I have been looking around sonarcloud but cannot find a way to bring in custom rules. To that note, there is only 1 vulnerability rule for GO codebases. This is pretty poor and becoming increasingly more important for our projects. We may need to go with a different option if this cannot be support…

Hello, The SonarSource’s Go analyzer is open-source so you are free to raise PRs to add extra rules. Once merged, they will benefit to all. Also I’m not getting why you want to write custom rules while the results of the entire Go linters eco-system can be imported into SonarCloud. If one rule is …

Sonar Community

Go vulnerability rules in sonarcloud very limited

SonarQube Writing rules

dono-greeff (Donovan Greeff) December 10, 2019, 12:01pm 9

Created the bug topic here