Cxone release #50

michaelkubiaczyk · 2024-10-08T13:22:45Z

Changes

Tests
Documentation

Merge Michael's branch to cxone-dev

Adding support for CheckmarxOne

Cxone release

…SAP#5031) * Added pagination logic for retrieving projects from Black Duck server * fixed unit tests for getProject in blackduck * fixed unit tests for getProject in blackduck * fixed unit tests for getProject in blackduck

Co-authored-by: Ralf Pannemans <[email protected]>

Co-authored-by: jliempt <>

…AP#5032) * trust engine config and handelling for vault * add function for resolving trust engine reference * refactor * add basic test * adapt to new trust engine response format * remove accidental cyclic dependency * move trust engine hook config * refactor by separating code from vault * move trust engine files to own pkg * adapt to changes of previous commit * log full error response of trust engine API * enable getting multiple tokens from trustengine * remove comment * incorporate review comments * go generate * update unit tests * apply suggested changes from code review * fix unit tests * add unit tests for config pkg * make changes based on review comments * make trust engine token available in GeneralConfig and minor fixes * fix error logic when reading trust engine hook * make getResponse more flexible and update logging * update resource reference format * improve URL handling * improve logging * use errors.Wrap() instead of errors.Join() * update log messages based on suggestions * remove trustengine resource ref from Sonar step --------- Co-authored-by: Keshav <[email protected]> Co-authored-by: jliempt <>

…AP#5037) * added quotes for mvn settings path * added logs * removed logs, added excape symbol for spaces * set quotes * removed replacing * changed quotes * fixed tests * removed extra log --------- Co-authored-by: sumeet patil <[email protected]>

* wildCard MAXX in addon.yml for AAKaaS steps --------- Co-authored-by: Christian Luttenberger <[email protected]>

Updated CONTRIBUTING.md with Code of Conduct and Guidelines for GenAI and general content restructuring

As we use tags for the unit test files, they don't run if one does not provide the tags=unit flag to the test execution command. This change adds the description of how one is to do this when running the tests in a shell, as well as how to add it to the VS Code extension. Co-authored-by: tiloKo <[email protected]>

…ation (SAP#5038) * add trust engine resource reference to parameter docs generation * test with added resource ref * remove test resource ref * use trustengineSecret const --------- Co-authored-by: jliempt <>

Co-authored-by: jliempt <>

* feat: fail if script is not found * fix tests * Fix integration tests --------- Co-authored-by: Oliver Feldmann <[email protected]>

The cloud sdk pipeline does not exist anymore.

* fix(docs): remove dead links * Update parameters_test.go

* Update release-go.yml * fix lint

* Add -ws=false -iwr to npm config get registry * Add -ws=false -iwr to npm config set registry * Fix test * Fix test --------- Co-authored-by: Manjunath <[email protected]>

* Adapting unit test to run for packages with namespace * Correct type mismatch for object count

* adding anonymisation for object field * Further fixes to gcts deploy step * syntax changes

* Run makeBOM after aggregateBOM * Fix tests

michaelkubiaczyk and others added 30 commits January 4, 2023 06:45

added json to sarif conversion

0e5e0d4

Merge branch 'SAP:master' into cxone-dev-michael

809b3da

Merge branch 'SAP:master' into cxone-dev-michael

912fd6f

fix:type in new checkmarxone package

8897428

fix:type in new checkmarxone package

aa61c8f

removed test logs, added temp error log for creds

183a110

extra debugging to fix crash

7070344

improved auth logging, fixed query parse issue

d360dd4

fixed bug with group fetch when using oauth user

b20c5cb

CWE can be -1 if not defined, can't be uint

6021170

Query also had CweID

f3db200

Disabled predicates-fetch in sarif generation

6e472e5

Removing leftover info log message

db2eb60

Better error handling

a8adbeb

fixed default preset configuration

62e32b2

removing .bat files - sorry

c927626

Cleanup per initial review

e09fafc

refactoring per Gist, fixed project find, add apps

5ed9a8a

small fix - sorry for commit noise while testing

27fbb23

Fixing issues with incremental scans.

f402e31

removing maxretries

849af11

Updated per PR feedback, further changes todo toda

7e2b84e

JSON Report changes and reporting cleanup

01c247b

removing .bat (again?)

88b875e

Merge pull request #1 from hubadr/cxone-dev-michael

b663e06

Merge Michael's branch to cxone-dev

Merge branch 'SAP:master' into cxone-dev

7738b6d

Merge pull request #3 from hubadr/cxone-dev

d144141

Adding support for CheckmarxOne

Merge pull request #4 from hubadr/cxone-release

20eca82

Cxone release

adding docs, groovy unit test, linter fixes

dab9ea0

Started adding tests maybe 15% covered

c1f0896

DanielMieg and others added 29 commits August 29, 2024 10:55

Add possible values and default (SAP#5030)

cb45ad1

Update aws deps (SAP#5034)

645559c

Merge branch 'SAP:master' into cxone-release

8897d3a

feat(vault): support complex data types in secrets (SAP#5006)

72ff2d4

Co-authored-by: Ralf Pannemans <[email protected]>

Copy full project (SAP#5033)

34f1057

Merge branch 'SAP:master' into cxone-release

a298324

Updated helm.sh/helm from 13.14.0 to 13.14.2 (SAP#5041)

ca56fcf

fix(http): Use configured logger for retryClient (SAP#5040)

7e2604a

Co-authored-by: jliempt <>

addon.yml may now contain wildCard MAXX (SAP#5039)

1d659c7

* wildCard MAXX in addon.yml for AAKaaS steps --------- Co-authored-by: Christian Luttenberger <[email protected]>

CONTRIBUTING.md (SAP#5042)

dbeb462

Updated CONTRIBUTING.md with Code of Conduct and Guidelines for GenAI and general content restructuring

feat(trustengine): Add new resource reference to parameter docs gener…

1b711fd

…ation (SAP#5038) * add trust engine resource reference to parameter docs generation * test with added resource ref * remove test resource ref * use trustengineSecret const --------- Co-authored-by: jliempt <>

feat(sonar): Enable trustengine for token retrieval (SAP#5046)

a2bafe2

Co-authored-by: jliempt <>

feat: fail if script is not found in package.json file (SAP#5029)

90be7e4

* feat: fail if script is not found * fix tests * Fix integration tests --------- Co-authored-by: Oliver Feldmann <[email protected]>

chore: remove obsolete cloud sdk conversion file (SAP#5036)

528a72e

The cloud sdk pipeline does not exist anymore.

fix(docs): remove dead links (SAP#5051)

a242bca

* fix(docs): remove dead links * Update parameters_test.go

feat(notification): Notify in case of Release failure (SAP#5045)

7eb4495

* Update release-go.yml * fix lint

Update sdk-go/v2 from 2.10.1 to 2.15.2 to fix CVE-2024-28110 (SAP#5050)

2175d38

Include purl info in the event (SAP#5092)

5230c3d

fix(vault): properly consider vault parameters & flags (SAP#5118)

ef25e31

npm config doesn't fail when workspaces enabled (SAP#5120)

60cbddb

* Add -ws=false -iwr to npm config get registry * Add -ws=false -iwr to npm config set registry * Fix test * Fix test --------- Co-authored-by: Manjunath <[email protected]>

gctsExecuteABAPQualityCheck type mismatch (SAP#5132)

f6231de

* Adapting unit test to run for packages with namespace * Correct type mismatch for object count

Fix maven build failures due to makeBom goal (SAP#5134)

c991c5b

Fix gcts deploy field anonymize (SAP#5129)

033a429

* adding anonymisation for object field * Further fixes to gcts deploy step * syntax changes

Run makeBOM after aggregateBOM (SAP#5140)

20b7eff

* Run makeBOM after aggregateBOM * Fix tests

Merge branch 'SAP:master' into cxone-release

e95777d

michaelkubiaczyk merged commit d8622e6 into cxone-dev-michael Oct 8, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Cxone release #50

Cxone release #50

michaelkubiaczyk commented Oct 8, 2024

Cxone release #50

Cxone release #50

Conversation

michaelkubiaczyk commented Oct 8, 2024

Changes