- versions used: SonarQube 220.127.116.11646 Enterprise, storage is SQL Server 2016 Standard
- error observed: hotspots I’ve marked off as safe keep reappearing with no evidence they were ever marked off
This is a strange one, and appears to have started once we upgraded to 8.4 from 8.3 - and set up pull request decoration (those were both done about the same time). It is only happening to one project. I noticed on Monday that one project had a high level of security hotspots. I looked at them, and was pretty sure they were ones I had marked off previously. They all had old creation dates. I went through and marked them all safe again. Yesterday morning, same thing. This morning, they are back again. None of them have anything in the Activity section showing they had ever been marked safe.
They are not reappearing during the day as a result of any of the CI builds. I ran our scheduled overnight build again this morning, and the couple I marked off before doing that didn’t reappear. So, my assumption is some SonarQube maintenance routine is doing this.
There are over 200 I am having to mark off, which is quite tedious since you can’t select multiple at one time and change their status. Any help would be appreciated.
It looks like this started happening on 8/11, per logging we have that queries the API and captures the number of open bugs, hotspots, etc. per project. We updated to 8.4 on August 4, and started adding pull request decoration on 8/10.