Project Ignite Phase I - Forking Jetbrains Plugin (AST-131708)#409
Project Ignite Phase I - Forking Jetbrains Plugin (AST-131708)#409cx-atish-jadhav wants to merge 70 commits intomainfrom
Conversation
… per Figma design
…brains-plugin into other/ui_fixes
- Removed main src folder
- Removed main src folder
…alues - Configure common dependencies on global level
- Migrated required classes to plugin-ignite and checkmarx-ast plugin AST-133069 - Added test cases
… AST-133069 - Added icons to common-lib - Added test cases
…ST-133376, AST-133638
…m/Checkmarx/ast-jetbrains-plugin into feature/project_ignite_AST-131708 # Conflicts: # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/commands/Project.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/commands/Scan.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/commands/Triage.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/inspections/CxInspection.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/inspections/CxVisitor.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/CxToolWindowFactory.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/CxToolWindowPanel.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/CancelScanAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/OpenSettingsAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/filter/CustomStateFilter.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/filter/DynamicFilterActionGroup.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/filter/FilterBaseAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByBaseAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByDirectDependency.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByFileAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByPackageAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupBySeverityAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByStateAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/group/by/GroupByVulnerabilityTypeAction.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/selection/BranchSelectionGroup.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/selection/ProjectSelectionGroup.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/selection/RootGroup.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/actions/selection/ScanSelectionGroup.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/results/tree/ResultsTreeFactory.java # plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/results/tree/nodes/ResultNode.java # plugin-checkmarx-ast/src/main/resources/META-INF/plugin.xml # plugin-ignite/src/main/java/com/checkmarx/intellij/ignite/ui/actions/IgnoredFindingsToolbarActions.java # plugin-ignite/src/main/java/com/checkmarx/intellij/ignite/ui/actions/VulnerabilityFilterBaseAction.java # plugin-ignite/src/main/java/com/checkmarx/intellij/ignite/ui/actions/VulnerabilityFilterState.java # plugin-ignite/src/main/java/com/checkmarx/intellij/ignite/window/IgniteToolWindowFactory.java # plugin-ignite/src/main/resources/META-INF/plugin.xml
…ST-133376, AST-133638
…plugin ignite AST-133784
…m/Checkmarx/ast-jetbrains-plugin into feature/project_ignite_AST-131708
|
| GitGuardian id | GitGuardian status | Secret | Commit | Filename | |
|---|---|---|---|---|---|
| 11482443 | Triggered | Generic Password | ed38b63 | plugin-checkmarx-ast/src/test/java/com/checkmarx/intellij/integration/standard/data/python-vul-file.py | View secret |
| 11482444 | Triggered | Username Password | ed38b63 | plugin-checkmarx-ast/src/test/java/com/checkmarx/intellij/integration/standard/data/python-vul-file.py | View secret |
| 11482451 | Triggered | Generic Password | ed38b63 | plugin-checkmarx-ast/src/test/java/com/checkmarx/intellij/integration/standard/data/python-vul-file.py | View secret |
🛠 Guidelines to remediate hardcoded secrets
- Understand the implications of revoking this secret by investigating where it is used in your code.
- Replace and store your secrets safely. Learn here the best practices.
- Revoke and rotate these secrets.
- If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.
To avoid such incidents in the future consider
- following these best practices for managing and storing secrets including API keys and other credentials
- install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.
🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.
There was a problem hiding this comment.
What is the significance of such a message?
There was a problem hiding this comment.
- this i have added for testing purpose, this is not needed now..
- Changes: kept only debug log to identify plugin during initialization as its used by both the plugin
- LOGGER.debug(format("PluginContext: Setting plugin name: %s", pluginName));
| * </pre> | ||
| */ | ||
| @Service(Service.Level.APP) | ||
| public final class PluginContext { |
There was a problem hiding this comment.
is this class thread-safe?
There was a problem hiding this comment.
This is app level singleton service created on initialization of the plugin. we are doing write only once on plugin initialization, so we dont need to implement explicit thread safety for this class .
Note: This class used by at a time one plugin only so thread safety not required
There was a problem hiding this comment.
Log messages at Info level only when it makes sense at that level.
There was a problem hiding this comment.
Changed to debug log, to track, if unnecessary reset called
There was a problem hiding this comment.
Let's avoid the word ignite in the code.
There was a problem hiding this comment.
Changed to DEVASSIST_WELCOME_AI_ERROR
There was a problem hiding this comment.
Avoid use of Ignite word.
There was a problem hiding this comment.
Changed IGNITE to DEVASSIST
There was a problem hiding this comment.
If we are adding log message, it should have significance.
There was a problem hiding this comment.
Changed log to : LOGGER.debug("LicenseSyncStartupActivity: License changed for the tenant, publishing event to reset the plugin UI.");
- Changes for review comments
…8' into feature/project_ignite_AST-131708
|
New Issues (1)Checkmarx found the following issues in this Pull Request
|
commit 45a8e4f Author: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Wed Feb 18 14:31:35 2026 +0530 adding logging for tests modules commit 8c1fc8a Author: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Wed Feb 18 13:52:32 2026 +0530 Added jacoc test report for module devassist-lib and devassist-deploy commit f40c22d Author: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Wed Feb 18 12:12:34 2026 +0530 Reverted aggregated jacoco test report changes commit 42c7e00 Author: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Wed Feb 18 10:43:25 2026 +0530 Fix: Use string task names for finalizedBy to avoid CI evaluation errors commit 29e8f74 Author: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Wed Feb 18 09:48:33 2026 +0530 Changes for worfkflow


By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.
Description
Forked the existing Checkmarx One JetBrains plugin to create a separate Checkmarx Developer Assist plugin for Project Ignite, enabling a focused developer experience without enterprise features.
What Changed
New Plugin Module Created
plugin-checkmarx-devassistcom.checkmarx.devassist-jetbrains-pluginRemoved Enterprise Features
Simplified Authentication
Focused Settings UI
CxDevAssistSettingsComponent- Main authentication settingsRealtimeScannersSettingsComponent- Scanner configuration panelIgniteWelcomeDialog- First-run onboarding experienceCode Refactoring
common-lib(auth, settings, utils)devassist-lib(MCP integration)plugin-checkmarx-astwithout regressionPluginContextfor plugin-specific behaviorImpact
Plugin Users:
Existing Checkmarx One Plugin:
Codebase:
References
Testing
Test Coverage Added
build/reports/jacoco/test/html/index.htmlManual Testing Performed
✅ Plugin installs independently from Checkmarx One plugin
✅ API key authentication works without server URL
✅ Settings pages display correctly (DevAssist + Realtime Scanners)
✅ Welcome dialog shows on first launch
✅ Real-time scanners can be enabled/disabled
✅ MCP installation flow works correctly
✅ No Checkmarx One features visible in UI
✅ No regression in existing plugin-checkmarx-ast
Checklist