Hey all,
It has been a slower week here in the Community, but we have still had lots of help and guidance from you, our members, to improve our products and your experience with them.
We’re grateful every time you give us feedback, so like every week we want to spend some time acknowledging everyone who prompted interesting discussions and gave us feedback to help us continuously improve.
SonarCloud:
-
SonarCloud had a brief outage on Thursday morning. Sorry about that, and thanks for the reports @alexypuli and @WilvanBil.
-
Thanks @vazul for your feedback on our documentation. Now it’s much clearer to users how to set API-only New Code Definitions.
-
The scanner emits some non-actionable logs on invalid symbolic links. At the very least, we should move those warnings down to
DEBUGmode. Thanks @Emmanuel_Delalande! We’ve created an internal ticket for that.
SonarQube:
-
@vlsec helped us uncover several issues in how we mention GitLab cache paths in the analysis tutorials baked into SonarQube. Kudos! We’ll tackle that with SONAR-23308.
-
Our Kotlin analysis does not deal well with non-zip classpath entries. Thanks for the heads-up @Vampire! SONARKT-406
-
@gareth-j-dtp is facing security rules that limit the length of a query string, and so is having problems with the Projects page. He’s not the first to make the complaint, but since we’re redesigning our APIs, he’s made it at a very opportune time. We’ll work on it with SONAR-23360
SonarLint:
- There are certain cases where SonarLint for IntelliJ should not exclude the base directory for CDT projects on Windows. Thanks @Alex29. SLE-968
Rule & Languages Improvements:
-
@clavedeluna helped us uncover a bug in how we treat
stringifyin our XSS detection rule. We’ve created an internal ticket to handle that. Thanks! -
php:S1144should not be raised on PHPUnit tests with DataProviders. Thanks @Mathieu_Roullet! SONARPHP-1538 -
java:S2093should raise an issue on autocloseable objects created by a local method. Thanks @Matt_Casperson! SONARJAVA-5142 -
We’re trying to work through an issue with @jat_malte but not able to get the actual error from their logs, which we’ll work on with CPP-5805
-
@Corniel pointed out that the modulo of an unsigned int can never be negative, despite what csharpsquid:S2197 seems to think. We’ve created an internal ticket to fix that.
-
React requires title-case variable names for components, a fact overlooked by typescript:S6754. We created SonarJS#5639 for that this spring, and @JohnGurin brought us another use case to include in the fix.
Once more, we extend our thanks to everyone mentioned here - and those we may have missed - for their efforts in strengthening this community and enhancing our Sonar products.
Please leave your own recognitions below – whether for another community member or a SonarSourcer who assisted you this week. If there’s someone you think should be acknowledged in next week’s roundup, don’t hesitate to let us know.