DB encryption at rest support

indratan · June 7, 2023, 12:20am

Must-share information (formatted with Markdown):

which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)

Community Edition (Version 8.9.6 (build 50800))

how is SonarQube deployed: zip, Docker, Helm

installed on VM (zip)

what are you trying to achieve
InfoSec asked if the Database (we picked MS SQL server) can be encrypted, and Sonarqube support encrypted DB?
what have you tried so far to achieve this
none… need to find out if this feature supported by sonarqube

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

Colin · June 7, 2023, 9:30am

Hey there.

SonarQube does not make any specific determinations on encrypting data in the database: encryption at the database level should be invisible to SonarQube behind the JDBC URL being used to connect to the database. I would suggest a discussion with your DBA team on what encryption options exist for you.

Make sure you upgrade to SonarQube v9.9 LTS soon, not only to benefit from our Best LTS Ever™, but because soon we will systematically ask users to upgrade when they ask questions about earlier versions of SonarQube, which are now considered unsupported.

indratan · June 8, 2023, 12:23am

thanks for the response…
but if DB is encrypted, does sonarqube support encrypted DB? is there any config need to be done on sonarqube to be able to communicate with encrypted DB?
or will work as-is?