I need to scan my AWS CloudFormation Template using Sonarqube

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension) - latest
  • what are you trying to achieve -
    I want to achieve my cloud formation AWS template which has more than 100+ AWS Services used.
    As many services and resource is used in the Cloud Formation Template. Can SonarQube do the code scan and provide the security finding of AWS resources used in the CloudFormation?
  • what have you tried so far to achieve this
    I read the doc, did not find how many sonarqube rules are doing security scan for AWS Services.


Welcome to the community!

It’s not clear to me quite what you’re after, but here’s the list of CloudFormation rules: