Template for a good new topic, formatted with Markdown:
- ALM used => GitHub, Azure DevOps
- CI system used => GitHub, Azure DevOps
- Scanner command used when applicable (private details masked)
- Languages of the repository
** C#
** TypeScript
** JavaScript
** VB.NET
Does SonarQube Developer Cloud solution support OWASP, SANS, and Dependency Checking? Or does the Enterprise Cloud Solution?
Hello Thom,
Just for clarification: you are talking about SonarCloud, not SonarQube, right? In the end it does not matter too much since both use the same analyzers but in SonarQube some features like the taint-analysis for injection vulnerabilities are only supported starting from the Developer Edition.
Even though this page is on the SonarQube site I would recommend to have a look here as the same applies to SonarCloud: SonarQube covers the OWASP Top 10 | SonarQube
There is no Dependency Checking at the moment though.