Workflow

Sonar-tools

Latest version: v3.6

Safety actively analyzes 681866 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 6 of 10

1.10

What's Changed

* Fixes 320 - Renamed `sonar-issues-export` into `sonar-findings-export` by okorach in https://github.com/okorach/sonarqube-tools/pull/341
sonar-issues-export still available for backward compatibility but it is deprecated
* Fixes 325 - `sonar-audit`: Added more suspicious exclusions checks - Audit for **/* exclusions by okorach in https://github.com/okorach/sonarqube-tools/pull/327
* Fixes 326 - `sonar-audit`: Fixed crash when validating bindings on SonarQube 9.x for projects with no bindings by okorach in https://github.com/okorach/sonarqube-tools/pull/328
* Fixes 324 - `sonar-audit`: Made binding validation configurable (off by default): by okorach in https://github.com/okorach/sonarqube-tools/pull/329
* Fixes 331 - `sonar-audit`: Users and Groups audit is configurable: by okorach in https://github.com/okorach/sonarqube-tools/pull/332
* Fixes 323 - `sonar-audit`: Audit projects and branches with 0 LoC - Fixes 323 by okorach in https://github.com/okorach/sonarqube-tools/pull/334
Idea credit to kjazz, man !
* Fixes 333 - `sonar-audit` fails on projects with no background tasks by okorach in https://github.com/okorach/sonarqube-tools/pull/335
* Made URL export configurable in `sonar-findings-export` and `sonar-measure-export` -
Fixes 319 by okorach in https://github.com/okorach/sonarqube-tools/pull/336
Fixes 318 by okorach in https://github.com/okorach/sonarqube-tools/pull/339
Fixes 337 by okorach in https://github.com/okorach/sonarqube-tools/pull/340
* Fixes 342 - `sonar-audit` exit code 0 on success by okorach in https://github.com/okorach/sonarqube-tools/pull/344
* Fixes 343 - `sonar-findings-export`: Performance fix related to pagination on by okorach in https://github.com/okorach/sonarqube-tools/pull/344
* Fixes 348 - `sonar-findings-export`: Performance fix to generate URL on the fly by okorach in https://github.com/okorach/sonarqube-tools/pull/349

**Full list of fixed issues**: https://github.com/okorach/sonarqube-tools/issues?q=is%3Aissue+milestone%3Av1.10
**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.9...v1.10

1.9

What's Changed

sonar-audit
* Fixes 309 - [sonar-audit no longer audit some global settings](https://github.com/okorach/sonarqube-tools/issues/309)
* Fixes 310 - [sonar-audit fails on dropped setting sonar.dbcleaner.daysBeforeDeletingInactiveBranches with SQ 8.9+](https://github.com/okorach/sonarqube-tools/issues/310)
* Hardening okorach in https://github.com/okorach/sonarqube-tools/pull/312
* Added non regression tests okorach in https://github.com/okorach/sonarqube-tools/pull/315
* Fixes 232 - [Audit multiple (non monorepo) projects bound to same DevOps platform repository](https://github.com/okorach/sonarqube-tools/issues/232) in https://github.com/okorach/sonarqube-tools/pull/317
* Fixes 316 - [Audit invalid project bindings](https://github.com/okorach/sonarqube-tools/issues/316) okorach in https://github.com/okorach/sonarqube-tools/pull/317

**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.8...v1.9

1.8.1

What's Changed

sonar-audit
* Fixes 309 - [sonar-audit no longer audit some global settings](https://github.com/okorach/sonarqube-tools/issues/309)
* Fixes 310 - [sonar-audit fails on dropped setting sonar.dbcleaner.daysBeforeDeletingInactiveBranches with SQ 8.9+](https://github.com/okorach/sonarqube-tools/issues/310)

1.8

What's Changed

**sonar-issue-sync improvements**
- Can now sync all branches of a given project
- Can now sync all branches of same name across 2 projects
- Can now resync issue after a first sync
- 2 new configuration parameters (--nolink and --nocomment) to control sonar-issues-sync behaviour
- Default user assignment when original user does not exist on target platform
- Several bug fixes

* Fix-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/293
* Multiple-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/296
* Fixes 297 - Sync all issues of a given project by okorach in https://github.com/okorach/sonarqube-tools/pull/298
* Configurable-issue-sync by okorach in https://github.com/okorach/sonarqube-tools/pull/302
* Fixes 301 303 by okorach in https://github.com/okorach/sonarqube-tools/pull/304
* Fixes 300 - docs by okorach in https://github.com/okorach/sonarqube-tools/pull/305
* Fixes 160 - sync all branches of 2 projects on different platforms by okorach in https://github.com/okorach/sonarqube-tools/pull/307
* Fixes 306 - handle non existing user by okorach in https://github.com/okorach/sonarqube-tools/pull/308


**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.7...v1.8

1.7

What's Changed
* Ability to export issues, measures, LoCs and audit results in JSON on top of CSV
* Fixes in sonar-issues-export

sonar-audit
* Produce report in JSon format
* New audit capabilities:
* Fixes 263 - Audit empty groups by okorach in https://github.com/okorach/sonarqube-tools/pull/275
* Fixes 274 - Audit user who did not log in for some time by okorach in https://github.com/okorach/sonarqube-tools/pull/277
* Fixes 278 - Apps of Portfolios of a single project by okorach in https://github.com/okorach/sonarqube-tools/pull/282
* Fixes 281 - log4shell check by okorach in https://github.com/okorach/sonarqube-tools/pull/283
* Fixes 190 - sonar-audit should audit background tasks for suspicious exclusions by okorach in https://github.com/okorach/sonarqube-tools/pull/289

sonar-loc
* Fixes 253 - Export LoC in JSON by okorach in https://github.com/okorach/sonarqube-tools/pull/276

sonar-issues-export
* Fixes 256 - sonar-issues-export should allow to export issues in JSON format by okorach in https://github.com/okorach/sonarqube-tools/pull/284
* Fixes 273 - use export findings when possible for performance by okorach in https://github.com/okorach/sonarqube-tools/pull/284
* Fixes 288 - sonar-issue-search can miss issues in corner cases by okorach in https://github.com/okorach/sonarqube-tools/pull/287

sonar-measures-export
* Fixes 255 - sonar-measures-export should allow to export measures in JSON format by okorach in https://github.com/okorach/sonarqube-tools/pull/269

**Full Changelog**: https://github.com/okorach/sonarqube-tools/compare/v1.6.2...v1.7

1.6.2

sonar-housekeeper allows to define a list of users whose token will never be revoked even if they are old

This is controlled with the new `audit.tokens.neverExpire` configuration property of the $HOME/.sonar-audit.properties file.
Example:

`audit.tokens.neverExpire = admin, okorach`

Page 6 of 10

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.