Bump up version of Go Code Quality and Security plugin in LTS 8.X release

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)

We’re using Sonarqube Developer Edition 8.9.6 LTS

  • what are you trying to achieve

I want to bump up the plugin Go Code Quality and Security /

because of the issue > Golang parser outdated - #9 by ahmad.imt07

without upgrading to 9.x version

In the new Sonarqube 9 version plugin is org.sonarsource.slang:sonar-go-plugin:

Central Repository: org/sonarsource/slang/sonar-go-plugin

which lead me to the point that it can be used in Sonar 8.X versions

  • what have you tried so far to achieve this

I tried to inject sonar-go-plugin jar via custom docker image that is using FROM sonarqube:8.9.10-developer as the base, same as we do with other 3d party plugins.

ARG PLUGIN_SONAR_GO_URL=https://repo.maven.apache.org/maven2/org/sonarsource/slang/sonar-go-plugin/${PLUGIN_SONAR_GO_VERSION}/sonar-go-plugin-${PLUGIN_SONAR_GO_VERSION}.jar


Hey there.

These versions are locked to the SonarQube release, and you should/cannot try and update them.