How OWASP and SANS are updated?

anon35261157 · September 13, 2023, 6:18am

which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)
9.9LTS Enterprise Version

how is SonarQube deployed: zip, Docker, Helm
Azure App Service

what are you trying to achieve
How are these one’s updated? Can we do it manually?

OWASP is outdated as well as SANS shows that it’s outdated.

Also, SANS tells to use CWE, but these one’s are outdated too.

Colin · September 13, 2023, 9:44am

Hey there.

This is on the list for SonarQube v10.3: [SONAR-20333] - Jira

anon35261157 · September 13, 2023, 9:50am

So as far as I understood, this is something that is updated from the SonarQube side? Thanks.

system · September 20, 2023, 9:51am

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How dose SonarQube get updates for current CWA, OWASP Top 10 and SANS Top 25 entries? SonarQube Server / Community Build security	3	956	October 22, 2020
SonarQube OWAPS security rules update SonarQube Server / Community Build	3	5067	April 12, 2019
How to update cwe rules SonarQube Server / Community Build	2	741	January 23, 2023
Top OWASP version SonarQube Server / Community Build	1	982	July 21, 2021
How often are builtin rules updated in SQ SonarQube Server / Community Build	5	1433	August 18, 2022