This is a first release of the SecureFlag Knowledge Base for SonarQube plugin. It adds an extra project page that enumerates over SonarQube’s recently detected vulnerabilities and security hotspots, attempting to recommend training labs from the SecureFlag platform and remediation advice from our public knowledge base.
If it is the first release of the plugin, please mention that the plugin should be added to the Plugin Library page. (Otherwise, we’re likely to forget!)
Unfortunately, we’re not going to be able to add it to the Marketplace. While it passes most of the bureaucratic requirements, it fails #6. You couldn’t have known that ahead of time since we haven’t talked about it publicly, but we are planning to introduce educational features in the next few months.
That raises the question: if you remove the education, would we add the plugin then? Unfortunately, I wouldn’t be comfortable adding a plugin to the Marketplace that only added links to your password-protected commercial features.
I think this will be useful to your existing customer base, but unfortunately not useful to the community at large.
I invite you to come back to us in a year for reconsideration if you think what we’ve introduced on the education front doesn’t clash with your offering.
, I had considered that the commercial parts might have to be removed, but yes I could not foresee