Sonar-tools

Latest version: v3.1

Safety actively analyzes 640400 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 5 of 9

1.9

What's Changed

sonar-audit
* Fixes 309 - [sonar-audit no longer audit some global settings](https://github.com/okorach/sonarqube-tools/issues/309)
* Fixes 310 - [sonar-audit fails on dropped setting sonar.dbcleaner.daysBeforeDeletingInactiveBranches with SQ 8.9+](https://github.com/okorach/sonarqube-tools/issues/310)
* Hardening okorach in https://github.com/okorach/sonarqube-tools/pull/312
* Added non regression tests okorach in https://github.com/okorach/sonarqube-tools/pull/315
* Fixes 232 - [Audit multiple (non monorepo) projects bound to same DevOps platform repository](https://github.com/okorach/sonarqube-tools/issues/232) in https://github.com/okorach/sonarqube-tools/pull/317
* Fixes 316 - [Audit invalid project bindings](https://github.com/okorach/sonarqube-tools/issues/316) okorach in https://github.com/okorach/sonarqube-tools/pull/317

**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.8...v1.9

1.8.1

What's Changed

sonar-audit
* Fixes 309 - [sonar-audit no longer audit some global settings](https://github.com/okorach/sonarqube-tools/issues/309)
* Fixes 310 - [sonar-audit fails on dropped setting sonar.dbcleaner.daysBeforeDeletingInactiveBranches with SQ 8.9+](https://github.com/okorach/sonarqube-tools/issues/310)

1.8

What's Changed

**sonar-issue-sync improvements**
- Can now sync all branches of a given project
- Can now sync all branches of same name across 2 projects
- Can now resync issue after a first sync
- 2 new configuration parameters (--nolink and --nocomment) to control sonar-issues-sync behaviour
- Default user assignment when original user does not exist on target platform
- Several bug fixes

* Fix-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/293
* Multiple-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/296
* Fixes 297 - Sync all issues of a given project by okorach in https://github.com/okorach/sonarqube-tools/pull/298
* Configurable-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/302
* Fixes 301 303 by okorach in https://github.com/okorach/sonarqube-tools/pull/304
* Fixes 300 - docs by okorach in https://github.com/okorach/sonarqube-tools/pull/305
* Fixes 160 - sync all branches of 2 projects on different platforms by okorach in https://github.com/okorach/sonarqube-tools/pull/307
* Fixes 306 - handle non existing user by okorach in https://github.com/okorach/sonarqube-tools/pull/308


**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.7...v1.8

1.7

What's Changed
* Ability to export issues, measures, LoCs and audit results in JSON on top of CSV
* Fixes in sonar-issues-export

sonar-audit
* Produce report in JSon format
* New audit capabilities:
* Fixes 263 - Audit empty groups by okorach in https://github.com/okorach/sonarqube-tools/pull/275
* Fixes 274 - Audit user who did not log in for some time by okorach in https://github.com/okorach/sonarqube-tools/pull/277
* Fixes 278 - Apps of Portfolios of a single project by okorach in https://github.com/okorach/sonarqube-tools/pull/282
* Fixes 281 - log4shell check by okorach in https://github.com/okorach/sonarqube-tools/pull/283
* Fixes 190 - sonar-audit should audit background tasks for suspicious exclusions by okorach in https://github.com/okorach/sonarqube-tools/pull/289

sonar-loc
* Fixes 253 - Export LoC in JSON by okorach in https://github.com/okorach/sonarqube-tools/pull/276

sonar-issues-export
* Fixes 256 - sonar-issues-export should allow to export issues in JSON format by okorach in https://github.com/okorach/sonarqube-tools/pull/284
* Fixes 273 - use export findings when possible for performance by okorach in https://github.com/okorach/sonarqube-tools/pull/284
* Fixes 288 - sonar-issue-search can miss issues in corner cases by okorach in https://github.com/okorach/sonarqube-tools/pull/287

sonar-measures-export
* Fixes 255 - sonar-measures-export should allow to export measures in JSON format by okorach in https://github.com/okorach/sonarqube-tools/pull/269

**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.6.2...v1.7

1.6.2

sonar-housekeeper allows to define a list of users whose token will never be revoked even if they are old

This is controlled with the new `audit.tokens.neverExpire` configuration property of the $HOME/.sonar-audit.properties file.
Example:

`audit.tokens.neverExpire = admin, okorach`

1.6.1

What's Changed

Improvements
- sonar-tools now also works with community edition

Details
* Fixes sonar-loc returns 0 LoC for projects on community edition 246 by okorach in https://github.com/okorach/sonarqube-tools/pull/247
* sonar-audit fails on community edition by okorach in https://github.com/okorach/sonarqube-tools/pull/251
* Display sonar-tools version on all scripts by okorach in https://github.com/okorach/sonarqube-tools/pull/258
* sonar-measures-export fix for community edition by okorach in https://github.com/okorach/sonarqube-tools/pull/261

Page 5 of 9

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.