Typos in API descriptions for Security Hotspot metrics (SQ 9.0)

There are some typos (search/replace errors?) in the response from the Metrics API for SonarQube 9.0 (build 45539), Developer Edition.

Screenshot:

Steps to reproduce:

  1. On a SonarQube instance, call /api/metrics/search?ps=500
  2. Search for: security_hotspots_reviewed_status
  3. Search for: security_hotspots_to_review_status

Expected results:

  1. On step 2, there is 1 match for the key security_hotspots_reviewed_status and it has a proper name and description, e.g. “Number of Security Hotspots That Has Been Reviewed.”
  2. On step 2, there is also 1 match for the key new_security_hotspots_reviewed_status and it has a proper name and description, e.g. “Number of New Security Hotspots That Has Been Reviewed.”
  3. On step 3, there is 1 match for the key security_hotspots_to_review_status and it has a proper name and description, e.g. “Number of Security Hotspots That Needs Review.”
  4. On step 3, there is also 1 match for the key new_security_hotspots_to_review_status and it has a proper name and description, e.g. “Number of New Security Hotspots That Needs Review.”

Actual results:

  1. The match is there, but the name and description seem erroneous; they are both: “Security Review Reviewed Status”
  2. The match is there, but the name and description seem erroneous; they are both: “Security Review Reviewed Status on New Code”
  3. The match is there, but the name and description seem erroneous; they are both: “Security Review To Review Status”
  4. The match is there, but the name and description seem erroneous; they are both: “Security Review To Review Status on New Code”
2 Likes