Page tree
Skip to end of metadata
Go to start of metadata

Squore 20.1 was released on July 31st 2020

This release brings:

  • Dynamic finding statuses

Read on to take a visual tour of the new features of Squore 20.1 !

New Feature

Dynamic finding statuses

Now you can define your finding statuses in the model and use it like any standard ones.

There are 5 standard statuses:

  • Open: default status when no status is set
  • Confirmed (Default): the finding is a real violation, confirmed after a user investigation
  • Relaxed (Derogation)
  • Relaxed (False positive)
  • Relaxed (Legacy system)

To add a new "confirmed" status and a new "relaxed" status, add this line on your analysis model:

<FindingStatus id="CONFIRMED_CUSTOM" type="CONFIRMED" />
<FindingStatus id="RELAXED_CUSTOM" type="RELAXED" />

On the model, by default, when a computation count the number of occurrences, it counts the number of OPEN + CONFIRMED occurrences (not the RELAXED ones):

<Measure measureId="FINDINGS_OPEN_AND_CONFIRMED">
	<Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES FROM TREE" />
</Measure>

It is also possible to count only the CONFIRMED occurrences or the number of occurrences in a status id:

<!-- Count the number of findings with 'CONFIRMED_xxx' statuses -->
<Measure measureId="FINDINGS_CONFIRMED">
	<Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(CONFIRMED) FROM TREE" />
</Measure>

<!-- Count the number of findings with 'CONFIRMED_CUSTOM' status -->
<Measure measureId="FINDINGS_CONFIRMED_CUSTOM">
	<Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(CONFIRMED) FROM TREE WHERE IS_STATUS_FINDING(CONFIRMED_CUSTOM)" />
</Measure>

<!-- Count the number of findings with 'RELAXED_CCB_APPROVED' status -->
<Measure measureId="FINDINGS_RELAXED_CUSTOM">
	<Computation targetArtefactTypes="APPLICATION" result="COUNT RULE.OCCURRENCES(RELAXED) FROM TREE WHERE IS_STATUS_FINDING(RELAXED_CUSTOM)" />
</Measure>


Licencing Changes

Your 19.0, 19.1 or 20.0 annual subscription licence is fully compatible with Squore 20.1.

Changes in Installation Prerequisites

No changes since 20.0.

Configuration Changes

For a detailed changelog of the Shared folder, consult the full Configuration Folder Changelog.

Known Issues

  • If you are using Oracle, make sure to deactivate statistics columns before upgrading otherwise the upgrade will fail with the following error : "Caused by: java.sql.SQLException: ORA-54032: column to be renamed is used in a virtual column expression".

  • If you are using Java 11 you will see some warnings displayed at installation (see below). They are due to the use of Java 11 in conjonction with Wildfly 10, but have no impact on the correct functioning of Squore.

    WARNING: Illegal reflective access by __redirected.__SAXParserFactory...
    WARNING: Please consider reporting this to the maintainers of __redirected.__SAXParserFactory
    ...

Full Changelog

20.1.4 and up

See Vector official website for more information, section "Support & Downloads > Downloads > Service Packs".

Download page shortcuts :

20.1.2

Published on 28th October 2020

  • Includes database upgrade: no
  • Includes WildFly configuration upgrade: no
  • Upgrade Impacts Analysis Model: no

  • Also includes all changes and bug fixes from Squore 20.0.6


Type Category Description Id
Problem API Fixed missing artefact location in finding location returned by API SQ-1801


20.1.1

Published on 25th September 2020

  • Includes database upgrade: yes
  • Includes WildFly configuration upgrade: no
  • Upgrade Impacts Analysis Model: no

  • Also includes all changes and bug fixes from Squore 20.0.5

On Windows, installing Squore as a service fails. To circumvent the issue, just uncheck the box "Install as Windows Service" in order ensure a successful installation or migration. A new patch to fix the issue will be released as soon as possible...


Type Category Description Id
Problem Database Duplicate key error at server start-up after upgrade has been corrected SQ-1132


20.1.0

Published on 31st July 2020

  • Includes database upgrade: yes (from any version)
  • Includes WildFly configuration upgrade: no (except coming from pre-19.1.6 versions)
  • Upgrade Impacts Analysis Model: yes (from any version)

  • Also includes all changes and bug fixes from Squore 20.0.4


Type Category Description Id
Problem Configuration Findings are now ordered by decreasing severity in Software Analytics model SQ-829
Evolution Configuration Dynamic/custom status for findings is now available SQ-1098
Evolution Database Finding status are now saved per version into cache SQ-1176
Evolution Documentation New findings dynamic/custom status is now documented SQ-1195



  • No labels