Allow Users to Ignore SpotBugs issues

mkinzler-rq · August 21, 2023, 1:56pm

Good Morning,

We are utilizing Sonarcloud with the Spotbugs external analyzer and would like to know if we can configure Sonarcloud to allow users to ignore issues found by Spotbugs. As you can see in the screenshot below, a user (even with all permissions) cannot mark an issue as “Won’t fix”. This is a pain point for our developers as there are good reasons for bypassing some of the findings. Is there somewhere I can configure these issues to be “ignorable.”

Thank you for any help you can provide.

Colin · August 22, 2023, 7:51am

Hey there.

In general, external analyzer reports will contain issues that cannot be suppressed in the SonarCloud UI. Our thinking is that if developers are already used to using these tools, they’re also familiar with the issue suppression mechanisms of those tools.

For Spotbugs, that would be filter files in-code @SuppressFBWarnings suppression.