B, 75.0);

  204.   }

  205. 

  206.   @Test

  207.   public void compute_measures_when_more_than_50_percent_hotspots_reviewed() {

  208.     treeRootHolder.setRoot(ROOT_PROJECT);

  209.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  210.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  211.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  212.       // Should not be taken into account

  213.       newIssue());

  214.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  215.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  216.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  217.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  218.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  219.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  220.       // Should not be taken into account

  221.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  222.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  223.       newIssue());

  224. 

  225.     underTest.visit(ROOT_PROJECT);

  226. 

  227.     verifyRatingAndReviewedMeasures(FILE_1_REF, C, 50.0);

  228.     verifyRatingAndReviewedMeasures(FILE_2_REF, C, 60.0);

  229.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, C, 57.14);

  230.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, C, 57.14);

  231.     verifyRatingAndReviewedMeasures(PROJECT_REF, C, 57.14);

  232.   }

  233. 

  234.   @Test

  235.   public void compute_measures_when_more_30_than_percent_hotspots_reviewed() {

  236.     treeRootHolder.setRoot(ROOT_PROJECT);

  237.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  238.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  239.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  240.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  241.       // Should not be taken into account

  242.       newIssue());

  243.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  244.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  245.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  246.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  247.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  248.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  249.       // Should not be taken into account

  250.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  251.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  252.       newIssue());

  253. 

  254.     underTest.visit(ROOT_PROJECT);

  255. 

  256.     verifyRatingAndReviewedMeasures(FILE_1_REF, D, 33.33);

  257.     verifyRatingAndReviewedMeasures(FILE_2_REF, D, 40.0);

  258.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, D, 37.5);

  259.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, D, 37.5);

  260.     verifyRatingAndReviewedMeasures(PROJECT_REF, D, 37.5);

  261.   }

  262. 

  263.   @Test

  264.   public void compute_measures_when_less_than_30_percent_hotspots_reviewed() {

  265.     treeRootHolder.setRoot(ROOT_PROJECT);

  266.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  267.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  268.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  269.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  270.       // Should not be taken into account

  271.       newIssue());

  272.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  273.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  274.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  275.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  276.       // Should not be taken into account

  277.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  278.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  279.       newIssue());

  280. 

  281.     underTest.visit(ROOT_PROJECT);

  282. 

  283.     verifyRatingAndReviewedMeasures(FILE_1_REF, D, 33.33);

  284.     verifyRatingAndReviewedMeasures(FILE_2_REF, E, 0.0);

  285.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, E, 16.66);

  286.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, E, 16.66);

  287.     verifyRatingAndReviewedMeasures(PROJECT_REF, E, 16.66);

  288.   }

  289. 

  290.   @Test

  291.   public void compute_A_rating_and_no_percent_when_no_new_hotspot_on_new_code() {

  292.     treeRootHolder.setRoot(ROOT_PROJECT);

  293.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  294.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  295.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  296.       newIssue());

  297. 

  298.     underTest.visit(ROOT_PROJECT);

  299. 

  300.     verifyRatingAndReviewedMeasures(PROJECT_REF, A, null);

  301.   }

  302. 

  303.   @Test

  304.   public void compute_measures_on_pr() {

  305.     periodsHolder.setPeriod(null);

  306.     Branch b = mock(Branch.class);

  307.     when(b.getType()).thenReturn(BranchType.PULL_REQUEST);

  308.     analysisMetadataHolder.setBranch(b);

  309.     treeRootHolder.setRoot(ROOT_PROJECT);

  310.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  311.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  312.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  313.       // Should not be taken into account

  314.       newIssue());

  315.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  316.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  317.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  318.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  319.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  320.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  321.       // Dates is not taken into account on PR

  322.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(BEFORE_LEAK_PERIOD_DATE),

  323.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(BEFORE_LEAK_PERIOD_DATE));

  324. 

  325.     underTest.visit(ROOT_PROJECT);

  326. 

  327.     verifyRatingAndReviewedMeasures(FILE_1_REF, C, 50.0);

  328.     verifyRatingAndReviewedMeasures(FILE_2_REF, C, 57.14);

  329.     verifyRatingAndReviewedMeasures(DIRECTORY_REF, C, 55.55);

  330.     verifyRatingAndReviewedMeasures(ROOT_DIR_REF, C, 55.55);

  331.     verifyRatingAndReviewedMeasures(PROJECT_REF, C, 55.55);

  332.   }

  333. 

  334.   @Test

  335.   public void compute_status_related_measures() {

  336.     treeRootHolder.setRoot(ROOT_PROJECT);

  337.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  338.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  339.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  340.       // Should not be taken into account

  341.       newIssue());

  342.     fillComponentIssuesVisitorRule.setIssues(FILE_2_REF,

  343.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  344.       newHotspot(STATUS_TO_REVIEW, null).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  345.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  346.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  347.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED).setCreationDate(AFTER_LEAK_PERIOD_DATE),

  348.       newIssue());

  349. 

  350.     underTest.visit(ROOT_PROJECT);

  351. 

  352.     verifyHotspotStatusMeasures(FILE_1_REF, null, null);

  353.     verifyHotspotStatusMeasures(FILE_2_REF, null, null);

  354.     verifyHotspotStatusMeasures(DIRECTORY_REF, null, null);

  355.     verifyHotspotStatusMeasures(ROOT_DIR_REF, null, null);

  356.     verifyHotspotStatusMeasures(PROJECT_REF, 4, 3);

  357.   }

  358. 

  359.   @Test

  360.   public void compute_0_status_related_measures_when_no_hotspot() {

  361.     treeRootHolder.setRoot(ROOT_PROJECT);

  362. 

  363.     underTest.visit(ROOT_PROJECT);

  364. 

  365.     verifyHotspotStatusMeasures(PROJECT_REF, 0, 0);

  366.   }

  367. 

  368.   @Test

  369.   public void no_measure_if_there_is_no_period() {

  370.     periodsHolder.setPeriod(null);

  371.     treeRootHolder.setRoot(ROOT_PROJECT);

  372.     fillComponentIssuesVisitorRule.setIssues(FILE_1_REF,

  373.       newHotspot(STATUS_TO_REVIEW, null),

  374.       newHotspot(STATUS_REVIEWED, RESOLUTION_FIXED));

  375. 

  376.     underTest.visit(ROOT_PROJECT);

  377. 

  378.     assertThat(measureRepository.getAddedRawMeasures(PROJECT_REF).values()).isEmpty();

  379.   }

  380. 

  381.   private void verifyRatingAndReviewedMeasures(int componentRef, Rating expectedReviewRating, @Nullable Double expectedHotspotsReviewed) {

  382.     assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_REVIEW_RATING_KEY)).hasVariation(expectedReviewRating.getIndex());

  383.     if (expectedHotspotsReviewed != null){

  384.       assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_REVIEWED_KEY)).hasVariation(expectedHotspotsReviewed,

  385.         VARIATION_COMPARISON_OFFSET);

  386.     } else {

  387.       assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_REVIEWED_KEY)).isAbsent();

  388.     }

  389.   }

  390. 

  391.   private void verifyHotspotStatusMeasures(int componentRef, @Nullable Integer hotspotsReviewed, @Nullable Integer hotspotsToReview) {

  392.     if (hotspotsReviewed == null) {

  393.       Assertions.assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_REVIEWED_STATUS_KEY)).isEmpty();

  394.     } else {

  395.       assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_REVIEWED_STATUS_KEY)).hasVariation(hotspotsReviewed);

  396.     }

  397.     if (hotspotsReviewed == null) {

  398.       Assertions.assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_TO_REVIEW_STATUS_KEY)).isEmpty();

  399.     } else {

  400.       assertThat(measureRepository.getAddedRawMeasure(componentRef, NEW_SECURITY_HOTSPOTS_TO_REVIEW_STATUS_KEY)).hasVariation(hotspotsToReview);

  401.     }

  402.   }

  403. 

  404.   private static DefaultIssue newHotspot(String status, @Nullable String resolution) {

  405.     return new DefaultIssue()

  406.       .setKey(Uuids.create())

  407.       .setSeverity(MINOR)

  408.       .setStatus(status)

  409.       .setResolution(resolution)

  410.       .setType(RuleType.SECURITY_HOTSPOT)

  411.       .setCreationDate(DEFAULT_CREATION_DATE);

  412.   }

  413. 

  414.   private static DefaultIssue newIssue() {

  415.     return new DefaultIssue()

  416.       .setKey(Uuids.create())

  417.       .setSeverity(MAJOR)

  418.       .setType(RuleType.BUG)

  419.       .setCreationDate(DEFAULT_CREATION_DATE);

  420.   }

  421. 

  422. }