Hiya,
We are seeing an increase of vibe coded minor applications in our org, often with security issues like Dom-based XSS in inline javascript. I was surprised to see that Sonar don’t pick these up at all.
Is there any way at all to force the JsSecuritySensorV2 to run on HTML files in addition to JS/TS files?
Best,
Erik