In Sonar Dashboard of a project, Measurement for Security is Grade B, but there is no Open Issues shown in the card
Hey there.
I’ve sent you a private message to ask for the project key so that we can take a look!
Hey @Adam_Tran,
Ok I see what the problem here. The inconsistent view that you see comes from the fact that counts are looking at Security/Reliability/Maintainability issues
But the ratings are looking at the old issue types: Vulnerability/Bugs/Code smells
In some rare cases (like yours) the mapping between old type and software quality is not 1:1. For example your project has some vulnerabilities that now have only Maintainability quality (but not Security). You can see those issues/rules by selecting the following filters:
We have this situation because we are not able to migrate everything at once and we are doing that incrementally. At some point every info you see will be consistent, but unfortunately I am not able to provide more precise information on when.
Additionally I will ping internally some people that may be interested in that kind of feedback and/or the fact that we have such issues that are indeed very confusing.
Hope it helps, let me know if you have additional questions,
Viktor
Thank all for the explanation!