Review comments resolved

cx-atish-jadhav · cx-atish-jadhav · commit 7c859bebb673 · 2026-03-25T14:08:01.000+05:30
diff --git a/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/ignore/IgnoreManager.java b/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/ignore/IgnoreManager.java
@@ -772,7 +772,7 @@ public void updateLineNumbersForIgnoredEntriesByProblematicLine(ScanResult<?> fu
         // Iterate through all ignore entries using normal for-each
         for (Map.Entry<String, IgnoreEntry> mapEntry : ignoreFileManager.getIgnoreData().entrySet()) {
             IgnoreEntry ignoreEntry = mapEntry.getValue();
-            if (!"ASCA".equalsIgnoreCase(String.valueOf(ignoreEntry.getType()))) {
+            if (!ScanEngine.ASCA.toString().equalsIgnoreCase(String.valueOf(ignoreEntry.getType()))) {
                 continue; // Only process ASCA entries
             }
             // Remove file references that are not present in the scan result
@@ -783,8 +783,8 @@ public void updateLineNumbersForIgnoredEntriesByProblematicLine(ScanResult<?> fu
                     String ignoredProblematicLine = fileRef.getProblematicLine();
                     // Find a matching vulnerability by problematicLine (null-safe)
                     VulnerabilityWithLine match = vulnerabilitiesWithLine.stream()
-                        .filter(vwl -> Objects.equals(vwl.problematicLine, ignoredProblematicLine))
-                        .findFirst().orElse(null);
+                            .filter(vwl -> Objects.equals(vwl.problematicLine, ignoredProblematicLine))
+                            .findFirst().orElse(null);
                     if (match != null && match.line > 0 && fileRef.getLine() != match.line) {
                         fileRef.setLine(match.line);
                         hasChanges = true;
@@ -840,7 +840,7 @@ public void removeIgnoreEntriesForFileIfEmpty(String filePath) {
         boolean removed = false;
         for (Map.Entry<String, IgnoreEntry> mapEntry : ignoreFileManager.getIgnoreData().entrySet()) {
             IgnoreEntry ignoreEntry = mapEntry.getValue();
-            if (!"ASCA".equalsIgnoreCase(String.valueOf(ignoreEntry.getType()))) {
+            if (!ScanEngine.ASCA.toString().equalsIgnoreCase(String.valueOf(ignoreEntry.getType()))) {
                 continue;
             }
             // Remove file references for this file
@@ -862,4 +862,38 @@ public void removeIgnoreEntriesForFileIfEmpty(String filePath) {
         }
     }
 
+    public boolean isIgnored(ScanIssue issue, List<IgnoreEntry> ignoreEntries, String filePath) {
+        String normalizedPath = ignoreFileManager.normalizePath(filePath);
+        boolean isAsca = issue.getScanEngine() == ScanEngine.ASCA;
+        // For ASCA, check problematicLine for all vulnerabilities
+        if (isAsca && issue.getVulnerabilities() != null && !issue.getVulnerabilities().isEmpty()) {
+            for (Vulnerability vuln : issue.getVulnerabilities()) {
+                String issueProblematicLine = vuln.getProblematicLine();
+                for (IgnoreEntry entry : ignoreEntries) {
+                    for (IgnoreEntry.FileReference ref : entry.getFiles()) {
+                        boolean pathMatch = ref.isActive() && ref.getPath().equals(normalizedPath);
+                        boolean problematicLineMatch = (issueProblematicLine == null && ref.getProblematicLine() == null)
+                                || (issueProblematicLine != null && issueProblematicLine.equals(ref.getProblematicLine()));
+                        if (pathMatch && problematicLineMatch) {
+                            return true;
+                        }
+                    }
+                }
+            }
+            return false;
+        }
+        // Default: match by path and line
+        int issueLine = issue.getLocations() != null && !issue.getLocations().isEmpty()
+                ? issue.getLocations().get(0).getLine()
+                : -1;
+        for (IgnoreEntry entry : ignoreEntries) {
+            for (IgnoreEntry.FileReference ref : entry.getFiles()) {
+                if (ref.isActive() && ref.getPath().equals(normalizedPath) && ref.getLine() == issueLine) {
+                    return true;
+                }
+            }
+        }
+        return false;
+    }
+
 }
diff --git a/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/scanners/asca/AscaScanResultAdaptor.java b/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/scanners/asca/AscaScanResultAdaptor.java
@@ -4,8 +4,6 @@
 import com.checkmarx.ast.asca.ScanResult;
 import com.checkmarx.intellij.common.utils.SeverityLevel;
 import com.checkmarx.intellij.common.utils.Utils;
-import com.checkmarx.intellij.devassist.ignore.IgnoreEntry;
-import com.checkmarx.intellij.devassist.ignore.IgnoreFileManager;
 import com.checkmarx.intellij.devassist.model.Location;
 import com.checkmarx.intellij.devassist.model.ScanIssue;
 import com.checkmarx.intellij.devassist.model.Vulnerability;
@@ -14,10 +12,7 @@
 import com.checkmarx.intellij.devassist.utils.ScanEngine;
 import com.intellij.openapi.diagnostic.Logger;
 import org.jetbrains.annotations.NotNull;
-import com.intellij.openapi.project.Project;
 
-import java.nio.file.Path;
-import java.nio.file.Paths;
 import java.util.*;
 import java.util.stream.Collectors;
 
@@ -32,8 +27,6 @@ public class AscaScanResultAdaptor implements com.checkmarx.intellij.devassist.c
     private final ScanResult ascaScanResult;
     private final String filePath;
     private final List<ScanIssue> scanIssues;
-    private String workspaceRootPath = "";
-    private final Project project;
 
 
     /**
@@ -43,12 +36,9 @@ public class AscaScanResultAdaptor implements com.checkmarx.intellij.devassist.c
      * @param ascaScanResult the ASCA scan results to be wrapped by this adapter
      * @param filePath       the path of the file being scanned (needed for UI display)
      */
-    public AscaScanResultAdaptor(ScanResult ascaScanResult, String filePath, Project project) {
+    public AscaScanResultAdaptor(ScanResult ascaScanResult, String filePath) {
         this.ascaScanResult = ascaScanResult;
         this.filePath = filePath;
-        this.project = project;
-        String basePath = project.getBasePath();
-        this.workspaceRootPath = basePath;
         this.scanIssues = buildIssues();
     }
 
@@ -237,51 +227,4 @@ private String getUniqueId(ScanDetail scanIssue) {
         return ScanEngine.ASCA.name();
     }
 
-    public boolean isIgnored(ScanIssue issue, List<IgnoreEntry> ignoreEntries, String filePath) {
-        String normalizedPath = normalizePath(filePath);
-        boolean isAsca = issue.getScanEngine() == ScanEngine.ASCA;
-        // For ASCA, check problematicLine for all vulnerabilities
-        if (isAsca && issue.getVulnerabilities() != null && !issue.getVulnerabilities().isEmpty()) {
-            for (Vulnerability vuln : issue.getVulnerabilities()) {
-                String issueProblematicLine = vuln.getProblematicLine();
-                for (IgnoreEntry entry : ignoreEntries) {
-                    for (IgnoreEntry.FileReference ref : entry.getFiles()) {
-                        boolean pathMatch = ref.isActive() && ref.getPath().equals(normalizedPath);
-                        boolean problematicLineMatch = (issueProblematicLine == null && ref.getProblematicLine() == null)
-                            || (issueProblematicLine != null && issueProblematicLine.equals(ref.getProblematicLine()));
-                        if (pathMatch && problematicLineMatch) {
-                            return true;
-                        }
-                    }
-                }
-            }
-            return false;
-        }
-        // Default: match by path and line
-        int issueLine = issue.getLocations() != null && !issue.getLocations().isEmpty()
-                ? issue.getLocations().get(0).getLine()
-                : -1;
-        for (IgnoreEntry entry : ignoreEntries) {
-            for (IgnoreEntry.FileReference ref : entry.getFiles()) {
-                if (ref.isActive() && ref.getPath().equals(normalizedPath) && ref.getLine() == issueLine) {
-                    return true;
-                }
-            }
-        }
-        return false;
-    }
-
-    /**
-     * normalizes the given file path to be relative to the project's workspace root.
-     *
-     * @param filePath
-     * @return
-     */
-    private String normalizePath(String filePath) {
-        return Path.of(workspaceRootPath)
-                .relativize(Paths.get(filePath))
-                .toString()
-                .replace("\\", "/");
-    }
-
 }
diff --git a/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/scanners/asca/AscaScannerService.java b/devassist-lib/src/main/java/com/checkmarx/intellij/devassist/scanners/asca/AscaScannerService.java
@@ -8,6 +8,7 @@
 import com.checkmarx.intellij.devassist.basescanner.BaseScannerService;
 import com.checkmarx.intellij.devassist.configuration.ScannerConfig;
 import com.checkmarx.intellij.devassist.ignore.IgnoreEntry;
+import com.checkmarx.intellij.devassist.ignore.IgnoreFileManager;
 import com.checkmarx.intellij.devassist.ignore.IgnoreManager;
 import com.checkmarx.intellij.devassist.telemetry.TelemetryService;
 import com.checkmarx.intellij.devassist.utils.DevAssistConstants;
@@ -39,6 +40,7 @@
 public class AscaScannerService extends BaseScannerService<ScanResult> {
     private static final Logger LOGGER = Utils.getLogger(AscaScannerService.class);
     private static final String ASCA_DIR = "CxASCA";
+    private static final Object SCAN_LOCK = new Object();
 
     /**
      * Creates an ASCA scanner service with the default ASCA realtime configuration.
@@ -147,19 +149,20 @@ public com.checkmarx.intellij.devassist.common.ScanResult<ScanResult> scan(@NotN
             int issueCount = ascaResult.getScanDetails() != null ? ascaResult.getScanDetails().size() : 0;
             LOGGER.debug("ASCA scanner: scan completed - " + uri + " (" + issueCount + " issues found)");
 
-            AscaScanResultAdaptor scanResultAdaptor = new AscaScanResultAdaptor(ascaResult, uri, psiFile.getProject());
+            AscaScanResultAdaptor scanResultAdaptor = new AscaScanResultAdaptor(ascaResult, uri);
 
             // Filter out ignored issues based on problematicLine
-            com.checkmarx.intellij.devassist.ignore.IgnoreFileManager ignoreFileManager = com.checkmarx.intellij.devassist.ignore.IgnoreFileManager.getInstance(psiFile.getProject());
+            IgnoreManager ignoreManager = new IgnoreManager(psiFile.getProject());
+            IgnoreFileManager ignoreFileManager = IgnoreFileManager.getInstance(psiFile.getProject());
             List<IgnoreEntry> ignoreEntries = ignoreFileManager.getAllIgnoreEntries();
             List<com.checkmarx.intellij.devassist.model.ScanIssue> filteredIssues = new ArrayList<>();
             for (com.checkmarx.intellij.devassist.model.ScanIssue issue : scanResultAdaptor.getIssues()) {
-                if (!scanResultAdaptor.isIgnored(issue, ignoreEntries, uri)) {
+                if (!ignoreManager.isIgnored(issue, ignoreEntries, uri)) {
                     filteredIssues.add(issue);
                 }
             }
             // Return a new adaptor with only non-ignored issues
-            AscaScanResultAdaptor filteredAdaptor = new AscaScanResultAdaptor(ascaResult, uri, psiFile.getProject()) {
+            AscaScanResultAdaptor filteredAdaptor = new AscaScanResultAdaptor(ascaResult, uri) {
                 @Override
                 public List<com.checkmarx.intellij.devassist.model.ScanIssue> getIssues() {
                     return filteredIssues;
@@ -201,24 +204,25 @@ private ScanResult runAscaScan(PsiFile file, Project project, boolean ascLatestV
             return null;
         }
 
-        String tempFilePath = saveTempFile(file.getName(), fileContent);
-        if (tempFilePath == null) {
-            LOGGER.warn("Failed to create temporary file for ASCA scan.");
-            return null;
-        }
-
-        try {
-            LOGGER.info(Strings.join("Starting ASCA scan on file: ", virtualFile.getPath()));
-            ScanResult scanResult = scanAscaFile(tempFilePath, ascLatestVersion, agent, DevAssistUtils.getIgnoreFilePath(project));
-            // Update line numbers for ignored ASCA issues if any exist
-            updateIgnoredFileDataOnLatestResult(tempFilePath, project, uri, agent, ascLatestVersion);
-            handleScanResult(file, scanResult);
-            return scanResult;
-        } catch (Exception e) {
-            LOGGER.warn("Error during ASCA scan:", e);
-            return null;
-        } finally {
-            deleteFile(tempFilePath);
+        synchronized (SCAN_LOCK) {
+            String tempFilePath = saveTempFile(file.getName(), fileContent);
+            if (tempFilePath == null) {
+                LOGGER.warn("Failed to create temporary file for ASCA scan.");
+                return null;
+            }
+            try {
+                LOGGER.info(Strings.join("Starting ASCA scan on file: ", virtualFile.getPath()));
+                ScanResult scanResult = scanAscaFile(tempFilePath, ascLatestVersion, agent, DevAssistUtils.getIgnoreFilePath(project));
+                // Update line numbers for ignored ASCA issues if any exist
+                updateIgnoredFileDataOnLatestResult(tempFilePath, project, uri, agent, ascLatestVersion);
+                handleScanResult(file, scanResult);
+                return scanResult;
+            } catch (Exception e) {
+                LOGGER.warn("Error during ASCA scan:", e);
+                return null;
+            } finally {
+                deleteFile(tempFilePath);
+            }
         }
     }
 
@@ -460,7 +464,7 @@ private void updateIgnoredFileDataOnLatestResult(String tempFilePath, Project pr
                 LOGGER.debug("ASCA: Performing full scan to update line numbers for ignored issues");
                 ScanResult fullScanResult = scanAscaFile(tempFilePath, ascLatestVersion, agent, "");
                 if (fullScanResult.getScanDetails() != null && !fullScanResult.getScanDetails().isEmpty()) {
-                    AscaScanResultAdaptor fullScanResultAdaptor = new AscaScanResultAdaptor(fullScanResult, filePath, project);
+                    AscaScanResultAdaptor fullScanResultAdaptor = new AscaScanResultAdaptor(fullScanResult, filePath);
                     ignoreManager.updateLineNumbersForIgnoredEntriesByProblematicLine(fullScanResultAdaptor, filePath);
                 }else{
                     ignoreManager.removeIgnoreEntriesForFileIfEmpty(filePath);
diff --git a/devassist-lib/src/test/java/com/checkmarx/intellij/devassist/test/scanners/asca/AscaScanResultAdaptorTest.java b/devassist-lib/src/test/java/com/checkmarx/intellij/devassist/test/scanners/asca/AscaScanResultAdaptorTest.java
@@ -6,7 +6,6 @@
 import com.checkmarx.intellij.devassist.scanners.asca.AscaScanResultAdaptor;
 import com.checkmarx.intellij.devassist.utils.DevAssistConstants;
 import com.checkmarx.intellij.devassist.utils.ScanEngine;
-import com.intellij.openapi.project.Project;
 import org.junit.jupiter.api.DisplayName;
 import org.junit.jupiter.api.Test;
 
@@ -20,8 +19,6 @@
 
 class AscaScanResultAdaptorTest {
 
-    private final Project project = mock(Project.class);
-
     private ScanResult mockResult(List<ScanDetail> details) {
         ScanResult result = mock(ScanResult.class);
         when(result.getScanDetails()).thenReturn(details);
@@ -47,18 +44,18 @@ private ScanDetail mockDetail(int line,
     @DisplayName("getResults returns original ScanResult reference")
     void getResultsReturnsOriginal() {
         ScanResult scanResult = mockResult(Collections.emptyList());
-        AscaScanResultAdaptor adaptor = new AscaScanResultAdaptor(scanResult, "/repo/Main.java", project);
+        AscaScanResultAdaptor adaptor = new AscaScanResultAdaptor(scanResult, "/repo/Main.java");
         assertSame(scanResult, adaptor.getResults());
     }
 
     @Test
     @DisplayName("getIssues returns empty list when results or details are null")
     void getIssuesHandlesNullInputs() {
-        AscaScanResultAdaptor nullAdaptor = new AscaScanResultAdaptor(null, "/repo/Main.java", project);
+        AscaScanResultAdaptor nullAdaptor = new AscaScanResultAdaptor(null, "/repo/Main.java");
         assertTrue(nullAdaptor.getIssues().isEmpty());
 
         AscaScanResultAdaptor emptyAdaptor =
-                new AscaScanResultAdaptor(mockResult(null), "/repo/Main.java", project);
+                new AscaScanResultAdaptor(mockResult(null), "/repo/Main.java");
         assertTrue(emptyAdaptor.getIssues().isEmpty());
     }
 
@@ -74,7 +71,7 @@ void getIssuesConvertsSingleDetail() {
         );
 
         AscaScanResultAdaptor adaptor =
-                new AscaScanResultAdaptor(mockResult(List.of(detail)), "/repo/Main.java", project);
+                new AscaScanResultAdaptor(mockResult(List.of(detail)), "/repo/Main.java");
 
         List<ScanIssue> issues = adaptor.getIssues();
         assertEquals(1, issues.size());
@@ -99,7 +96,7 @@ void getIssuesGroupsMultipleDetailsPerLine() {
         ScanDetail low = mockDetail(20, "Low", "LowRule", "low-desc", "low-fix");
 
         AscaScanResultAdaptor adaptor =
-                new AscaScanResultAdaptor(mockResult(Arrays.asList(low, critical)), "/repo/Main.java", project);
+                new AscaScanResultAdaptor(mockResult(Arrays.asList(low, critical)), "/repo/Main.java");
 
         List<ScanIssue> issues = adaptor.getIssues();
         assertEquals(1, issues.size(), "Same line entries should be grouped");
@@ -122,7 +119,7 @@ void getIssuesGroupsMultipleDetailsPerLine() {
     void getIssuesSkipsNullEntries() {
         ScanDetail valid = mockDetail(5, "Medium", "ValidRule", "desc", "remedy");
         AscaScanResultAdaptor adaptor =
-                new AscaScanResultAdaptor(mockResult(Arrays.asList(null, valid)), "/repo/Main.java", project);
+                new AscaScanResultAdaptor(mockResult(Arrays.asList(null, valid)), "/repo/Main.java");
 
         List<ScanIssue> issues = adaptor.getIssues();
         assertEquals(1, issues.size());
@@ -134,7 +131,7 @@ void getIssuesSkipsNullEntries() {
     void mapSeverityTreatsInfoAsLow() {
         ScanDetail infoDetail = mockDetail(7, "info", "InfoRule", "desc", "remedy");
         AscaScanResultAdaptor adaptor =
-                new AscaScanResultAdaptor(mockResult(List.of(infoDetail)), "/repo/Main.java", project);
+                new AscaScanResultAdaptor(mockResult(List.of(infoDetail)), "/repo/Main.java");
 
         ScanIssue issue = adaptor.getIssues().get(0);
         assertEquals("Low", issue.getSeverity());
diff --git a/plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/CxToolWindowPanel.java b/plugin-checkmarx-ast/src/main/java/com/checkmarx/intellij/ast/window/CxToolWindowPanel.java
@@ -133,9 +133,9 @@ public CxToolWindowPanel(@NotNull Project project) {
         // Establish message bus connection before subscribing
         ApplicationManager.getApplication().getMessageBus()
                 .connect(this)
-                .subscribe(SettingsListener.SETTINGS_APPLIED, r::run);
+                .subscribe(SettingsListener.SETTINGS_APPLIED, (SettingsListener) r::run);
         ApplicationManager.getApplication().getMessageBus().connect(this)
-                .subscribe(FilterBaseAction.FILTER_CHANGED, this::changeFilter);
+                .subscribe(FilterBaseAction.FILTER_CHANGED, (FilterBaseAction.FilterChanged) this::changeFilter);
 
         r.run();
     }
