Hey all,
It has been a slower week here in the Community, but we have still had lots of help and guidance from you, our members, to improve our products and your experience with them.
Two important things to call out:
- We’ve renamed our top-level categories and adjusted category descriptions/templates to match our new Brand Identity.
- This week our Head of Product Management published a blog post: Our commitment to you – and an update on severity ratings for software quality. This has largely been in response to feedback given to us from you, our Community members. Thanks for always pushing us.
We’re grateful every time you give us feedback, so like every week we want to spend some time acknowledging everyone who prompted interesting discussions and gave us feedback to help us continuously improve.
SonarQube Server (formerly known as SonarQube):
- The documentation for the DBCopy tool doesn’t account for container deployments. Well spotted @bammy-A. We’ll update the docs.
Rule & Languages Improvements:
- Thanks @CrushaKRool for reporting a false-positive on
java:S3655when applying a.mapto the optional. SONARJAVA-5177 cpp:S5817is crashing analysis in some cases involving template parameters. Thanks for the report @robmcgee! CPP-5862csharpsquid:S1144is not supporting struct constructor calls as reported by @gbieging.
Scanners:
- The SonarScanner for .NET computes a bad path if you manually specify
sonar.projectBaseDir. Thanks @fbraun4358. SCAN4NET-162 will fix it. - Similarly, @simo-esko found that there’s a problem translating Azure DevOps’
cliSourcesto a correctsonar.sourcesvalue. SONARAZDO-440 - @HardToThinkAUsername couldn’t figure out how to pass a project name with spaces in it when scanning with Docker. A it turns out, we couldn’t either. SCANDOCKER-46
- @lam.tran and @long.nguyen.bao struggled with the GitHub Action on Linux / ARM64. Our plan is to move away from Docker-based GitHub Actions, which should fix the problem: SCSCANGHA-25
- SonarScanner for NPM truncates command line values that contain an equals sign. Doh! Thanks @efmigl. SCANNPM-57
- @Nicotu01 is trying to use SonarScanner for NPM with a proxy and having a hard time. SCANNPM-58