Secret scan expand SonarCloud

eyboerie · July 19, 2021, 11:09am

Hi there,

Is it possible to expand the secret scanning built in rules/feature of sonarcloud? I feel like at the moment it doesn’t find a bunch of secrets in code. It would be nice if someone knows how to expand this feature with a predefined list somewhere.

Martin_Bednorz · July 20, 2021, 2:25pm

Hello @eyboerie ,

This is not possible on SonarCloud as of today. We are adding more and more secret detection features to SonarLint though. You can find more information about this on their public roadmap.

system · July 27, 2021, 2:25pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Adding a custom rule for secret scanning SonarQube Cloud	3	311	December 15, 2023
API key/tokens in Sonarcloud SonarQube Cloud tokens , sonarqube-cloud	5	2306	March 10, 2021
Sonar can detect 110 secret patterns across 60 cloud providers Sonar Updates security , secrets	2	1165	November 8, 2023
Does SonarQube or SonarCloud support scanning secrets (passwords, tokens, certificates, etc)? SonarQube Server / Community Build sonarqube , sonarqube-cloud	8	12631	April 29, 2020
Sonar Secrets Plugins Support for SonarQube 9.9 LTS Plugin Development sonarqube , plugin , community-plugins	12	1019	June 12, 2024

Secret scan expand SonarCloud

Related topics