I’m trying to write a plugin to run security analysis using a thirdparty tool.
According to you, what is the most efficient way to execute the external tool ? Do I need to save the hole code source in a temporary location and run analysis later ? or I have to analyse file by file using the << InputFile . contents() >> ?
Thanks for your help.
Sonarqube version 7.4
My external analyzer is installed in the same machine as sonarqube server