Hi,
I’m using SonarQube cloud on Github.
This rule is labelled beta "The rule has been recently implemented and we haven’t gotten enough feedback from users yet, so there may be false positives or false negatives."
It seems to be a false positive as the warning is raised even though I’ve pinned the version:
pip install playwright==1.59.0 --only-binary :all:
Using dependencies without locking resolved versions is security-sensitive.
Please see public link:
Thanks,
Nicolas Baumann.