- 7.9 lts developer edition
- I want to see taint analysis on vulnerability and/or hotspots.
- Reviewed 10’s of my projects with vulns, searched all the documentation, searched this forum for instructions on how to enable taint analysis or reasons why i might not be seeing it.
I also read this: https://docs.sonarqube.org/latest/analysis/security_configuration/ it references adding elements, but no link to the documentation on how to add an element.
Ann’s blog is great, i just attend her webinar, no how to enable these things in 7.9…or why i might not be seeing taint analysis.
Side note but maybe related, IDK?
I also have projects using java, C#, and JS with hotspots grayed out. Meaning I can’t tell if there are no hotspots…or if hotspots are disabled for that project. All of my projects use the sonarway quality profiles and the hot spot rules enabled, but no hotspot information in my issues/results.