I was looking to find how accurate the Sonarcloud is regarding the detection of CWE259 in C/C++. I used the Juliet Test Suite CWE259 for that matter. I got zero detection. I was wondering if this weakness can detected? Any insights on this would be much Appreciated.
Hey there.
When you performed your test did you check the Security Hotspots tab of your project? This is where issues related to hard-coded credentials will be found.