Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JetBrains Plugin | Implement ASCA Engine (AST-69534) #284

Merged
merged 40 commits into from
Nov 11, 2024
Merged

JetBrains Plugin | Implement ASCA Engine (AST-69534) #284

merged 40 commits into from
Nov 11, 2024

Conversation

AlvoBen
Copy link
Contributor

@AlvoBen AlvoBen commented Oct 10, 2024
edited
Loading

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Implement ASCA engine in Jetbrains plugin.

References

https://checkmarx.atlassian.net/browse/AST-69534

Testing

Added unitest and UI tests

Checklist

  • I have added documentation for new/changed functionality in this PR (if applicable).
  • All active GitHub checks for tests, formatting, and security are passing
  • The correct base branch is being used

@github-actions GitHub Actions
Copy link

github-actions bot commented Oct 10, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Detailsc7cbb0fa-ef2f-4336-8200-b53d31272a5a

No New Or Fixed Issues Found

BenAlvo1 and others added 25 commits October 10, 2024 11:11
@BenAlvo1
update asca description and made gap in the botton between additional…
f1e173b 
… params and asca checkbox
@BenAlvo1
revert unrelated changes
60783c3
@BenAlvo1
add botton gap
6cc329a
@BenAlvo1
added ASCA wrapper integration and colored notification in setting
4f106e7
@BenAlvo1
implement editor listener
2a76f3c
@BenAlvo1
implement AscaService.java
988043b
@AlvoBen
Merge branch 'main' into feature/benalvo/asca-impl
4d64688
@BenAlvo1
implement AscaService.java
e4e9008
@BenAlvo1
implement Asca inspections
0249500
@BenAlvo1
delete editor listener
518148d
@BenAlvo1
delete project param from scan asca function
b324385
@BenAlvo1
erradded error handling in asca scan
707bea2
@BenAlvo1
Change deprecated Information ProblemHighlight into Weak Warning
c9806ca
@BenAlvo1
Add severity asca constants
7a80a14
@BenAlvo1
refactor code
ad6a18e
@BenAlvo1
refactor code
d7c9f93
@BenAlvo1
refactor code
e103d4d
@BenAlvo1
refactor code
7a5d4e7
@BenAlvo1
fix inspections description from jetbrains settings
32b94e2
@BenAlvo1
delete quickfix
d359aa5
@BenAlvo1
added asca quick fix - coping prompt
72392d0
@BenAlvo1
upgrade prompt
ccc1d58
@BenAlvo1
trim problematic line and description for prompt
fb63e33
@BenAlvo1
added annotation to scanDetail feild in AscaQuickFix
fa42a03
@BenAlvo1
add try catch to copyToClipboard
57c7a35
@gitguardian GitGuardian
Copy link

gitguardian bot commented Nov 4, 2024
edited
Loading

⚠️ GitGuardian has uncovered 8 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request
GitGuardian id GitGuardian status Secret Commit Filename
11482444 Triggered Username Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482449 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482445 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482446 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482450 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482451 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482443 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
11482448 Triggered Generic Password aff6ac9 src/test/java/com/checkmarx/intellij/standard/data/python-vul-file.py View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secrets safely. Learn here the best practices.
  3. Revoke and rotate these secrets.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

@AlvoBen AlvoBen changed the title add asca checkbox and description JetBrains Plugin | Implement ASCA Engine (AST-69534) Nov 4, 2024
OrShamirCM
OrShamirCM reviewed Nov 5, 2024
View reviewed changes
src/main/java/com/checkmarx/intellij/ASCA/AscaService.java Outdated Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/ASCA/AscaService.java Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/ASCA/AscaService.java Outdated Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/ASCA/AscaService.java Outdated Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/commands/ASCA.java Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/inspections/AscaInspection.java Outdated Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/inspections/AscaInspection.java Outdated Show resolved Hide resolved
src/main/java/com/checkmarx/intellij/inspections/quickfixes/AscaQuickFix.java Outdated Show resolved Hide resolved
OrShamirCM
OrShamirCM previously approved these changes Nov 5, 2024
View reviewed changes
OrShamirCM
OrShamirCM previously approved these changes Nov 5, 2024
View reviewed changes
@AlvoBen AlvoBen merged commit 2a5c462 into main Nov 11, 2024
6 checks passed
@AlvoBen AlvoBen deleted the feature/benalvo/asca-impl branch November 11, 2024 11:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@OrShamirCM OrShamirCM OrShamirCM approved these changes

@pedrompflopes pedrompflopes Awaiting requested review from pedrompflopes

Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@AlvoBen @OrShamirCM @BenAlvo1