-
Notifications
You must be signed in to change notification settings - Fork 36
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fixed dependency tree right click action #483
Fixed dependency tree right click action #483
Conversation
(pyton is not implemented)
14cafd3
to
27ca49f
Compare
bacf6d4
to
b37a752
Compare
src/main/java/com/jfrog/ide/idea/navigation/NavigationService.java
Outdated
Show resolved
Hide resolved
createNodePopupMenu((DependencyNode) selected); | ||
DescriptorFileTreeNode descriptorFileTreeNode = (DescriptorFileTreeNode) selectedPath.getParentPath().getLastPathComponent(); | ||
String descriptorPath = descriptorFileTreeNode.getSubtitle(); | ||
this.createNodePopupMenu((DependencyNode) selected, descriptorPath); | ||
} else if (selected instanceof VulnerabilityNode) { | ||
createIgnoreRuleOption((VulnerabilityNode) selected, e); | ||
} else if (selected instanceof ApplicableIssueNode) { | ||
createIgnoreRuleOption(((ApplicableIssueNode) selected).getIssue(), e); | ||
} else { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
instead of removing the comment here - I suggest adding comments to all for cases of the if/else
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
okay tell me your opinion after my changes
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The code changes themselves are ok - but from what I read in the description - we're eliminating all version comparison.
How can that effect complex project with multiple packages from different types. should we identify them as vulnerabilities?
@hadarshjfrog. what your saying about the versions is a dilema. I can try and keep it in cases it exists(meaning from parent) and not in cases it does not. they both will look the same as they both dont have a version(because they both inherit from their parents) |
This PR fixes the right click action in the tree for dependencies with vulnerabilities.
Package json now works with scopes, and Maven and Gradle work now when inheriting version from parent.
The problem for gradle and maven mainly resided in the fact we sent the version(that was not needed) to the comparison with the impact tree.
In package json, the scope from the package name was removed and as a result, caused issues in identifying the package.