C# files analysis is ignored, why?

Must-share information (formatted with Markdown):

  • I am using SonarQube Community Edition Version 10.2 (build 77647) , SonarScanner for MSBuild 5.14
  • SonarQube deployed: zip
  • I am trying to scan, analyze and find C# vulnerabilities in my C# code
  • I am using SonarScanner for MSBuild 5.14 , but it doe snot find any vulnerability , it seem to be ignoring C# files, but i can see my C# files in sonarQube in the Code tab

SonarQube is up and running and I ran this code in a separate terminal

SonarScanner.MSBuild.exe begin /k:“Rizkly_RizklyNetCore_AYr5sFPCbhAkU_EO6wi4”
SonarScanner for MSBuild 5.14
Using the .NET Framework version of the Scanner for MSBuild
Pre-processing started.
Preparing working directories…
06:31:29.622 Updating build integration targets…
06:31:29.778 Fetching analysis configuration settings…
06:31:30.215 Provisioning analyzer assemblies for cs…
06:31:30.231 Installing required Roslyn analyzers…
06:31:30.231 Processing plugin: csharp version
06:31:30.356 Processing plugin: vbnet version
06:31:30.575 Provisioning analyzer assemblies for vbnet…
06:31:30.59 Installing required Roslyn analyzers…
06:31:30.59 Processing plugin: csharp version
06:31:30.59 Processing plugin: vbnet version
06:31:30.621 Incremental PR analysis: Base branch parameter was not provided.
06:31:30.621 Cache data is empty. A full analysis will be performed.
06:31:30.668 Pre-processing succeeded.

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!


Welcome to the community!

Can you share the full, debug analysis log?

The analysis / scanner log is what’s output from the analysis command. Hopefully, the log you provide - redacted as necessary - will include that command as well.

This guide will help you find them.


Thank you for your reply.

I am attaching the SonarScanner for .NET log.
SonarScannerforDotNET.log.txt (8.2 KB)


That seems to be the log for the begin step. I need the log for the end step.