Must-share information (formatted with Markdown):
- which version…s are you using (SonarQube, Scanner, Plugin, and any relevant extension) -
Sonar Version 8.4.1
- what are you trying to achieve
We are using sonar for static code analysis of our application
- what have you tried so far to achieve this
We are facing issue with one of the security hotspot coming for our code-
For this line -
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
Error message coming is - Make sure that permissions are controlled safely here.
As per as out research use of ClaimsIdentity is safe and its been used widely . Please suggest if there is any fix for this.