Skip to content

Releases: Accenture/EcoSonar

Release 3.7

20 Sep 12:55
@ashvinappi ashvinappi
3.7
e7c36b4
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Release 3.7 Latest
Latest

Version 3.7 , 20/09/2024

Added

  • Added a new api to view application logs from swagger directly
  • Added authentication for swagger
  • Added a button to launch analysis from sonarqube
  • Added configuration table to change param dynamically
  • Encryption of password in database for new userflow

Changed

  • Updated ecocode plugins (except C#)
  • Swagger.js : Documentation updated

What's Changed

Full Changelog: 3.6...3.7

Contributors

ashvinappi
Assets 2
Loading

Release 3.6

04 Jun 15:32
@sboudaya sboudaya
3.6
0f9378d
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Release 3.6

Version 3.6 , 04/06/2024

Changed

  • User flow : Bug fix, ability to add a user flow with CSS selectors for authentication
  • Proxy : Bug fix in string to object cast
  • Swagger.js : Documentation updated
  • USER GUIDE updated for authentication
  • EcoCode upgrade
Assets 2
Loading

Release 3.5

18 Mar 15:49
@sboudaya sboudaya
3.5
2ed174c
Compare
Choose a tag to compare
Release 3.5

Added

  • Include in the API to launch an EcoSonar analysis and the crawling the username and password used for the project (avoid to have login details saved in clear in database)
  • Integrate Ecocode plugins with latest release
  • Include Helmet configuration

Removed

  • yaml configuration for authentication and user flow

Changed

  • Update save login configuration for multi pages to not save in clear username and password (use instead %USERNAME% AND %PASSWORD%)
  • Update EcoSonar-API components to their latest versions
  • Move all API Endpoints to return 200 with empty list or object instead of 400 error code with a message error
  • Review all logging messages
  • Fix security vulnerabilities on code (CodeQL)
Assets 2
Loading

Release 3.4

11 Jan 09:53
@alicehaupais alicehaupais
3.4
e85127a
Compare
Choose a tag to compare
Release 3.4

ADDED
Delete a project in EcoSonar
Retrieve EcoSonar version with a new endpoint
Retrieve best practices documentation with a new endpoint

CHANGED
Change the way to handle the crawler. The crawler request is now asynchronous and you will have two saving options. Either, you can save in a temporary table or you can save directly in the URL configuration table as to be audited by EcoSonar.
Seperate save login and save proxy as two independent endpoints
Made easier to launch locally EcoSonar by adding the MongoDB database setup in the Docker Compose file
Fix bug : insert login without having a procedure
Fix security vulnerability : upgrade SonarQube dependency to version 9.4 in EcoSonar SonarQube plugin

Assets 2
Loading

Release 3.3

08 Nov 09:58
@alicehaupais alicehaupais
3.3
6b01110
Compare
Choose a tag to compare
Release 3.3

ADDED

  • Integrate new EcoCode features including :
    additional rules for Python and PHP
    new languages covered : Javascript, Typescript, Android and iOS
  • Implement Swagger User Interface for a more friendly user interface of the API
  • Automatically push a new Docker Image as a Github package for each new commit in the 'main' branch of the Github repository
  • Add new API Endpoints to retrieve projects scores average at a selected date with filter and sorting configuration

CHANGED

Fix some security vulnerabilities

Assets 2
Loading