Sonar Qube Hot Spots -Line Number Null

SonarQube Server / Community Build
1

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension):- * Version 9.9.3 (build 79811)
  • how is SonarQube deployed: zip, Docker, Helm; ZIP
  • what are you trying to achieve: Querying SQ Closed and Fixed HotSopts
  • what have you tried so far to achieve this

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

We are querying hotspots on a project and while reading the data found few of them shows line number as null like:-

Any idea why this is showing line number NULL

5

Hi @sunil.bindra!

Could you please identify the part of the code where a timeout for regular expressions is not specified and paste it here? This will help me reproduce the problem locally and then fix the issue.

Thanks!

6

a

Blockquote

8

Also Cant find this in UI even if I filter this with closed and fixed status

9

Thanks for the info.

I reviewed your utils.cs and there are no instances where S5332 or S6444 should raise. Then I noticed by looking at the API call response that both issues are marked with "status": "CLOSED". According to our issues page this indicates that the issues were initially raised, but you subsequently pushed a version with the fixes, leading to the closure of the unmatched “base” issues.
That explains also why the lineNumber is null in the report.

You should still be able to view these issues in the UI. I will ask for some help to my colleagues on the SonarQube team who can assist you on this matter

13

Any Update on the above?

14

Hi Cristian

Any update on this. Is there any quick help support for enterprise customers. We got enterprise license

Thanks
Sunil

15

Hey @sunil.bindra

As @cristian.ambrosini mentioned, the hotspots are closed (explaining the absent line number).

To view Security Hotspots in SonarQube, you’ll need to browse to the Security Hotspots tab of your project, not Issues.