Increase SCA vulnerability test coverage#11785
Conversation
|
Hi! 👋 Thanks for your pull request! 🎉 To help us review it, please make sure to:
If you need help, please check our contributing guidelines. |
AlexeyKuznetsov-DD
left a comment
There was a problem hiding this comment.
Left minor comments.
🟢 Java Benchmark SLOs — All performance SLOs passed
PR vs. master results
Commit: Load and DaCapo benchmarks can be triggered manually in the GitLab pipeline. Results will appear in the Benchmarking Platform UI after completion. |
e66206d to
3d56b60
Compare
jandro996
left a comment
There was a problem hiding this comment.
Nits
dd-java-agent/appsec/src/test/java/com/datadog/appsec/sca/ScaReachabilityMethodLevelTest.java:46
nit: static class could be enough here
dd-java-agent/appsec/src/test/java/com/datadog/appsec/sca/ScaCveDatabaseTest.java:129
nit: two independent behaviors in one test method (immutability + version matching), but good enough
jandro996
left a comment
There was a problem hiding this comment.
Thanks for take care of this!
516b25a to
0104ebb
Compare
|
/merge |
|
View all feedbacks in Devflow UI.
The expected merge time in
|
8df9f05
into
master
What Does This Do
Expands the test coverage for SCA (Software Composition Analysis) vulnerabilities.
Motivation
Additional Notes
Contributor Checklist
type:and (comp:orinst:) labels in addition to any other useful labelsclose,fix, or any linking keywords when referencing an issueUse
solvesinstead, and assign the PR milestone to the issue/merge. You can also:/merge --commit-message "..."/merge -c/merge -f --reason "reason"; please use this judiciously, as some checks do not run at the PR-level (note: the PR still needs to be mergeable, this will only skip the pre-merge build)Jira ticket: [PROJ-IDENT]