Does Sonarqube support scanning infrastructure as code for vulnerabilities?
thx
jose
Hi jose,
SonarSource doesn’t offer any analyzers for this, and I’m not aware of any 3rd-party ones either.
Ann
1 Like
thanks for the quick response…Ann!
Hi Jose,
The only 3rd-party plugin I know is for puppet: https://github.com/iwarapter/sonar-puppet
1 Like
Thanks for the info…Xavier!
Is it still the same, do we have any features now ?