We have an asp.net (MVC) project on .Net 4.8. I would have expected that anywhere we use
@Html.Raw in a razor template that SonarCloud would flag a potential XSS. For example:
@Html.Raw( Model.InstructionsHtml )
If the model value is coming from the database, how does Sonar know if it’s tainted or not? Shouldn’t this at least appear in Security Hotspot?
I am using SonarScanner.MSBuild.exe with the default options for the project that was created in the SonarCloud.io interface.