(feat) Add function to search code scanning alert by id

[#1133]

Author: akashRindhe

src/main/java/org/kohsuke/github/GHRepository.java

@@ -3547,6 +3547,22 @@ private PagedIterable<GHCodeScanningAlert> listCodeScanningAlerts(Map<String, Ob
                 root.createRequest().withUrlPath(getApiTailUrl("code-scanning/alerts")).with(filters));
     }
 
+    /**
+     * Get code scanning alert by id
+     *
+     * @param id
+     *            id of the code scanning alert
+     * @return the code scanning alert
+     * @throws IOException
+     *             the io exception
+     */
+    public GHCodeScanningAlert getCodeScanningAlert(long id) throws IOException {
+        return root.createRequest()
+                .withUrlPath(getApiTailUrl("code-scanning/alerts"), String.valueOf(id))
+                .fetch(GHCodeScanningAlert.class)
+                .wrap(this);
+    }
+
     /**
      * Streams a zip archive of the repository, optionally at a given <code>ref</code>.
      *

src/test/java/org/kohsuke/github/GHCodeScanningAlertTest.java

@@ -1,11 +1,14 @@
 package org.kohsuke.github;
 
+import org.junit.Assume;
 import org.junit.Before;
 import org.junit.Test;
 
+import java.io.IOException;
 import java.util.List;
 
 import static org.hamcrest.Matchers.equalTo;
+import static org.hamcrest.Matchers.greaterThanOrEqualTo;
 import static org.hamcrest.Matchers.is;
 import static org.hamcrest.Matchers.not;
 
@@ -44,7 +47,7 @@ public void testListCodeScanningAlerts() {
         assertThat(tool.getName(), is("CodeQL"));
         assertThat(tool.getVersion(), not((Object) null));
 
-        // Verify the generic values of the code scanning rule
+        // Verify that fields of the code scanning rule are non-null
         assertThat(alert.getRule(), not((Object) null));
         GHCodeScanningAlert.Rule rule = alert.getRule();
         assertThat(rule.getId(), not((Object) null));
@@ -63,4 +66,25 @@ public void testListCodeScanningAlerts() {
         assertThat(openAlert.getState(), is(GHCodeScanningAlertState.OPEN));
     }
 
+    @Test
+    public void testGetCodeScanningAlert() throws IOException {
+        // Arrange
+        List<GHCodeScanningAlert> dismissedAlerts = repo.listCodeScanningAlerts(GHCodeScanningAlertState.DISMISSED)
+                ._iterator(1)
+                .nextPage();
+        Assume.assumeThat(dismissedAlerts.size(), greaterThanOrEqualTo(1));
+        GHCodeScanningAlert dismissedAlert = dismissedAlerts.get(0);
+        long idOfDismissed = dismissedAlert.getId();
+
+        // Act
+        GHCodeScanningAlert result = repo.getCodeScanningAlert(idOfDismissed);
+
+        // Assert
+        assertThat(result, not((Object) null));
+        assertThat(result.getId(), equalTo(idOfDismissed));
+        assertThat(result.getDismissedReason(), equalTo(dismissedAlert.getDismissedReason()));
+        assertThat(result.getDismissedAt(), equalTo(dismissedAlert.getDismissedAt()));
+        assertThat(result.getDismissedBy().login, equalTo(dismissedAlert.getDismissedBy().login));
+    }
+
 }

src/test/resources/org/kohsuke/github/GHCodeScanningAlertTest/wiremock/testGetCodeScanningAlert/__files/repos_hub4j-test-org_pixi-2.json

@@ -0,0 +1,61 @@
+[
+  {
+    "number": 1,
+    "created_at": "2021-05-17T14:55:01Z",
+    "url": "https://api.github.com/repos/hub4j-test-org/Pixi/code-scanning/alerts/1",
+    "html_url": "https://github.com/hub4j-test-org/Pixi/security/code-scanning/1",
+    "state": "dismissed",
+    "dismissed_by": {
+      "login": "akashRindhe",
+      "id": 14114123,
+      "node_id": "MDQ6VXNlcjE0MTE0MTIz",
+      "avatar_url": "https://avatars.githubusercontent.com/u/14114123?v=4",
+      "gravatar_id": "",
+      "url": "https://api.github.com/users/akashRindhe",
+      "html_url": "https://github.com/akashRindhe",
+      "followers_url": "https://api.github.com/users/akashRindhe/followers",
+      "following_url": "https://api.github.com/users/akashRindhe/following{/other_user}",
+      "gists_url": "https://api.github.com/users/akashRindhe/gists{/gist_id}",
+      "starred_url": "https://api.github.com/users/akashRindhe/starred{/owner}{/repo}",
+      "subscriptions_url": "https://api.github.com/users/akashRindhe/subscriptions",
+      "organizations_url": "https://api.github.com/users/akashRindhe/orgs",
+      "repos_url": "https://api.github.com/users/akashRindhe/repos",
+      "events_url": "https://api.github.com/users/akashRindhe/events{/privacy}",
+      "received_events_url": "https://api.github.com/users/akashRindhe/received_events",
+      "type": "User",
+      "site_admin": false
+    },
+    "dismissed_at": "2021-05-18T01:45:16Z",
+    "dismissed_reason": "used in tests",
+    "rule": {
+      "id": "js/angular/disabling-sce",
+      "severity": "warning",
+      "description": "Disabling SCE",
+      "name": "js/angular/disabling-sce"
+    },
+    "tool": {
+      "name": "CodeQL",
+      "guid": null,
+      "version": "2.5.4"
+    },
+    "most_recent_instance": {
+      "ref": "refs/heads/master",
+      "analysis_key": ".github/workflows/codeql-analysis.yml:analyze",
+      "environment": "{\"language\":\"javascript\"}",
+      "state": "dismissed",
+      "commit_sha": "b3cfb0474bb3d5b5cd499a17e448281abbd256d7",
+      "message": {
+        "text": "Disabling SCE is strongly discouraged."
+      },
+      "location": {
+        "path": "app/pixi.html",
+        "start_line": 179,
+        "end_line": 179,
+        "start_column": 4,
+        "end_column": 31
+      },
+      "classifications": []
+    },
+    "instances_url": "https://api.github.com/repos/hub4j-test-org/Pixi/code-scanning/alerts/1/instances"
+  }
+]

src/test/resources/org/kohsuke/github/GHCodeScanningAlertTest/wiremock/testGetCodeScanningAlert/__files/repos_hub4j-test-org_pixi_code-scanning_alerts-3.json

@@ -0,0 +1,86 @@
+{
+  "number": 1,
+  "created_at": "2021-05-17T14:55:01Z",
+  "url": "https://api.github.com/repos/hub4j-test-org/Pixi/code-scanning/alerts/1",
+  "html_url": "https://github.com/hub4j-test-org/Pixi/security/code-scanning/1",
+  "state": "dismissed",
+  "dismissed_by": {
+    "login": "akashRindhe",
+    "id": 14114123,
+    "node_id": "MDQ6VXNlcjE0MTE0MTIz",
+    "avatar_url": "https://avatars.githubusercontent.com/u/14114123?v=4",
+    "gravatar_id": "",
+    "url": "https://api.github.com/users/akashRindhe",
+    "html_url": "https://github.com/akashRindhe",
+    "followers_url": "https://api.github.com/users/akashRindhe/followers",
+    "following_url": "https://api.github.com/users/akashRindhe/following{/other_user}",
+    "gists_url": "https://api.github.com/users/akashRindhe/gists{/gist_id}",
+    "starred_url": "https://api.github.com/users/akashRindhe/starred{/owner}{/repo}",
+    "subscriptions_url": "https://api.github.com/users/akashRindhe/subscriptions",
+    "organizations_url": "https://api.github.com/users/akashRindhe/orgs",
+    "repos_url": "https://api.github.com/users/akashRindhe/repos",
+    "events_url": "https://api.github.com/users/akashRindhe/events{/privacy}",
+    "received_events_url": "https://api.github.com/users/akashRindhe/received_events",
+    "type": "User",
+    "site_admin": false
+  },
+  "dismissed_at": "2021-05-18T01:45:16Z",
+  "dismissed_reason": "used in tests",
+  "rule": {
+    "id": "js/angular/disabling-sce",
+    "severity": "warning",
+    "description": "Disabling SCE",
+    "name": "js/angular/disabling-sce",
+    "full_description": "Disabling strict contextual escaping (SCE) can cause security vulnerabilities.",
+    "tags": [
+      "frameworks/angularjs",
+      "maintainability",
+      "security"
+    ],
+    "help": "# Disabling SCE\nAngularJS is secure by default through automated sanitization and filtering of untrusted values that could cause vulnerabilities such as XSS. Strict Contextual Escaping (SCE) is an execution mode in AngularJS that provides this security mechanism.\n\nDisabling SCE in an AngularJS application is strongly discouraged. It is even more discouraged to disable SCE in a library, since it is an application-wide setting.\n\n\n## Recommendation\nDo not disable SCE.\n\n\n## Example\nThe following example shows an AngularJS application that disables SCE in order to dynamically construct an HTML fragment, which is later inserted into the DOM through `$scope.html`.\n\n\n```javascript\nangular.module('app', [])\n    .config(function($sceProvider) {\n        $sceProvider.enabled(false); // BAD\n    }).controller('controller', function($scope) {\n        // ...\n        $scope.html = '<ul><li>' + item.toString() + '</li></ul>';\n    });\n\n```\nThis is problematic, since it disables SCE for the entire AngularJS application.\n\nInstead, just mark the dynamically constructed HTML fragment as safe using `$sce.trustAsHtml`, before assigning it to `$scope.html`:\n\n\n```javascript\nangular.module('app', [])\n    .controller('controller', function($scope, $sce) {\n        // ...\n        // GOOD (but should use the templating system instead)\n        $scope.html = $sce.trustAsHtml('<ul><li>' + item.toString() + '</li></ul>'); \n    });\n\n```\nPlease note that this example is for illustrative purposes only; use the AngularJS templating system to dynamically construct HTML when possible.\n\n\n## References\n* AngularJS Developer Guide: [Strict Contextual Escaping](https://docs.angularjs.org/api/ng/service/$sce)\n* AngularJS Developer Guide: [Can I disable SCE completely?](https://docs.angularjs.org/api/ng/service/$sce#can-i-disable-sce-completely-).\n"
+  },
+  "tool": {
+    "name": "CodeQL",
+    "guid": null,
+    "version": "2.5.4"
+  },
+  "most_recent_instance": {
+    "ref": "refs/heads/master",
+    "analysis_key": ".github/workflows/codeql-analysis.yml:analyze",
+    "environment": "{\"language\":\"javascript\"}",
+    "state": "dismissed",
+    "commit_sha": "b3cfb0474bb3d5b5cd499a17e448281abbd256d7",
+    "message": {
+      "text": "Disabling SCE is strongly discouraged."
+    },
+    "location": {
+      "path": "app/pixi.html",
+      "start_line": 179,
+      "end_line": 179,
+      "start_column": 4,
+      "end_column": 31
+    },
+    "classifications": []
+  },
+  "instances_url": "https://api.github.com/repos/hub4j-test-org/Pixi/code-scanning/alerts/1/instances",
+  "instances": [
+    {
+      "ref": "refs/heads/master",
+      "analysis_key": ".github/workflows/codeql-analysis.yml:analyze",
+      "environment": "{\"language\":\"javascript\"}",
+      "state": "dismissed",
+      "commit_sha": "b3cfb0474bb3d5b5cd499a17e448281abbd256d7",
+      "message": {
+        "text": "Disabling SCE is strongly discouraged."
+      },
+      "location": {
+        "path": "app/pixi.html",
+        "start_line": 179,
+        "end_line": 179,
+        "start_column": 4,
+        "end_column": 31
+      },
+      "classifications": []
+    }
+  ]
+}

src/test/resources/org/kohsuke/github/GHCodeScanningAlertTest/wiremock/testGetCodeScanningAlert/__files/repos_hub4j-test-org_pixi_code-scanning_alerts_1-4.json

@@ -0,0 +1,46 @@
+{
+  "login": "akashRindhe",
+  "id": 14114123,
+  "node_id": "MDQ6VXNlcjE0MTE0MTIz",
+  "avatar_url": "https://avatars.githubusercontent.com/u/14114123?v=4",
+  "gravatar_id": "",
+  "url": "https://api.github.com/users/akashRindhe",
+  "html_url": "https://github.com/akashRindhe",
+  "followers_url": "https://api.github.com/users/akashRindhe/followers",
+  "following_url": "https://api.github.com/users/akashRindhe/following{/other_user}",
+  "gists_url": "https://api.github.com/users/akashRindhe/gists{/gist_id}",
+  "starred_url": "https://api.github.com/users/akashRindhe/starred{/owner}{/repo}",
+  "subscriptions_url": "https://api.github.com/users/akashRindhe/subscriptions",
+  "organizations_url": "https://api.github.com/users/akashRindhe/orgs",
+  "repos_url": "https://api.github.com/users/akashRindhe/repos",
+  "events_url": "https://api.github.com/users/akashRindhe/events{/privacy}",
+  "received_events_url": "https://api.github.com/users/akashRindhe/received_events",
+  "type": "User",
+  "site_admin": false,
+  "name": "Akash Rindhe",
+  "company": null,
+  "blog": "",
+  "location": "Singapore",
+  "email": null,
+  "hireable": null,
+  "bio": null,
+  "twitter_username": null,
+  "public_repos": 10,
+  "public_gists": 0,
+  "followers": 0,
+  "following": 6,
+  "created_at": "2015-09-03T18:07:43Z",
+  "updated_at": "2021-05-17T14:48:09Z",
+  "private_gists": 0,
+  "total_private_repos": 4,
+  "owned_private_repos": 4,
+  "disk_usage": 24553,
+  "collaborators": 1,
+  "two_factor_authentication": true,
+  "plan": {
+    "name": "free",
+    "space": 976562499,
+    "collaborators": 0,
+    "private_repos": 10000
+  }
+}

src/test/resources/org/kohsuke/github/GHCodeScanningAlertTest/wiremock/testGetCodeScanningAlert/__files/user-1.json

@@ -0,0 +1,47 @@
+{
+  "id": "eaf33f02-185f-4be9-a97b-924271e6e7c5",
+  "name": "repos_hub4j-test-org_pixi",
+  "request": {
+    "url": "/repos/hub4j-test-org/Pixi",
+    "method": "GET",
+    "headers": {
+      "Accept": {
+        "equalTo": "text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2"
+      }
+    }
+  },
+  "response": {
+    "status": 200,
+    "bodyFileName": "repos_hub4j-test-org_pixi-2.json",
+    "headers": {
+      "Server": "GitHub.com",
+      "Date": "Tue, 18 May 2021 01:47:57 GMT",
+      "Content-Type": "application/json; charset=utf-8",
+      "Cache-Control": "private, max-age=60, s-maxage=60",
+      "Vary": [
+        "Accept, Authorization, Cookie, X-GitHub-OTP",
+        "Accept-Encoding, Accept, X-Requested-With"
+      ],
+      "ETag": "W/\"798dc78bb4c7a5f7af29dd24986abff44807dbd0601e8a2e0b5768a9e86d236f\"",
+      "Last-Modified": "Mon, 17 May 2021 14:50:01 GMT",
+      "X-OAuth-Scopes": "admin:enterprise, admin:org, admin:org_hook, admin:public_key, admin:repo_hook, delete:packages, delete_repo, gist, notifications, repo, user, workflow, write:discussion, write:packages",
+      "X-Accepted-OAuth-Scopes": "repo",
+      "X-GitHub-Media-Type": "unknown, github.v3",
+      "X-RateLimit-Limit": "5000",
+      "X-RateLimit-Remaining": "4989",
+      "X-RateLimit-Reset": "1621305488",
+      "X-RateLimit-Used": "11",
+      "X-RateLimit-Resource": "core",
+      "Strict-Transport-Security": "max-age=31536000; includeSubdomains; preload",
+      "X-Frame-Options": "deny",
+      "X-Content-Type-Options": "nosniff",
+      "X-XSS-Protection": "0",
+      "Referrer-Policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
+      "Content-Security-Policy": "default-src 'none'",
+      "X-GitHub-Request-Id": "C5B4:3979:DD47:15200:60A31CCC"
+    }
+  },
+  "uuid": "eaf33f02-185f-4be9-a97b-924271e6e7c5",
+  "persistent": true,
+  "insertionIndex": 2
+}

src/test/resources/org/kohsuke/github/GHCodeScanningAlertTest/wiremock/testGetCodeScanningAlert/mappings/repos_hub4j-test-org_pixi-2.json

@@ -0,0 +1,46 @@
+{
+  "id": "60d5109b-44b1-4891-94f2-10cb944b54a8",
+  "name": "repos_hub4j-test-org_pixi_code-scanning_alerts",
+  "request": {
+    "url": "/repos/hub4j-test-org/Pixi/code-scanning/alerts?state=dismissed&per_page=1",
+    "method": "GET",
+    "headers": {
+      "Accept": {
+        "equalTo": "text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2"
+      }
+    }
+  },
+  "response": {
+    "status": 200,
+    "bodyFileName": "repos_hub4j-test-org_pixi_code-scanning_alerts-3.json",
+    "headers": {
+      "Server": "GitHub.com",
+      "Date": "Tue, 18 May 2021 01:47:57 GMT",
+      "Content-Type": "application/json; charset=utf-8",
+      "Cache-Control": "private, max-age=60, s-maxage=60",
+      "Vary": [
+        "Accept, Authorization, Cookie, X-GitHub-OTP",
+        "Accept-Encoding, Accept, X-Requested-With"
+      ],
+      "ETag": "W/\"9a1d2adc0632ce1ed356060f568dde4d49ff9bb466dbd8dd178c2d7f2deb168a\"",
+      "X-OAuth-Scopes": "admin:enterprise, admin:org, admin:org_hook, admin:public_key, admin:repo_hook, delete:packages, delete_repo, gist, notifications, repo, user, workflow, write:discussion, write:packages",
+      "X-Accepted-OAuth-Scopes": "admin:repo_hook, delete_repo, read:repo_hook, repo, repo:invite, repo:status, repo_deployment, security_events, write:repo_hook",
+      "X-GitHub-Media-Type": "unknown, github.v3",
+      "X-RateLimit-Limit": "5000",
+      "X-RateLimit-Remaining": "4988",
+      "X-RateLimit-Reset": "1621305488",
+      "X-RateLimit-Used": "12",
+      "X-RateLimit-Resource": "core",
+      "Strict-Transport-Security": "max-age=31536000; includeSubdomains; preload",
+      "X-Frame-Options": "deny",
+      "X-Content-Type-Options": "nosniff",
+      "X-XSS-Protection": "0",
+      "Referrer-Policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
+      "Content-Security-Policy": "default-src 'none'",
+      "X-GitHub-Request-Id": "C5B4:3979:DD51:1520E:60A31CCD"
+    }
+  },
+  "uuid": "60d5109b-44b1-4891-94f2-10cb944b54a8",
+  "persistent": true,
+  "insertionIndex": 3
+}