We have few questions related to sonarqube. Below are them.
Is building an application compulsory for getting the bugs and vulnerabilities, Can’t we do it with just parsing the source code on sonarqube server.
If sonar is not supporting any of the language. Is there any way where we can integrate with directly with sonarqube and how much effort will it take to us.
How secure is it to use sonar cloud, i am concerned about my code privacy.
Which product of the sonar is better sonarqube or sonarcloud.