Local hotspot detection is not working for SQL/SQL projects in Visual Studio –

janani · June 3, 2025, 8:59am

Hi Team,

We are using SonarQube Enterprise Edition v2025.1 (build 102418) in Connected Mode with Visual Studio 2022 and the SonarQube for Visual Studio extension (v8.19).

Our project is a SQL/T-SQL solution (e.g., SQLDACPAC), and we’re trying to understand the current support for:

Security Hotspot Detection
Code Analysis / Taint Vulnerability detection
Quality Gate enforcement for SQL

We noticed that:

No security hotspots or taint issues appear in Visual Studio.
The SonarQube UI and local panes remain empty after analysis.
There is limited/no documentation on SQL language support for static analysis or hotspots.

SonarQube for IDE: Visual Studio 8.11 - HTML and T-SQL support, AI CodeFix suggestions diff view - here they have mentioned that T-SQL is now supported in the latest version of SonarQube for Visual Studio 8.11. I am using SonarQube visual studio 8.19 , Still it doesn’t show any hotspot in VS 2022 IDE

Thank you for your help!

Colin · June 3, 2025, 9:33am

Please don’t raise duplicate threads. I just haven’t been able to respond to you yet.

Topic		Replies	Views
Local hotspot detection is not working for SQL/SQL projects in Visual Studio – is it supported? SonarQube Server / Community Build	4	61	June 4, 2025
SonarQube for IDE: Visual Studio version 8.19 - Simplified Security Hotspots management Releases visualstudio , security-hotspot , sonarqube-ide	0	20	May 27, 2025
Sonar lint not showing the security hotspot in VS2022 IDE Visual Studio sonarqube	4	152	September 4, 2024
Is SonarLint for Visual Studio 2022 able to detect the local security hotspot? Visual Studio	1	325	October 18, 2023
Issues not found during local analysis but they are on the cloud Visual Studio	5	74	February 11, 2025

Local hotspot detection is not working for SQL/SQL projects in Visual Studio –

Related topics