Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-12962

Display new Security Review measures in Projects/Applications Overview page

    XMLWordPrintable

    Details

    • Edition:
      Enterprise
    • Production Notes:
      None

      Description

      Description

      The Security Review Rating is added in the same way the Security Rating is displayed.

      • Add a new row Security Review after the Security row and before the Maintainability one.
      • Remove the "Security Hotspots" measure from the "Security" row.
      • This applies for "New Code" and "Overall Code"
      • The Security Rating and Security Hotspots Reviewed % are showed in this new row

      New metrics

      • security_review_rating
      • security_hotspots_reviewed (%)
      • new_security_review_rating
      • new_security_hotspots_reviewed (%)

      Security Hotspots Reviewed Measure and Formula

      The formula behind Security Review Rating should be updated and based on a newly introduced measure called: Security Hotspots Reviewed.

      It is computed by doing a ratio between the number of Reviewed (Fixed or Safe) and To_Review Security Hotspots.

      Number of Reviewed (Fixed or Safe) Security Hotspots x 100 / Number of To_Review Security Hotspots + Reviewed Security Hotspots
      

      Security Review Rating Ranges

      Security Review Rating value is based on the value of the Security Hotspots Reviewed measure following this table:

      Rating Range
      A >= 80%
      B >= 70% and < 80%
      C >= 50% and < 70%
      D >= 30% and < 50%
      E < 30%

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              jacek.poreda Jacek Poreda
              Reporter:
              julien.lancelot Julien Lancelot
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved: