Workflow

Sonar-tools

Latest version: v3.8

Safety actively analyzes 706267 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 11

3.8

What's Changed

* Adjustments to SonarQube 10.8 (AI related features)
* Adjustments for better LTS (9.9) compatibility, Community Build and Developer Edition compatibility

* Bump version to 3.8 by okorach in https://github.com/okorach/sonar-tools/pull/1526
* fix: application update key typo 1528 by gimiki in https://github.com/okorach/sonar-tools/pull/1529
* Tests-for-issue-1528 by okorach in https://github.com/okorach/sonar-tools/pull/1530
* Update_for_10-8 by okorach in https://github.com/okorach/sonar-tools/pull/1532
* Add condition coverage by okorach in https://github.com/okorach/sonar-tools/pull/1534
* Generalize class APIs by okorach in https://github.com/okorach/sonar-tools/pull/1535
* Simplify delete of objects by okorach in https://github.com/okorach/sonar-tools/pull/1536
* Fix pageSize and page parameter depending on PAI version by okorach in https://github.com/okorach/sonar-tools/pull/1538
* User-and-group-management-for-sc by okorach in https://github.com/okorach/sonar-tools/pull/1540
* Fix double logging for IT tests by okorach in https://github.com/okorach/sonar-tools/pull/1541
* Compatibility LTS by okorach in https://github.com/okorach/sonar-tools/pull/1543
* Fix QG copy by okorach in https://github.com/okorach/sonar-tools/pull/1544
* Fixes 1542 by okorach in https://github.com/okorach/sonar-tools/pull/1546
* Performance-for-ai-code-fix by okorach in https://github.com/okorach/sonar-tools/pull/1547
* Improve groups coverage by okorach in https://github.com/okorach/sonar-tools/pull/1548
* Improve-users-coverage by okorach in https://github.com/okorach/sonar-tools/pull/1549
* Fix-lts by okorach in https://github.com/okorach/sonar-tools/pull/1550
* More tests by okorach in https://github.com/okorach/sonar-tools/pull/1551
* Update copyright to 2025 by okorach in https://github.com/okorach/sonar-tools/pull/1553
* projects_cli tests by okorach in https://github.com/okorach/sonar-tools/pull/1554
* CE and DE better support by okorach in https://github.com/okorach/sonar-tools/pull/1556
* Hide tokens from all logs by okorach in https://github.com/okorach/sonar-tools/pull/1558

New Contributors
* gimiki made their first contribution in https://github.com/okorach/sonar-tools/pull/1529

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.7...3.8

3.7

Description
Numerous hardening, functional and performance improvements on `sonar-audit`, `sonar-measures-export`, `sonar-findings-export`

**sonar-config**:
- import of portfolios should be more stable
- import of quality profiles should be much faster

**sonar-audit**:
- Fix several cases of crash
- New check: Tokens with no expiration date

**sonar-measures-export**:
- Fixed export with --ratingsAsNumbers and --percentsAsString
- Measures that are % are now exported as a float between 0 and 1 (instead of 0 and 100). When --percentsAsString it is exported as 0% to 100% with rounding to 0.1%
- In CSV, added header with all field names
- Additional measures are sorted to always come in same order for each export

**sonar-findings-export**:
- Issue tags are sorted to always come in same order for each export

What's Changed
* Bump version 3.7 by okorach in https://github.com/okorach/sonar-tools/pull/1484
* Fixes 1483 by okorach in https://github.com/okorach/sonar-tools/pull/1485
* More unit tests on issues, changelog and DCE SIF by okorach in https://github.com/okorach/sonar-tools/pull/1489
* Kill tech debt 2 by okorach in https://github.com/okorach/sonar-tools/pull/1491
* Housekeeper fixes by okorach in https://github.com/okorach/sonar-tools/pull/1496
* Audit tokens with no expiration date by okorach in https://github.com/okorach/sonar-tools/pull/1497
* Accelerate findings tests by okorach in https://github.com/okorach/sonar-tools/pull/1498
* Speed up tests by okorach in https://github.com/okorach/sonar-tools/pull/1499
* Move tags in sonar object by okorach in https://github.com/okorach/sonar-tools/pull/1503
* Fix ratingsAsNumber option not working by okorach in https://github.com/okorach/sonar-tools/pull/1504
* Few a few measures issues by okorach in https://github.com/okorach/sonar-tools/pull/1506
* User tests by okorach in https://github.com/okorach/sonar-tools/pull/1507
* Projects export and issues test coverage by okorach in https://github.com/okorach/sonar-tools/pull/1510
* Coverage on quality profile by okorach in https://github.com/okorach/sonar-tools/pull/1512
* Build-improvements by okorach in https://github.com/okorach/sonar-tools/pull/1513
* added logic to deactivate rules which are not present in the import by kmoens in https://github.com/okorach/sonar-tools/pull/1511
* Add rule deactivation and set_rules by okorach in https://github.com/okorach/sonar-tools/pull/1516
* Speed up import of QP by okorach in https://github.com/okorach/sonar-tools/pull/1517
* Docker improvements by okorach in https://github.com/okorach/sonar-tools/pull/1518
* Remove empty tags from apps export by okorach in https://github.com/okorach/sonar-tools/pull/1521
* Honor-audit-disabling by okorach in https://github.com/okorach/sonar-tools/pull/1523
* sonar-config option for empty values by okorach in https://github.com/okorach/sonar-tools/pull/1524
* Housekeeper send to file by okorach in https://github.com/okorach/sonar-tools/pull/1525

New Contributors
* kmoens made their first contribution in https://github.com/okorach/sonar-tools/pull/1511

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.6...3.7

3.6

* Numerous hardening and improvemenst on `sonar-audit`, `sonar-measures-export`, `sonar-findings-sync`, `sonar-config`
See https://github.com/okorach/sonar-tools/milestone/40?closed=1
* Added documentation of `sonar-rules`

What's Changed
* Update 3.5 docs by okorach in https://github.com/okorach/sonar-tools/pull/1420
* Own UA for each tool by okorach in https://github.com/okorach/sonar-tools/pull/1422
* Mutualize migration and config by okorach in https://github.com/okorach/sonar-tools/pull/1423
* Fix Python 3.8 dependency by okorach in https://github.com/okorach/sonar-tools/pull/1425
* Clean impacts implementation in findings-export by okorach in https://github.com/okorach/sonar-tools/pull/1427
* Guess lang of external rules when missing by okorach in https://github.com/okorach/sonar-tools/pull/1430
* Fix random order of metrics when using -m _all by okorach in https://github.com/okorach/sonar-tools/pull/1431
* Fix-regression-on-issues by okorach in https://github.com/okorach/sonar-tools/pull/1435
* Fix findings test to take into account MQR by okorach in https://github.com/okorach/sonar-tools/pull/1436
* Header for sonar-rules CSV by okorach in https://github.com/okorach/sonar-tools/pull/1437
* Audit analysis warnings on branches 776 by okorach in https://github.com/okorach/sonar-tools/pull/1439
* Add dart and jupyter as standard language settings by okorach in https://github.com/okorach/sonar-tools/pull/1441
* Import hardening 1 by okorach in https://github.com/okorach/sonar-tools/pull/1446
* Import hardening portfolios by okorach in https://github.com/okorach/sonar-tools/pull/1452
* sonar-config import hardening by okorach in https://github.com/okorach/sonar-tools/pull/1455
* Hardening from tests by okorach in https://github.com/okorach/sonar-tools/pull/1459
* Abstract cache implementation by okorach in https://github.com/okorach/sonar-tools/pull/1460
* Findings sync hardening by okorach in https://github.com/okorach/sonar-tools/pull/1463
* Exception handler by okorach in https://github.com/okorach/sonar-tools/pull/1465
* Fix speed of SC/SQ rule/QP export by okorach in https://github.com/okorach/sonar-tools/pull/1467
* Fix 10000 rules limit by okorach in https://github.com/okorach/sonar-tools/pull/1470
* MQR rules and legacy severity by okorach in https://github.com/okorach/sonar-tools/pull/1472
* Adjust tests on rules and findings for 9.9 by okorach in https://github.com/okorach/sonar-tools/pull/1473
* Fixes 1222 by okorach in https://github.com/okorach/sonar-tools/pull/1474
* Maintenance October 2024 by okorach in https://github.com/okorach/sonar-tools/pull/1476
* json data as public SQ object attribute by okorach in https://github.com/okorach/sonar-tools/pull/1477
* Fixes 1478 + Audit refactoring for conciseness by okorach in https://github.com/okorach/sonar-tools/pull/1479
* Simplify export and audit by okorach in https://github.com/okorach/sonar-tools/pull/1480
* Adjust-tests by okorach in https://github.com/okorach/sonar-tools/pull/1481
* Update 3.6 by okorach in https://github.com/okorach/sonar-tools/pull/1482


**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.5...3.6

3.5

What's Changed
* Many performance improvements
* `sonar-audit` improvements
* Output audit problems on the fly 1395
* Several fixes:
* 1417
* 1415
* 1411
* 1386
* `sonar-config` fix 1326
* Include **dart** and **ipython** as built-in languages since they were introduced in SonarQube 10.7
* Display HTTP requests durations in logs

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.4...3.5

3.4.2

What's Changed

2 hot fixes:
In 3.4.2 - 1386
In 3.4.1 - 1358
**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.4.1..3.4.2

3.4

What's Changed

- `sonar-tools` is now also shipped as a docker image. See https://github.com/okorach/sonar-tools?tab=readme-ov-file#docker on how to use `sonar-tools` in docker
- `sonar-config` can now export configuration in YAML format. Import of YAML format is not yet supported
- `sonar-config` can now import configuration in SonarCloud (experimental alpha version)
- Several fixes

Details
* Bump version to 3.4 by okorach in https://github.com/okorach/sonar-tools/pull/1261
* Add docker image by okorach in https://github.com/okorach/sonar-tools/pull/1263
* Handle file write access denied by okorach in https://github.com/okorach/sonar-tools/pull/1269
* Add SonarQube URL in sonar-config export by okorach in https://github.com/okorach/sonar-tools/pull/1270
* Check inputs files and raise clean errors when can't read by okorach in https://github.com/okorach/sonar-tools/pull/1272
* Remove calls to deprecated user and group APIs by okorach in https://github.com/okorach/sonar-tools/pull/1274
* Simplify output format selection by okorach in https://github.com/okorach/sonar-tools/pull/1276
* More consistent projects export/import CLI by okorach in https://github.com/okorach/sonar-tools/pull/1278
* Allows JSON and CSV export formats by okorach in https://github.com/okorach/sonar-tools/pull/1279
* Fixes by okorach in https://github.com/okorach/sonar-tools/pull/1280
* Gracefully handle HTTP errors in threads by okorach in https://github.com/okorach/sonar-tools/pull/1281
* YAML sonar-config export beta by okorach in https://github.com/okorach/sonar-tools/pull/1282
* Improve YAML output by okorach in https://github.com/okorach/sonar-tools/pull/1289
* Config import sonarcloud alpha by okorach in https://github.com/okorach/sonar-tools/pull/1291
* Fix 1286 by okorach in https://github.com/okorach/sonar-tools/pull/1293
* Fixes 1287 by okorach in https://github.com/okorach/sonar-tools/pull/1294
* Fix 1288 by okorach in https://github.com/okorach/sonar-tools/pull/1295
* Fixes 1301 by okorach in https://github.com/okorach/sonar-tools/pull/1302
* Fixes 1303 by okorach in https://github.com/okorach/sonar-tools/pull/1319
* Exclude migration tool from coverage & duplication by okorach in https://github.com/okorach/sonar-tools/pull/1321
* Add-basic-sonar-migration-test by okorach in https://github.com/okorach/sonar-tools/pull/1322


**Full Changelog**: https://github.com/okorach/sonar-tools/compare/3.3...3.4

Page 1 of 11

Links

Releases

Has known vulnerabilities

Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.