Squore 20.1 was released on July 31st 2020
This release brings:
- Dynamic finding statuses
Read on to take a visual tour of the new features of Squore 20.1 !
New Feature
Dynamic finding statuses
Now you can define your finding statuses in the model and use it like any standard ones.
There are 5 standard statuses:
- Open: default status when no status is set
- Confirmed (Default): the finding is a real violation, confirmed after a user investigation
- Relaxed (Derogation)
- Relaxed (False positive)
- Relaxed (Legacy system)
To add a new "confirmed" status and a new "relaxed" status, add this line on your analysis model:
<FindingStatus id="CONFIRMED_CUSTOM" type="CONFIRMED" /> <FindingStatus id="RELAXED_CUSTOM" type="RELAXED" />
On the model, by default, when a computation count the number of occurrences, it counts the number of OPEN + CONFIRMED occurrences (not the RELAXED ones):
<Measure measureId="FINDINGS_OPEN_AND_CONFIRMED"> <Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES FROM TREE" /> </Measure>
It is also possible to count only the CONFIRMED occurrences or the number of occurrences in a status id:
<!-- Count the number of findings with 'CONFIRMED_xxx' statuses --> <Measure measureId="FINDINGS_CONFIRMED"> <Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(CONFIRMED) FROM TREE" /> </Measure> <!-- Count the number of findings with 'CONFIRMED_CUSTOM' status --> <Measure measureId="FINDINGS_CONFIRMED_CUSTOM"> <Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(CONFIRMED) FROM TREE WHERE IS_STATUS_FINDING(CONFIRMED_CUSTOM)" /> </Measure> <!-- Count the number of findings with 'RELAXED_CCB_APPROVED' status --> <Measure measureId="FINDINGS_RELAXED_CUSTOM"> <Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(RELAXED) FROM TREE WHERE IS_STATUS_FINDING(RELAXED_CUSTOM)" /> </Measure>
Licencing Changes
Your 19.0, 19.1 or 20.0 annual subscription licence is fully compatible with Squore 20.1.
Changes in Installation Prerequisites
No changes since 20.0.
Configuration Changes
For a detailed changelog of the Shared folder, consult the full Configuration Folder Changelog.
Known Issues
If you are using Oracle, make sure to deactivate statistics columns before upgrading otherwise the upgrade will fail with the following error : "Caused by: java.sql.SQLException: ORA-54032: column to be renamed is used in a virtual column expression".
To know more about Oracle Extended Statistics : https://blogs.oracle.com/optimizer/extended-statistics
If you are using Java 11 you will see some warnings displayed at installation (see below). They are due to the use of Java 11 in conjonction with Wildfly 10, but have no impact on the correct functioning of Squore.
WARNING: Illegal reflective access by __redirected.__SAXParserFactory... WARNING: Please consider reporting this to the maintainers of __redirected.__SAXParserFactory ...
Full Changelog
20.1.4 and up
See Vector official website for more information, section "Support & Downloads > Downloads > Service Packs".
Download page shortcuts :
- Linux : https://www.vector.com/squore/linux
- Windows : https://www.vector.com/squore/windows
20.1.2
Published on 28th October 2020
- Includes database upgrade: no
- Includes WildFly configuration upgrade: no
Upgrade Impacts Analysis Model: no
Also includes all changes and bug fixes from Squore 20.0.6
Type | Category | Description | Id |
---|---|---|---|
Problem | API | Fixed missing artefact location in finding location returned by API | SQ-1801 |
20.1.1
Published on 25th September 2020
- Includes database upgrade: yes
- Includes WildFly configuration upgrade: no
Upgrade Impacts Analysis Model: no
Also includes all changes and bug fixes from Squore 20.0.5
On Windows, installing Squore as a service fails. To circumvent the issue, just uncheck the box "Install as Windows Service" in order ensure a successful installation or migration. A new patch to fix the issue will be released as soon as possible...
Type | Category | Description | Id |
---|---|---|---|
Problem | Database | Duplicate key error at server start-up after upgrade has been corrected | SQ-1132 |
20.1.0
Published on 31st July 2020
- Includes database upgrade: yes (from any version)
- Includes WildFly configuration upgrade: no (except coming from pre-19.1.6 versions)
Upgrade Impacts Analysis Model: yes (from any version)
Also includes all changes and bug fixes from Squore 20.0.4
Type | Category | Description | Id |
---|---|---|---|
Problem | Configuration | Findings are now ordered by decreasing severity in Software Analytics model | SQ-829 |
Evolution | Configuration | Dynamic/custom status for findings is now available | SQ-1098 |
Evolution | Database | Finding status are now saved per version into cache | SQ-1176 |
Evolution | Documentation | New findings dynamic/custom status is now documented | SQ-1195 |