How to get a detailed list of security hot spots and code smells from the Sonar report

Must-share information (formatted with Markdown):

• which versions are you using (SonarQube Server / Community Build, Scanner, Plugin, and any relevant extension)
• how is SonarQube deployed: Docker
• what are you trying to achieve
  how to get a detailed list of security hot spots and code smells from the Sonar report
• what have you tried so far to achieve this
  via api
  curl -u : “https://sonar.com/api/measures/component?metricKeys=code_smells&severities=CRITICAL&component=key”

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

need to generate a report preferably a csv file containing detailed list of security hot spots and codesmells for a project

Hi,

Welcome to the community!

You’re looking for the regulatory report, which starts in Enterprise Edition($$).

 
HTH,
Ann

Thanks Ann, we are using the EE version, please guide how to use this

Hi,

My previous answer included a docs link. Did you check it?

 
Ann