I’m using sonarqube LTS 8.9,
I have React application, each time I checking the scan output I see
Resolved 'react' as 'undefined' Resolved 'styled-components' as 'undefined'
and all external packages are resolved as undefined. Is it normal?
Thank you for reaching out.
Yes, this is normal. These logs are emitted when taint analysis is not able to resolve some Node.js modules. Only modules that pose a security vulnerability to your code are considered and resolved during analysis.
Hope this helps,
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.