SLLS-354 forward finding 'isOnNewCode' information to client

Author: sophio-japharidze-sonarsource

src/main/java/org/sonarsource/sonarlint/ls/DiagnosticPublisher.java

@@ -27,6 +27,7 @@
 import org.eclipse.lsp4j.DiagnosticSeverity;
 import org.eclipse.lsp4j.PublishDiagnosticsParams;
 import org.sonarsource.sonarlint.core.rpc.protocol.backend.hotspot.HotspotStatus;
+import org.sonarsource.sonarlint.core.rpc.protocol.client.hotspot.RaisedHotspotDto;
 import org.sonarsource.sonarlint.core.rpc.protocol.common.RuleType;
 import org.sonarsource.sonarlint.ls.connected.DelegatingFinding;
 import org.sonarsource.sonarlint.ls.connected.DelegatingHotspot;
@@ -102,7 +103,11 @@ public void setFocusOnNewCode(boolean focusOnNewCode) {
   public static Diagnostic prepareDiagnostic(DelegatingFinding issue, String entryKey, boolean ignoreSecondaryLocations, boolean focusOnNewCode) {
     var diagnostic = new Diagnostic();
 
-    setSeverity(diagnostic, issue, focusOnNewCode);
+    if (issue.getFinding() instanceof RaisedHotspotDto hotspotDto) {
+      setVulnerabilityProbability(diagnostic, hotspotDto);
+    } else {
+      setSeverity(diagnostic, issue, focusOnNewCode);
+    }
     var range = convert(issue);
     diagnostic.setRange(range);
     diagnostic.setCode(issue.getRuleKey());
@@ -113,6 +118,14 @@ public static Diagnostic prepareDiagnostic(DelegatingFinding issue, String entry
     return diagnostic;
   }
 
+  static void setVulnerabilityProbability(Diagnostic diagnostic, RaisedHotspotDto hotspot) {
+    switch (hotspot.getVulnerabilityProbability()) {
+      case MEDIUM -> diagnostic.setSeverity(DiagnosticSeverity.Warning);
+      case HIGH -> diagnostic.setSeverity(DiagnosticSeverity.Error);
+      default -> diagnostic.setSeverity(DiagnosticSeverity.Information);
+    }
+  }
+
   static void setSeverity(Diagnostic diagnostic, DelegatingFinding issue, boolean focusOnNewCode) {
     if (focusOnNewCode) {
       var newCodeSeverity = issue.isOnNewCode() ? DiagnosticSeverity.Warning : DiagnosticSeverity.Hint;
@@ -131,6 +144,7 @@ public static class DiagnosticData {
     @Nullable
     HotspotStatus status;
     boolean isAiCodeFixable;
+    boolean isOnNewCode;
 
     public void setEntryKey(String entryKey) {
       this.entryKey = entryKey;
@@ -156,6 +170,14 @@ public String getServerIssueKey() {
     public void setAiCodeFixable(boolean aiCodeFixable) {
       isAiCodeFixable = aiCodeFixable;
     }
+
+    public void setOnNewCode(boolean onNewCode) {
+      isOnNewCode = onNewCode;
+    }
+
+    public boolean isOnNewCode() {
+      return isOnNewCode;
+    }
   }
 
   public static void setSource(Diagnostic diagnostic, DelegatingFinding issue) {
@@ -177,6 +199,7 @@ private static void setData(Diagnostic diagnostic, DelegatingFinding issue, Stri
       data.setStatus(raisedHotspotDto.getReviewStatus());
     }
     data.setEntryKey(entryKey);
+    data.setOnNewCode(issue.isOnNewCode());
     diagnostic.setData(data);
   }
 

src/main/java/org/sonarsource/sonarlint/ls/connected/TaintVulnerabilitiesCache.java

@@ -71,17 +71,16 @@ public Optional<TaintIssue> getTaintVulnerabilityByKey(String issueId) {
   public Stream<Diagnostic> getAsDiagnostics(URI fileUri, boolean focusOnNewCode) {
     return taintVulnerabilitiesPerFile.getOrDefault(fileUri, emptyList())
       .stream()
-      .flatMap(i -> TaintVulnerabilitiesCache.convert(i, focusOnNewCode).stream());
+      .flatMap(i -> TaintVulnerabilitiesCache.convert(i).stream());
   }
 
-  static Optional<Diagnostic> convert(TaintIssue issue, boolean focusOnNewCode) {
+  static Optional<Diagnostic> convert(TaintIssue issue) {
     if (issue.getTextRange() != null) {
       var range = TextRangeUtils.convert(issue.getTextRange());
       var diagnostic = new Diagnostic();
       boolean onNewCode = issue.isOnNewCode();
-      var severity = (focusOnNewCode && !onNewCode) ? DiagnosticSeverity.Hint : DiagnosticSeverity.Warning;
 
-      diagnostic.setSeverity(severity);
+      diagnostic.setSeverity(DiagnosticSeverity.Error);
       diagnostic.setRange(range);
       diagnostic.setCode(issue.getRuleKey());
       diagnostic.setMessage(message(issue));
@@ -91,6 +90,7 @@ static Optional<Diagnostic> convert(TaintIssue issue, boolean focusOnNewCode) {
       diagnosticData.setEntryKey(issue.getId().toString());
       diagnosticData.setServerIssueKey(issue.getSonarServerKey());
       diagnosticData.setAiCodeFixable(issue.isAiCodeFixable());
+      diagnosticData.setOnNewCode(onNewCode);
       diagnostic.setData(diagnosticData);
 
       return Optional.of(diagnostic);

src/test/java/org/sonarsource/sonarlint/ls/DiagnosticPublisherTests.java

@@ -23,12 +23,18 @@
 import java.util.List;
 import java.util.Map;
 import java.util.UUID;
+import java.util.stream.Stream;
 import org.eclipse.lsp4j.Diagnostic;
 import org.eclipse.lsp4j.DiagnosticSeverity;
 import org.eclipse.lsp4j.Position;
 import org.eclipse.lsp4j.Range;
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
+import org.junit.jupiter.params.ParameterizedTest;
+import org.junit.jupiter.params.provider.Arguments;
+import org.junit.jupiter.params.provider.MethodSource;
+import org.sonarsource.sonarlint.core.rpc.protocol.backend.rules.VulnerabilityProbability;
+import org.sonarsource.sonarlint.core.rpc.protocol.client.hotspot.RaisedHotspotDto;
 import org.sonarsource.sonarlint.core.rpc.protocol.client.issue.RaisedFindingDto;
 import org.sonarsource.sonarlint.core.rpc.protocol.common.Either;
 import org.sonarsource.sonarlint.core.rpc.protocol.common.IssueSeverity;
@@ -97,6 +103,50 @@ void testNotConvertSeverity() {
     assertThat(underTest.issueDtoToDiagnostic(entry(id, issue)).getSeverity()).isEqualTo(DiagnosticSeverity.Warning);
   }
 
+  @Test
+  void shouldPrepareDiagnostic() {
+    var finding = mock(DelegatingFinding.class);
+    var textRange = new TextRangeDto(1, 0, 1, 1);
+    when(finding.getTextRange()).thenReturn(textRange);
+    when(finding.getStartLine()).thenReturn(1);
+    when(finding.getMessage()).thenReturn("Do this, don't do that");
+    when(finding.getRuleKey()).thenReturn("rule-key");
+    when(finding.isOnNewCode()).thenReturn(false);
+
+    var diagnostic = DiagnosticPublisher.prepareDiagnostic(finding, "entryKey", false, false);
+
+    assertThat(diagnostic.getRange().getStart().getLine()).isZero();
+    assertThat(diagnostic.getRange().getStart().getCharacter()).isZero();
+    assertThat(diagnostic.getRange().getEnd().getLine()).isZero();
+    assertThat(diagnostic.getRange().getEnd().getCharacter()).isEqualTo(1);
+    assertThat(diagnostic.getMessage()).isEqualTo("Do this, don't do that");
+    assertThat(diagnostic.getCode().getLeft()).isEqualTo("rule-key");
+    assertThat(diagnostic.getSeverity()).isEqualTo(DiagnosticSeverity.Warning);
+    assertThat(diagnostic.getData()).isNotNull();
+    assertThat(((DiagnosticPublisher.DiagnosticData) diagnostic.getData()).getEntryKey()).isEqualTo("entryKey");
+    assertThat(((DiagnosticPublisher.DiagnosticData) diagnostic.getData()).isOnNewCode()).isFalse();
+  }
+
+  @ParameterizedTest
+  @MethodSource("vulnerabilityProbabilityProvider")
+  void testConvertVulnerabilityProbability(VulnerabilityProbability vulnerabilityProbability, DiagnosticSeverity expectedSeverity) {
+    var hotspotDto = mock(RaisedHotspotDto.class);
+    when(hotspotDto.getVulnerabilityProbability()).thenReturn(vulnerabilityProbability);
+    var diagnostic = new Diagnostic();
+
+    DiagnosticPublisher.setVulnerabilityProbability(diagnostic, hotspotDto);
+
+    assertThat(diagnostic.getSeverity()).isEqualTo(expectedSeverity);
+  }
+
+  private static Stream<Arguments> vulnerabilityProbabilityProvider() {
+    return Stream.of(
+      Arguments.of(VulnerabilityProbability.HIGH, DiagnosticSeverity.Error),
+      Arguments.of(VulnerabilityProbability.MEDIUM, DiagnosticSeverity.Warning),
+      Arguments.of(VulnerabilityProbability.LOW, DiagnosticSeverity.Information)
+    );
+  }
+
   @Test
   void showFirstSecretDetectedNotificationOnlyOnce() {
     underTest.initialize(false);

src/test/java/org/sonarsource/sonarlint/ls/connected/TaintVulnerabilitiesCacheTests.java

@@ -57,7 +57,7 @@ class TaintVulnerabilitiesCacheTests {
 
   @ParameterizedTest
   @MethodSource("testIssueConversionParameters")
-  void testIssueConversion(String taintSource, boolean isOnNewCode, boolean focusOnNewCode, DiagnosticSeverity expectedSeverity) {
+  void testIssueConversion(String taintSource, boolean isOnNewCode, DiagnosticSeverity expectedSeverity) {
     var issue = mock(TaintIssue.class);
     var flow = mock(TaintVulnerabilityDto.FlowDto.class);
     var loc1 = mock(TaintVulnerabilityDto.FlowDto.LocationDto.class);
@@ -74,7 +74,7 @@ void testIssueConversion(String taintSource, boolean isOnNewCode, boolean focusO
     when(issue.getSource()).thenReturn(taintSource);
     when(issue.isOnNewCode()).thenReturn(isOnNewCode);
 
-    var diagnostic = convert(issue, focusOnNewCode).get();
+    var diagnostic = convert(issue).get();
 
     assertThat(diagnostic.getMessage()).isEqualTo("message [+2 locations]");
     assertThat(diagnostic.getSeverity()).isEqualTo(expectedSeverity);
@@ -90,7 +90,7 @@ void testIssueConversion(String taintSource, boolean isOnNewCode, boolean focusO
   void testIssueConversionNoTextRange() {
     var issue = mock(TaintIssue.class);
 
-    var diagnosticOptional = convert(issue, false);
+    var diagnosticOptional = convert(issue);
 
     assertThat(diagnosticOptional).isEmpty();
   }
@@ -209,15 +209,15 @@ void testRemoveTaintIssue() throws Exception {
 
   private static Stream<Arguments> testIssueConversionParameters() {
     return Stream.of(
-      Arguments.of(SONARCLOUD_TAINT_SOURCE, true, true, DiagnosticSeverity.Warning),
-      Arguments.of(SONARCLOUD_TAINT_SOURCE, true, false, DiagnosticSeverity.Warning),
-      Arguments.of(SONARCLOUD_TAINT_SOURCE, false, true, DiagnosticSeverity.Hint),
-      Arguments.of(SONARCLOUD_TAINT_SOURCE, false, false, DiagnosticSeverity.Warning),
-
-      Arguments.of(SONARQUBE_TAINT_SOURCE, true, true, DiagnosticSeverity.Warning),
-      Arguments.of(SONARQUBE_TAINT_SOURCE, true, false, DiagnosticSeverity.Warning),
-      Arguments.of(SONARQUBE_TAINT_SOURCE, false, true, DiagnosticSeverity.Hint),
-      Arguments.of(SONARQUBE_TAINT_SOURCE, false, false, DiagnosticSeverity.Warning)
+      Arguments.of(SONARCLOUD_TAINT_SOURCE, true, DiagnosticSeverity.Error),
+      Arguments.of(SONARCLOUD_TAINT_SOURCE, true, DiagnosticSeverity.Error),
+      Arguments.of(SONARCLOUD_TAINT_SOURCE, false, DiagnosticSeverity.Error),
+      Arguments.of(SONARCLOUD_TAINT_SOURCE, false, DiagnosticSeverity.Error),
+
+      Arguments.of(SONARQUBE_TAINT_SOURCE, true, DiagnosticSeverity.Error),
+      Arguments.of(SONARQUBE_TAINT_SOURCE, true, DiagnosticSeverity.Error),
+      Arguments.of(SONARQUBE_TAINT_SOURCE, false, DiagnosticSeverity.Error),
+      Arguments.of(SONARQUBE_TAINT_SOURCE, false, DiagnosticSeverity.Error)
     );
   }
 }

src/test/java/org/sonarsource/sonarlint/ls/mediumtests/ConnectedModeMediumTests.java

@@ -302,7 +302,7 @@ void analysisConnected_find_hotspot() {
         Diagnostic::getSeverity)
       .containsExactly(
         tuple(0, 13, 0, 26, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.",
-          DiagnosticSeverity.Warning)));
+          DiagnosticSeverity.Information)));
   }
 
   @Test
@@ -370,7 +370,7 @@ void analysisConnected_find_tracked_hotspot_before_sq_10_1() {
         Diagnostic::getSeverity)
       .containsExactly(
         tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.",
-          DiagnosticSeverity.Warning)));
+          DiagnosticSeverity.Information)));
   }
 
   @Test
@@ -448,7 +448,7 @@ void analysisConnected_find_tracked_hotspot_after_sq_10_1() {
         Diagnostic::getSeverity)
       .containsExactly(
         tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.",
-          DiagnosticSeverity.Warning)));
+          DiagnosticSeverity.Information)));
   }
 
   @Test
@@ -500,15 +500,15 @@ void analysisConnected_scan_all_hotspot_then_forget() throws IOException {
           Diagnostic::getSeverity)
         .containsExactly(
           tuple(1, 15, 1, 28, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.",
-            DiagnosticSeverity.Warning));
+            DiagnosticSeverity.Information));
       assertThat(client.getDiagnostics(uri1InFolder)).isEmpty();
 
       assertThat(client.getHotspots(uri2InFolder))
         .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage,
           Diagnostic::getSeverity)
         .containsExactly(
           tuple(1, 15, 1, 28, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"23.45.67.89\" is safe here.",
-            DiagnosticSeverity.Warning));
+            DiagnosticSeverity.Information));
       assertThat(client.getDiagnostics(uri2InFolder)).isEmpty();
     });
 
@@ -526,7 +526,7 @@ void analysisConnected_scan_all_hotspot_then_forget() throws IOException {
           Diagnostic::getSeverity)
         .containsExactly(
           tuple(1, 15, 1, 28, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.",
-            DiagnosticSeverity.Warning));
+            DiagnosticSeverity.Information));
 
       // File 2 is not open, cleaning hotspots
       assertThat(client.getHotspots(uri2InFolder)).isEmpty();
@@ -972,7 +972,7 @@ void change_hotspot_status_to_resolved() {
     awaitUntilAsserted(() -> assertThat(client.getHotspots(uriInFolder))
       .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage, Diagnostic::getSeverity)
       .containsExactly(
-        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Warning)));
+        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Information)));
     assertThat(client.getHotspots(uriInFolder).get(0).getData().toString()).contains("\"status\":0");
 
     lsProxy.changeHotspotStatus(new SonarLintExtendedLanguageServer.ChangeHotspotStatusParams(hotspotKey, HotspotStatus.SAFE.name(), uriInFolder));
@@ -1054,7 +1054,7 @@ void should_not_change_hotspot_status_to_resolved() {
     awaitUntilAsserted(() -> assertThat(client.getHotspots(uriInFolder))
       .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage, Diagnostic::getSeverity)
       .containsExactly(
-        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Warning)));
+        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Information)));
     assertThat(client.getHotspots(uriInFolder).get(0).getData().toString()).contains("\"status\":0");
 
     lsProxy.changeHotspotStatus(new SonarLintExtendedLanguageServer.ChangeHotspotStatusParams(hotspotKey, HotspotStatus.SAFE.name(), uriInFolder));
@@ -1148,7 +1148,7 @@ void change_hotspot_status_permission_check() throws ExecutionException, Interru
     awaitUntilAsserted(() -> assertThat(client.getHotspots(uriInFolder))
       .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage, Diagnostic::getSeverity)
       .containsExactly(
-        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Warning)));
+        tuple(0, 13, 0, 26, PYTHON_S1313, "remote", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Information)));
 
 
     var response = lsProxy.getAllowedHotspotStatuses(
@@ -1174,7 +1174,7 @@ void change_hotspot_status_permission_check_fail() throws ExecutionException, In
     awaitUntilAsserted(() -> assertThat(client.getHotspots(uriInFolder))
       .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage, Diagnostic::getSeverity)
       .containsExactly(
-        tuple(0, 13, 0, 26, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Warning)));
+        tuple(0, 13, 0, 26, PYTHON_S1313, "sonarqube", "Make sure using this hardcoded IP address \"12.34.56.78\" is safe here.", DiagnosticSeverity.Information)));
 
     lsProxy.getAllowedHotspotStatuses(
       new SonarLintExtendedLanguageServer.GetAllowedHotspotStatusesParams(hotspotKey, folder1BaseDir.toUri().toString(), uriInFolder)).get();
@@ -1443,7 +1443,7 @@ void shouldReportTaintIssues() {
     awaitUntilAsserted(() -> assertThat(client.getTaints(fileUri))
       .extracting(startLine(), startCharacter(), endLine(), endCharacter(), code(), Diagnostic::getSource, Diagnostic::getMessage,
         Diagnostic::getSeverity)
-      .contains(tuple(0, 1, 0, 2, "ruleKey", "Latest SonarQube Server Analysis", "message", DiagnosticSeverity.Warning)));
+      .contains(tuple(0, 1, 0, 2, "ruleKey", "Latest SonarQube Server Analysis", "message", DiagnosticSeverity.Error)));
   }
 
   @Test