Release Notes - SonarQube - Version 8.5 - HTML format

Bug

  • [SONAR-12339] - Extend a Quality Profile redirects to an error page
  • [SONAR-12459] - Security Category filters to non-security related issues for the "Others" category
  • [SONAR-12692] - Deletion & purge of projects and stale branches purge is too slow
  • [SONAR-12984] - Fix multi-location issue Keyboard navigation
  • [SONAR-13151] - api/issues/search page size parameter negative value should not be allowed
  • [SONAR-13445] - Fail to export project on Oracle and MSSQL
  • [SONAR-13451] - Commits not found on GitHub when there are more than 100 commits
  • [SONAR-13507] - Background task reload doesn't update as expected
  • [SONAR-13530] - Forms can be submitted even if submit button is disabled
  • [SONAR-13549] - Update description of 'permission' in WebServices
  • [SONAR-13559] - Can't connect to JMX in Compute Engine
  • [SONAR-13565] - Security report page exposes a broken link to hotspot when showing information for a portfolio
  • [SONAR-13569] - Misleading message for no new code
  • [SONAR-13575] - Component page doesn't always refresh after background task is completed
  • [SONAR-13589] - Creation menu tries to connect to Developer Edition+ only WS on Community Edition
  • [SONAR-13590] - SonarQube is not starting when in need of issues indexing
  • [SONAR-13591] - Rule tags are no more copied to issues tags
  • [SONAR-13592] - File facets on issues page are broken if using the facet search
  • [SONAR-13594] - Upgrade to 8.4 fails on MS SQL Server
  • [SONAR-13613] - DB migrations on upgrade fail due to orphan foreign keys
  • [SONAR-13665] - Filtering webhooks/deliveries returns wrong componentKey
  • [SONAR-13668] - Expanding a snippet up makes the bottom expand bar appear even if the eof has been reached
  • [SONAR-13698] - Project's alm setting is not purged when project is deleted
  • [SONAR-13699] - Purge profiling is missing
  • [SONAR-13708] - P/R purge should depend on last analysis date
  • [SONAR-13720] - File and Directory facets' search doesn't pass any branch parameters
  • [SONAR-13734] - Coverage might be missing when merging multiple reports
  • [SONAR-13735] - Fix error handling to not expose Tomcat messages
  • [SONAR-13739] - Import/export failure on issue change step
  • [SONAR-13755] - When searching for directory some query make the same directory appear several time
  • [SONAR-13759] - Analysis processing fails if no analysis since 7.2
  • [SONAR-13766] - PostProjectAnalysisTask's 'description' is a breaking change
  • [SONAR-13770] - An error is thrown when trying to update details of a group of users
  • [SONAR-13772] - User groups deletion do not behave properly
  • [SONAR-13773] - User group pagination is not updated properly
  • [SONAR-13782] - It's not possible for a rule key to be deprecated twice
  • [SONAR-13784] - Deleting project should make sure all components are removed
  • [SONAR-13786] - Issue message is not displayed correctly when it is too long
  • [SONAR-13790] - Security hotspot page fails to load hotspot that doesn't have associated lines of code
  • [SONAR-13802] - Having orphans favourite throw NPE on search api
  • [SONAR-13809] - SonarSource Terms and Conditions link is broken
  • [SONAR-13826] - api/qualityprofiles/backup is returning HTTP code 200 when errors happen
  • [SONAR-13827] - New Code Period set to "reference branch" is not detected with SVN
  • [SONAR-13847] - Project overview isn't refreshed after first analysis
  • [SONAR-13857] - Projects page - Security Review facet on new code period perspective is not working
  • [SONAR-13866] - It should not be possible to use a description of more than 256 characters when using api/views/add_sub_view
  • [SONAR-13900] - BitBucketServer Onboarding: web ui search results are only displayed within the first 25 projects

New Feature

  • [SONAR-13597] - Introduce distribution by main and test code in Issues page
  • [SONAR-13630] - Import a project from GitLab and auto-configure MR decoration
  • [SONAR-13633] - Detect existing projects during GitLab onboarding
  • [SONAR-13662] - PHP analysis updates
  • [SONAR-13666] - C# and VB.NET updates
  • [SONAR-13754] - Add a tutorial for GitLab CI/CD after the GitLab onboarding
  • [SONAR-13763] - VB.NET analysis updates
  • [SONAR-13829] - Python analysis updates
  • [SONAR-13833] - Java analysis updates
  • [SONAR-13875] - Display Security Hotspots in BitBucket Server pull request decoration
  • [SONAR-13901] - Provide DoD-Approved docker images in Platform1
  • [SONAR-13907] - JavaScript/TypeScript analysis updates
  • [SONAR-13909] - C# and VB.NET analysis updates
  • [SONAR-13910] - C/C++/Objective-C analysis updates
  • [SONAR-13914] - Java, PHP, C# taint analysis updates
  • [SONAR-13928] - CSS analysis updates

Task

  • [SONAR-11595] - Remove no more used columns from QUALITY_GATES table
  • [SONAR-12616] - Use new fields from api/measures/component
  • [SONAR-12749] - Fix sourceviewerheader code to keep it DRY
  • [SONAR-13619] - Add new 'contextbarZIndex' variable to theme.js
  • [SONAR-13747] - Drop unused DB columns related to periods
  • [SONAR-13785] - Complete migration of file sources with a DB migration
  • [SONAR-13791] - Matching a scanner report to an existing project is not resilient
  • [SONAR-13792] - Embed sonar-scm-git and sonar-scm-svn in the scanner engine
  • [SONAR-13800] - ITs for admin/groups
  • [SONAR-13806] - Move target of documentation links to the embedded doc when possible
  • [SONAR-13842] - Add to upgrade notes - SCM git and svn are now embeded
  • [SONAR-13870] - Add a referrer to all links to sonarqube.org
  • [SONAR-13905] - Fix potential vulnerabilities of bundled libraries

Improvement

  • [SONAR-10558] - Change message in projects list when main branch of project is not analyzed
  • [SONAR-11028] - Turning off developer nominative information
  • [SONAR-12122] - Let users know that a restart is needed before they uninstall a plugin
  • [SONAR-12620] - Auto-select the language when creating a Quality Profile
  • [SONAR-12695] - Make community's links in the footer more consistent
  • [SONAR-12698] - Tooltip font-size should be 13px
  • [SONAR-12841] - Support AES 256 Settings Encryption
  • [SONAR-12942] - Security hostpot category are not displayed properly with long category name
  • [SONAR-12950] - Add keyboard navigation to the hotpsots page
  • [SONAR-12996] - Copy-to-clipboard icon button is not accessible
  • [SONAR-13058] - Add tooltip to issue markers in code margin
  • [SONAR-13085] - Remove "Issues" subtitle in the facets because it's no longer relevant
  • [SONAR-13421] - Projects box improvements
  • [SONAR-13450] - Deprecate 'id' parameter in `api/user_groups/update`
  • [SONAR-13471] - Deprecate "periods" in api/qualitygates/project_status
  • [SONAR-13480] - Adapt Jenkins setup tutorial to handle Github Enterprise
  • [SONAR-13516] - Improve logs when GitHub pull request decoration fails
  • [SONAR-13518] - Drop unused DB indexes
  • [SONAR-13558] - MR decoration on GitLab should only delete the QG comment
  • [SONAR-13571] - Security hotspot list should make it obvious that some categories might be missing after the first data load
  • [SONAR-13572] - Add "Buffer Overflow" security category
  • [SONAR-13576] - Stop bundling SonarTS plugin
  • [SONAR-13581] - Capitalize creation menu items
  • [SONAR-13584] - Application creation form should mention "application" in the key field description rather than "portfolio"
  • [SONAR-13587] - Use singular/plural in issue event
  • [SONAR-13599] - Remove scope from Rules
  • [SONAR-13604] - Update deprecated endpoint to create GitHub application access tokens
  • [SONAR-13617] - Copy button should be centered in code snippet component
  • [SONAR-13618] - Warning displayed when a database upgrade is needed in sonar.log is badly formatted
  • [SONAR-13622] - Move keyboard shortcut cheatsheet in the UI
  • [SONAR-13628] - Allow users to define a GitLab PAT and verify it
  • [SONAR-13629] - Allow SQ users to search their GitLab projects during the GitLab onboarding
  • [SONAR-13637] - Improve error handling for GitLab-related endpoint
  • [SONAR-13643] - In-house plugins should not be displayed as plugins anymore
  • [SONAR-13644] - Simplify plugin management during version upgrade
  • [SONAR-13646] - API endpoint api/alm_settings/set_gitlab_binding: repository id is now mandatory
  • [SONAR-13671] - Add feature box to GitLab tab in settings
  • [SONAR-13688] - Update SonarQube install as a service on Windows
  • [SONAR-13689] - Support issue tracking links in languages documentation
  • [SONAR-13696] - drop PROJECT_ALM_BINDINGS table
  • [SONAR-13706] - Align issue description on baseline
  • [SONAR-13716] - Indexation success banner should go away on a page refresh and not require a manual action from the user
  • [SONAR-13749] - API endpoint api/alm_settings/create_gitlab & update_gitlab: url is now mandatory
  • [SONAR-13758] - Yellow in project homepage activity graph should have an explicit label
  • [SONAR-13767] - Fix formatting for MsSQL collation requirements
  • [SONAR-13796] - Display the full date and time when hovering the new code sentence in the overview
  • [SONAR-13825] - Make 'branch' and 'pullRequest' parameters public in 'measures/component' WS
  • [SONAR-13835] - api/qualitygates/search is not returning deterministic results when many projects have same name
  • [SONAR-13843] - Fail if git or svn plugins are installed
  • [SONAR-13844] - Rename repositories from 'SonarAnalyzer' to 'SonarQube'
  • [SONAR-13861] - Remove column 'key_type" from the table 'project_branches'
  • [SONAR-13862] - Allow dismissing specific analysis message types by the user
  • [SONAR-13867] - Raise analysis warning if there are unanalysed C/C++ files
  • [SONAR-13869] - Add a flag in telemetry to know if there's some c/c++ unanalyzed code
  • [SONAR-13880] - Internationalize DocTooltips

Documentation

  • [SONAR-12871] - Pull Request overview does not mention gitlab auto-detection of parameters
  • [SONAR-12897] - Document in Javadoc use of sonar-plugin-api-impl for testing
  • [SONAR-13497] - Improve WS documentation of /api/projects
  • [SONAR-13685] - Update User Guide Hierarchy
  • [SONAR-13687] - Update Quality Gate and LOC docs for Test Code Quality
  • [SONAR-13690] - Add how to stop SonarSource from searching for new plugins to Marketplace docs
  • [SONAR-13691] - Update Architecture and Integration page/Docs landing page
  • [SONAR-13701] - Update PR Decoration Docs to include GitLab Import
  • [SONAR-13741] - Remove reference to closing all outstanding Roslyn issues
  • [SONAR-13774] - Update commercial feature links in Apex and C Family docs
  • [SONAR-13787] - Clarify the PR Analysis Process
  • [SONAR-13795] - Fix landing page formatting for embedded docs
  • [SONAR-13828] - Update GitLab CI/CD docs for GitLab Tutorial
  • [SONAR-13831] - Remove references to languages plugins in the documentation
  • [SONAR-13832] - Update the SQ upgrade procedure in the documentation
  • [SONAR-13851] - PR Decoration doesn't require a Configuration name if using Developer Edition
  • [SONAR-13860] - Update Web API info in the documentation
  • [SONAR-13877] - DCE search nodes topology recommendation for HA
  • [SONAR-13892] - Add docker-compose.yml to Docker documentation

Edit/Copy Release Notes

The text area below allows the project release notes to be edited and copied to another document.