-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
#103: security warning for CVEs in file tool/edition/security #119
base: main
Are you sure you want to change the base?
Changes from 40 commits
2237158
897b800
59f6a1b
5f162e2
e5c70e7
34febf5
ae0558b
ba87b95
ba694ab
81b8586
9574f8d
7e2023e
64c8454
5518138
4fbef6e
1b9224b
9a86e34
fe9109f
b19b877
fd64100
312afdd
37122ff
9b28679
1389057
98b3da3
06cc433
80ab231
a26df56
dbee293
ea1bb26
b02bfcf
fb6b842
0c54094
55f139c
d69bea7
f34fc22
1c66c77
c78aad4
6a20d3c
cbe086d
20fecc3
47ae5b7
ae52292
f66c7ea
7628cc9
db6e276
6da9066
2862e6b
be3ec96
097bbdc
a7d686c
a299504
0f3596f
30d5bf2
69e1fdd
4d6766c
f162e09
3834ce8
ba4bc07
d794e67
998387d
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,13 @@ | ||
package com.devonfw.tools.ide.tool; | ||
|
||
public enum SecurityRiskInteractionAnswer { | ||
|
||
STAY, | ||
|
||
LATEST_SAFE, | ||
|
||
SAFE_LATEST, | ||
|
||
NEXT_SAFE, | ||
|
||
} | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. JavaDoc missing. |
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -40,6 +40,12 @@ protected String getTool() { | |||||||||||
return "android-studio"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
public void update(UrlRepository urlRepository) { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -15,6 +15,12 @@ protected String getTool() { | |||||||||||
return "aws"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. In the current commit of this branch, there is no implementation in the abstract class. I thought we can use this to force that every |
||||||||||||
@Override | ||||||||||||
protected String getGithubOrganization() { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -18,6 +18,12 @@ protected String getTool() { | |||||||||||
return "az"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected void addVersion(UrlVersion urlVersion) { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -12,6 +12,12 @@ protected String getTool() { | |||||||||||
return "cobigen"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected String getMavenGroupIdPath() { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -23,6 +23,12 @@ protected String getTool() { | |||||||||||
return "docker"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected void addVersion(UrlVersion urlVersion) { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -13,6 +13,12 @@ protected String getTool() { | |||||||||||
return "dotnet"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected String getVersionPrefixToRemove() { | ||||||||||||
|
||||||||||||
|
@@ -48,10 +54,10 @@ protected String getGithubRepository() { | |||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String mapVersion(String version) { | ||||||||||||
|
||||||||||||
if (version.matches("v\\d+\\.\\d+\\.\\d+")) { | ||||||||||||
return super.mapVersion(version); | ||||||||||||
} | ||||||||||||
else { | ||||||||||||
} else { | ||||||||||||
return null; | ||||||||||||
} | ||||||||||||
} | ||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -10,15 +10,23 @@ | |||||||||||
public class GCloudUrlUpdater extends GithubUrlUpdater { | ||||||||||||
|
||||||||||||
private static final VersionIdentifier MIN_GCLOUD_VID = VersionIdentifier.of("299.0.0"); | ||||||||||||
|
||||||||||||
private static final VersionIdentifier MIN_ARM_GCLOUD_VID = VersionIdentifier.of("366.0.0"); | ||||||||||||
|
||||||||||||
private static final String BASE_URL = "https://dl.google.com/dl/cloudsdk/channels/rapid/downloads/google-cloud-sdk-${version}-"; | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getTool() { | ||||||||||||
|
||||||||||||
return "gcloud"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected String getGithubRepository() { | ||||||||||||
|
||||||||||||
|
Original file line number | Diff line number | Diff line change | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
@@ -13,6 +13,12 @@ protected String getTool() { | |||||||||||
return "gcviewer"; | ||||||||||||
} | ||||||||||||
|
||||||||||||
@Override | ||||||||||||
protected String getEdition() { | ||||||||||||
|
||||||||||||
return getTool(); | ||||||||||||
} | ||||||||||||
|
||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
What is the point in overriding this method with the same implementation as the super-class ( There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Adjusted. |
||||||||||||
@Override | ||||||||||||
protected void addVersion(UrlVersion urlVersion) { | ||||||||||||
|
||||||||||||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I do not see the reason for this change: It does set the
path
for atool
. If the path for that tool is already set, it will be updated/set to the newpath
value. The nameaddPath
would in my opinion imply that the path is added (so calling this method withjava
astool
if thepath
for Java is already set it would be added so we have it twice in the path?), what is actually not the case. In most cases this method will actually update the path - only if we installed a tool initially that was not present before, we add a new entry to the path.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Okey. Makes sense. I was talking to @jan-vcapgemini and we both came to the conclusion that it could be nice to only use the prefixes
set
andget
with actual getters and setters.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Adjusted, renamed back to get and set.