I’m using SonarQube 7.9.1 Community Edition. Now I got notice of an injection vulnerability in Java via
Paths.get() and wondered why SonarQube doesn’t report an issue on my code. According to the rules explorer a rule exists: https://rules.sonarsource.com/java/RSPEC-2083 and it should be available in SonarQube, but I cant find it in my own SonarQube instance.
Is there a way I can tell from the rules explorer for a specific rule in which edition this rule is available?