Hello,
We have scanned SQL script .sql extension files and got the scan results based on the rules defined under Sonar Way quality profile. we have following questions regarding this:
- Can we create our own rules to identify sql anti-patterns? if yes, then how to do it?
- Is there any existing quality profile other than sonar way where such rules are already created? is it possible to use them?
- Other than .sql files, we also want to scan the sql queries written inside C# files, including above rules to identify anti-patterns.
Creating rule to get sql anti-pattern is one good example which sonarqube scan can identify. Later on we can get the requirement to have such more rules and the idea is to keep adding those rules and keep improving the sql code and application peformance.