Missing Sec Rules?!?

SoftBanX · July 30, 2019, 10:50am

Hi all,

All VersionsCan anyone confirm or deny this rule is utilised in any version of SQ?

https://rules.sonarsource.com/java/tag/injection/RSPEC-2083

anon67236913 · July 30, 2019, 11:01am

Hi,

see https://next.sonarqube.com/sonarqube/coding_rules?q=S2083

Gilbert

SoftBanX · July 30, 2019, 11:03am

Thanks Gilbert I meant NOT sonarCloud, sorry for not being specific

Colin · July 30, 2019, 11:08am

Injection vulnerability detection rules are available in Developer Edition (and above) and SonarCloud

SoftBanX · July 30, 2019, 11:11am

I can’t find it in EE or LTS?

Colin · July 30, 2019, 11:12am

To make a more complex matter simple, let’s also just say you should be running v7.9 LTS to take advantage of all existing rules that fall under that category. (These rules were not in their current form in 6.7 LTS, if they existed at all)

SoftBanX · July 30, 2019, 11:13am

Ahh got yer thx Colin

Topic		Replies	Views
Sonarsource rules vs Sonarqube rules SonarQube Server / Community Build	3	1277	June 20, 2019
Rule S2083 is not found in the server's rules list SonarQube Server / Community Build java , sonarqube	4	1724	June 5, 2019
Rules available in which Sonarqube edition SonarQube Server / Community Build java , sonarqube , rules	1	821	December 12, 2019
SonarQube security rules - Community, Developer, other editions SonarQube Server / Community Build security	5	4060	July 20, 2020
SonarQube OWAPS security rules update SonarQube Server / Community Build	3	5050	April 12, 2019

Missing Sec Rules?!?

Related topics