Looking for detailed security report with issue n hotspot fix recommendation along with code snippet

  • We are using * Enterprise Edition Version 8.9 (build 43852)
  • Looking for detailed security report with issue n hotspot fix recommendation along with vulnerable code snippet
    *Using webAPI, we only get issue name, source code file path. not getting any details like vulnerable code snippet, what is the risk and how to fix the issue.

Hi,

Welcome to the community!

First, I should mention that the reporting available in Enterprise Edition($$) has vastly improved in the 9-series. If possible, you might want to upgrade to the latest version (currently 9.7).

That said, I think that even in the new reports you’re not going to find everything you’re looking for. The risk and fix advice are stored in the rule, not with the issue; so you’ll have to look them up there. The vulnerable code snippet also isn’t stored in the issue; only the file line and line offsets. Again, you would need to do extra lookups for that info.

 
HTH,
Ann

Hi Ann,

Greetings!

Thanks for the update!

Best Regards
Sujatha