Workflow

Sonar-tools

Latest version: v3.0

Safety actively analyzes 629959 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 3 of 9

2.4

Updates
- Multi-threading for sonar-audit, sonar-findings-export and sonar-config --export for important performance (speed) gains
Several new sonar-audit audited items
- Several optimizations (caching) have been implemented to reduce number of SonarQube API calls
- Several new elements audited by sonar-audit
- All tools that connect to a SonarQube server can not specify a client certificate if needed
- Potentially long running tools displays in the logs the total execution time at end of execution
- See [What's new](doc/what-is-new.md) for more details

What's Changed
* audit displays project name when wrong permissions by okorach in https://github.com/okorach/sonar-tools/pull/764
* Audit selected keys by okorach in https://github.com/okorach/sonar-tools/pull/771
* Check existence of both main and master branch by okorach in https://github.com/okorach/sonar-tools/pull/774
* Audit global webhooks delivery failures by okorach in https://github.com/okorach/sonar-tools/pull/776
* URLs in audit reports by okorach in https://github.com/okorach/sonar-tools/pull/778
* Audit failed background tasks by okorach in https://github.com/okorach/sonar-tools/pull/781
* Dynamic determination of LTS and LATEST for audit by okorach in https://github.com/okorach/sonar-tools/pull/782
* Audit permission templates by okorach in https://github.com/okorach/sonar-tools/pull/783
* Improve performance on rules/QP management by okorach in https://github.com/okorach/sonar-tools/pull/786
* Support client certificates by okorach in https://github.com/okorach/sonar-tools/pull/790
* Export informative properties by okorach in https://github.com/okorach/sonar-tools/pull/791
* Fix Settings.set to add value to params by okorach in https://github.com/okorach/sonar-tools/pull/792
* Fix set apps with projects main branch by okorach in https://github.com/okorach/sonar-tools/pull/795
* Fix-bug-on-project-branches-retrieval by okorach in https://github.com/okorach/sonar-tools/pull/796
* Create projects submodule by okorach in https://github.com/okorach/sonar-tools/pull/797
* Create tools module by okorach in https://github.com/okorach/sonar-tools/pull/798
* Reduce-nrb-of-API-calls by okorach in https://github.com/okorach/sonar-tools/pull/799
* Multi-threaded project export and audit by okorach in https://github.com/okorach/sonar-tools/pull/801
* Multi-thread projects export as zip by okorach in https://github.com/okorach/sonar-tools/pull/804
* Threaded objects search by okorach in https://github.com/okorach/sonar-tools/pull/807
* Multi-threaded findings-search by okorach in https://github.com/okorach/sonar-tools/pull/811
* Audit scanner version by okorach in https://github.com/okorach/sonar-tools/pull/812
* Add support audit tool by okorach in https://github.com/okorach/sonar-tools/pull/814
* Add ability to comment the support ticket by okorach in https://github.com/okorach/sonar-tools/pull/815
* Verify scanner version is not to far back by okorach in https://github.com/okorach/sonar-tools/pull/816
* Add what's new by okorach in https://github.com/okorach/sonar-tools/pull/817
* Fix IT by okorach in https://github.com/okorach/sonar-tools/pull/818

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v2.3...v2.4

2.3

What's Changed

`sonar-config` now lets you import a SonarQube configuration described as JSON, either the result of a previous export or a manually modified JSON config as code.
The JSON format produced by `sonar-config` export has also been slightly modified in places, mostly to be more compact

* Some hardening fixes by okorach in https://github.com/okorach/sonar-tools/pull/620
* Export project webhooks by okorach in https://github.com/okorach/sonar-tools/pull/622
* Import global settings by okorach in https://github.com/okorach/sonar-tools/pull/617
* Import permission templates by okorach in https://github.com/okorach/sonar-tools/pull/625
* Import groups by okorach in https://github.com/okorach/sonar-tools/pull/627
* import users by okorach in https://github.com/okorach/sonar-tools/pull/632
* Import quality gates by okorach in https://github.com/okorach/sonar-tools/pull/638
* Import quality profiles by okorach in https://github.com/okorach/sonar-tools/pull/642
* Import perm template permissions by okorach in https://github.com/okorach/sonar-tools/pull/648
* Export if QP is default by okorach in https://github.com/okorach/sonar-tools/pull/649
* Import projects by okorach in https://github.com/okorach/sonar-tools/pull/651
* Import applications by okorach in https://github.com/okorach/sonar-tools/pull/652
* Import-portfolios by okorach in https://github.com/okorach/sonar-tools/pull/655
* More compact QP export by okorach in https://github.com/okorach/sonar-tools/pull/662
* Export instantiated rules by okorach in https://github.com/okorach/sonar-tools/pull/663
* Export rules and project tags by okorach in https://github.com/okorach/sonar-tools/pull/664
* Export portfolios and apps tags by okorach in https://github.com/okorach/sonar-tools/pull/665
* Import projects and apps tags by okorach in https://github.com/okorach/sonar-tools/pull/669
* Chose what to import by okorach in https://github.com/okorach/sonar-tools/pull/674
* Export customized rules (with custom tags or description) okorach in https://github.com/okorach/sonar-tools/pull/677
* Don't export rules of built-in QP and QG by okorach in https://github.com/okorach/sonar-tools/pull/679
* Import customized rules (tags, desc) by okorach in https://github.com/okorach/sonar-tools/pull/680
* Documentation by okorach in https://github.com/okorach/sonar-tools/pull/683
* simpler group export format by okorach in https://github.com/okorach/sonar-tools/pull/690
* Export import of main branch name by okorach in https://github.com/okorach/sonar-tools/pull/693
* Import DevOps integration settings by okorach in https://github.com/okorach/sonar-tools/pull/696
* Export protected branches by okorach in https://github.com/okorach/sonar-tools/pull/702
* Fix protected branches bug by okorach in https://github.com/okorach/sonar-tools/pull/703
* Handle import errors by okorach in https://github.com/okorach/sonar-tools/pull/704
* Import portfolio hierarchy by okorach in https://github.com/okorach/sonar-tools/pull/707
* Import subportfolios by okorach in https://github.com/okorach/sonar-tools/pull/709
* Apply non additive permissions by okorach in https://github.com/okorach/sonar-tools/pull/723
* Don't export empty descriptions by okorach in https://github.com/okorach/sonar-tools/pull/735
* Don't export branch-without-config by okorach in https://github.com/okorach/sonar-tools/pull/736
* Project settings import by okorach in https://github.com/okorach/sonar-tools/pull/741
* Import projects webhooks by okorach in https://github.com/okorach/sonar-tools/pull/744
* Import-specific-keys by okorach in https://github.com/okorach/sonar-tools/pull/747
* Hardening sonar-config by okorach in https://github.com/okorach/sonar-tools/pull/756
* Fix regressions by okorach in https://github.com/okorach/sonar-tools/pull/757
* Compatibility developer and community edition by okorach in https://github.com/okorach/sonar-tools/pull/758
* Fix sonar-audit config creation by okorach in https://github.com/okorach/sonar-tools/pull/762
* Update docs by okorach in https://github.com/okorach/sonar-tools/pull/763


**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v2.2...v2.3

2.2

What's Changed
This is an important release for the "configuration as code" project aiming at exporting/importing SonarQube entire configuration as code, namely:
- All general configuration parameters (from the Administration pages)
- DevOps integration settings
- Language settings
- Global permissions and permission templates
- Applications and portfolio definitions
- Quality gates definition
- Quality profiles definition (including inheritance)
- Projects configuration (settings, permissions etc...)

See `sonar-config` documentation

The import function will come later.

Additionally a small addition has been made to the `sonar-audit` tool to detect the anomaly of DCE deployments with more than 3 search nodes.

What's Changed
* Export portfolios by okorach in https://github.com/okorach/sonar-tools/pull/552
* Export apps by okorach in https://github.com/okorach/sonar-tools/pull/553
* Export Apps by okorach in https://github.com/okorach/sonar-tools/pull/556
* export project branches in portfolios by okorach in https://github.com/okorach/sonar-tools/pull/558
* Export portfolios with subviews by okorach in https://github.com/okorach/sonar-tools/pull/559
* Tuning-config-json by okorach in https://github.com/okorach/sonar-tools/pull/566
* Selective export by okorach in https://github.com/okorach/sonar-tools/pull/567
* Export global permissions by okorach in https://github.com/okorach/sonar-tools/pull/569
* Export-portfolios-apps-permissions by okorach in https://github.com/okorach/sonar-tools/pull/570
* Templated rules and hierarchical QP by okorach in https://github.com/okorach/sonar-tools/pull/574
* Export groups and users by okorach in https://github.com/okorach/sonar-tools/pull/575
* Always export platform basic information by okorach in https://github.com/okorach/sonar-tools/pull/577
* Black reformatting by okorach in https://github.com/okorach/sonar-tools/pull/578
* Qp-diff-in-hierarchy by okorach in https://github.com/okorach/sonar-tools/pull/579
* Add sonar-config IT tests by okorach in https://github.com/okorach/sonar-tools/pull/580
* Allow config output file by okorach in https://github.com/okorach/sonar-tools/pull/583
* Fix sonar-config output (JSON) and add -f option by okorach in https://github.com/okorach/sonar-tools/pull/584
* Add sonar-config export import options by okorach in https://github.com/okorach/sonar-tools/pull/585
* Fix IT sonar-config by okorach in https://github.com/okorach/sonar-tools/pull/586
* Export-perm-templates by okorach in https://github.com/okorach/sonar-tools/pull/587
* Add sonar-config doc by okorach in https://github.com/okorach/sonar-tools/pull/589
* selective projects config export by okorach in https://github.com/okorach/sonar-tools/pull/592
* Fixes 593 by okorach in https://github.com/okorach/sonar-tools/pull/594
* Fine tuning sonar-config by okorach in https://github.com/okorach/sonar-tools/pull/596
* sonar-config fine tuning by okorach in https://github.com/okorach/sonar-tools/pull/597
* DCE with more than 3 search nodes by okorach in https://github.com/okorach/sonar-tools/pull/599


**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v2.0...v2.2

2.0

What's Changed
* Bump version 2.0 by okorach in https://github.com/okorach/sonar-tools/pull/494
* Export global settings by okorach in https://github.com/okorach/sonar-tools/pull/495
* Group settings by category by okorach in https://github.com/okorach/sonar-tools/pull/497
* export issue related parameters by okorach in https://github.com/okorach/sonar-tools/pull/498
* Export global new code definition by okorach in https://github.com/okorach/sonar-tools/pull/499
* Export 3rd party settings by okorach in https://github.com/okorach/sonar-tools/pull/502
* Export devops platforms by okorach in https://github.com/okorach/sonar-tools/pull/503
* Export-in-platform-item by okorach in https://github.com/okorach/sonar-tools/pull/504
* Export-project-settings by okorach in https://github.com/okorach/sonar-tools/pull/505
* New code on branches by okorach in https://github.com/okorach/sonar-tools/pull/507
* Release 1.14.x by okorach in https://github.com/okorach/sonar-tools/pull/515
* Fix due to change of method signature by okorach in https://github.com/okorach/sonar-tools/pull/516
* Fixes 517 - export devops bindings by okorach in https://github.com/okorach/sonar-tools/pull/518
* Export projects QP by okorach in https://github.com/okorach/sonar-tools/pull/519
* Export QP with rules by okorach in https://github.com/okorach/sonar-tools/pull/521
* Export QG by okorach in https://github.com/okorach/sonar-tools/pull/523
* Export project QG by okorach in https://github.com/okorach/sonar-tools/pull/526
* Fixes 500 by okorach in https://github.com/okorach/sonar-tools/pull/527
* Export QG specific permissions by okorach in https://github.com/okorach/sonar-tools/pull/528
* Perf QP export by okorach in https://github.com/okorach/sonar-tools/pull/529
* Export QP permissions by okorach in https://github.com/okorach/sonar-tools/pull/530
* Export-platform-edition-version by okorach in https://github.com/okorach/sonar-tools/pull/531
* Fixes 533 by okorach in https://github.com/okorach/sonar-tools/pull/534
* Cleanup-JSON-format by okorach in https://github.com/okorach/sonar-tools/pull/536
* Export-project-links by okorach in https://github.com/okorach/sonar-tools/pull/537
* Export webhooks by okorach in https://github.com/okorach/sonar-tools/pull/538
* Export permissions by okorach in https://github.com/okorach/sonar-tools/pull/541
* Refactor permissions by okorach in https://github.com/okorach/sonar-tools/pull/542
* Refactor QP/QG permissions by okorach in https://github.com/okorach/sonar-tools/pull/544
* Fix-540 by okorach in https://github.com/okorach/sonar-tools/pull/545
* Add sonar-config IT by okorach in https://github.com/okorach/sonar-tools/pull/548


**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v1.14.1...v2.0

1.14.1

What's Changed
* Hardening sonar-loc, sonar-findings-export and sonar-measures-export by okorach in https://github.com/okorach/sonar-tools/pull/511

Fixes:
509
510
512
513
514

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v1.14...v1.14.1

1.14

What's Changed
* Refactoring: common args for all tools by okorach in https://github.com/okorach/sonar-tools/pull/442
* Fixes 445 - `sonar-findings-export` verifies cmd line inputs and fails gracefully if incorrect okorach in https://github.com/okorach/sonar-tools/pull/446
* Fixes 99 - Changed repo name from `sonarqube-tools` to `sonar-tools` by okorach in https://github.com/okorach/sonar-tools/pull/447
* Fixes 272 - `sonar-findings-export` stream findings output by okorach in https://github.com/okorach/sonar-tools/pull/448
* Fixes 449 - `sonar-findings-export` and `sonar-measures-export` fail gracefully when non existing project key is given okorach in https://github.com/okorach/sonar-tools/pull/451
* Fixes 450 - All script return well define exit codes in case of error by okorach in https://github.com/okorach/sonar-tools/pull/451

**Full Changelog**: https://github.com/okorach/sonar-tools/compare/v1.13...v1.14

Page 3 of 9

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.