We are getting bug in sonar scan while using url in constant but if using url in set feature then bug not exist in scan. In case of using hard code url instead of constant declaration it is violating coding standard. Please help/guide to resolve this bug with coding standard. SAXReader saxReader =…

Geeting issue in Sonar Scan

kamaksha (Kamal Kant Sharma) March 11, 2022, 6:50am 3

Hi G,
SQ is using 8.9.6 LTS - specifically the patched for log4j vulnerability version of it. We are looking for solution if we use parameter by constant then how can remove bugs .

Thanks

Topic		Replies	Views
Got vulnerability for constant declaration Report False-positive / False-negative...	7	1079	March 25, 2022
Text in squid:S2755 issue SonarQube Server / Community Build java	4	1528	May 10, 2019
@SuppressWarnings with String constants form other classes not working SonarQube Server / Community Build java	6	1593	May 4, 2023
java:S1075 ignore constants used as default Report False-positive / False-negative... java , sonarqube-cloud	2	268	October 21, 2024
Fix for vulnerability not picked up by scan SonarQube Server / Community Build java	3	621	February 12, 2020

Geeting issue in Sonar Scan

Related topics