Skip to content

Latest commit

 

History

History
298 lines (228 loc) · 14.4 KB

CHANGELOG.md

File metadata and controls

298 lines (228 loc) · 14.4 KB

Changelog (1.0.0 - 5.3.0)

All notable changes of version 1.0.0 - 5.3.0 are documented in this file. All future changes will be automatically logged by release drafter in GitHub releases.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Fixed

  • JENKINS-57709: Fixed class loading problems if Git plugin is not installed.

Added

  • JENKINS-58056, PR#113: Added option to fail a build if errors have been reported during the execution of the issues recording step.

Removed

  • Removed dependency to Git plugin. Now all code required to invoke Git blame for all affected files has been moved to the new Jenkins plugins forensics-api and git-forensics. All SCM and Git related classes (blame) have been removed as well.

5.3.0 - 2019-7-4

Added

5.2.1 - 2019-7-1

Fixed

  • JENKINS-58253: Restored deprecated quality gate properties so that old scripts will still work.

5.2.0 - 2019-6-27

Added

  • JENKINS-39203, PR#58: Mark only the failed stage as unstable if a quality gate is failed. Other stages will not be affected anymore.
  • JENKINS-57098, PR#177, PR#168: Added a generic JSON parser that reads all properties of the internal Issue object.
  • PR#57: Added a parser for MentorGraphcis Modelsim/Questa.
  • JENKINS-57245, PR#111: Added a Kotlin Parser.

Fixed

  • JENKINS-56007: Obtain the affected files in a process on the master (rather than pushing them from the agent to the master) so that master - agent security will not block the copy process.
  • Fix resetting of reference build in Firefox.

5.1.0 - 2019-5-31

Fixed

  • Persisted XSS vulnerability in Warnings Next Generation Plugin (SECURITY-1373 / CVE-2019-10325): Plugin rendered the name of a custom warnings parser unescaped on Jenkins web pages. This allowed attackers with Job/Configure permission to define a custom parser whose name included HTML and JavaScript, resulting in a persisted cross-site scripting vulnerability. Plugin now properly escapes custom warnings parser names.

  • CSRF vulnerability in Warnings Next Generation Plugin (SECURITY-1391 / CVE-2019-10326): Plugin did not require that requests sent to the endpoint used to reset warning counts use POST. This resulted in a cross-site request forgery vulnerability that allows attackers to reset warning counts for future builds. Plugin now requires that these requests be sent via POST.

5.0.0 - 2019-5-7

Added

I finally managed it to port the charting functionality of the former analysis-collector plugin:

  • Trend chart (job page): shows the warnings of all static analysis results in a single chart.
  • Portlet (dashboard view): shows the number of warnings from all jobs in the view in a chart.

Additional new features:

Fixed

  • Added missing dependency to JSON-Smart library.
  • JENKINS-56484, analysis-model-PR#19: Filter TimeStamper Console log decorations
  • PR#19: Use BuildStepMonitor.NONE in step to allow for higher concurrency.
  • JENKINS-56324: If an issue in the current build is equal to several issues in the reference build then select the issue with the same fingerprint as the outstanding issue.

Changed

  • Decreased visibility of several internal elements
  • [API]: Refactored trend chart API

Removed

  • [API]: Removed trend chart aggregation methods.

4.0.0 - 2019-3-15

Added

  • Added new trend charts that show the trend of issues by severity, tools, and project health. See documentation for more details.
  • Enabled zooming (by number of visible build) in trend charts
  • Enabled switching of X-axis type: charts can show the results either by build number or date
  • Responsive design of details page: depending on the resolution of your display, different UI representations will be used.
  • PR#103, PR#13: New parser for IAR CSTAT warnings.
  • JENKINS-56418, PR#18: Added Robot Framework icons.
  • PR#14: Added Pylint icons.
  • PR#15: Add package and module support for Pylint and updated the documentation for the format to use.

Fixed

Changed

  • [API]: Completely rewritten charts API.

3.0.3 - 2019-2-18

3.0.1 - 2019-2-15

Fixed

  • JENKINS-56142: Fixed broken quality gate UI configuration (snippet generator).
  • JENKINS-50355: Fixed validation of DRY thresholds.
  • JENKINS-56103: Changed ID/URL of Maven Console Parser to 'maven-warnings' since 'maven' is already used by another plugin.
  • JENKINS-55436: Changed step symbol of PMD to 'pmdParser' and AndroidLint to 'androidLintParser' since 'pmd' and 'androidLint' are already used as step names of other plugins.

3.0.0 - 2019-2-13

Added

  • JENKINS-54550, JENKINS-52098: Simplified and enhanced quality gates configuration: available properties are now the total number of warnings, the number of new warnings, or the delta between two builds. Additionally, thresholds can be provided for all issues or for a specific severity only.

2.2.1 - 2019-2-07

Fixed

  • JENKINS-55846: ErrorProne parser: Added support for Gradle reports.

2.2.0 - 2019-2-07

Added

Fixed

  • Fixed validation of Groovy parsers

2.1.2 - 2019-1-28

Fixed

2.1.1 - 2019-1-21

Fixed

  • Fixed NPE in column and portlet after restart of Jenkins.

2.1.0 - 2019-1-21

Added

  • JENKINS-55500: dashboard view portlet
    • make tool selection configurable
    • provide direct links to the analysis results
  • JENKINS-52755, JENKINS-54239: View column that shows the number of issues.
  • Click on trend chart to navigate to selected analysis results.

Fixed

2.0.0 - 2019-1-15

Added

  • New source code view based on Prism. Provides client side syntax highlighting for several languages. Thanks to Philippe Arteau for the PR.
  • Support for ErrorProne in maven builds. Parser now reports description with link to external documentation.
  • JENKINS-55500: Added a portlet that renders a two-dimensional table of issues per type and job

Changed

  • [API]: Replaced CheckForNull annotations with Nullable in order to enable NullAway checker in build

Fixed

  • JENKINS-55514: Fixed handling of severity mappings with FindBugs (rank vs. priority).
  • JENKINS-55513: Show 'loading...' message while the issues are loaded dynamically from the server.
  • JENKINS-55511: Fixed rendering of issues table: check if order column in browsers local storage is valid before applying it.
  • JENKINS-55495: Use Bootstrap to render the fixed issues table.
  • JENKINS-55337: Navigate to maven warnings in console log view
  • Maven Parser: Disabled post processing on agent since there are no source files involved.
  • Do not show empty paragraph if issues have no message.

1.0.1 - 2018-12-28

Fixed

1.0.0 - 2018-12-20

First public release.