Hi @Senad,
Thanks for your message and sorry for the time it took to answer to you.
We regularly update and improve the code analyzers. Hence it is correct that improved analyzers may find issues that were not caught previously. One typical reason is that accuracy of analyzers is improved so that more true positives are found, and less false positives are raised.
SonarCloud provides the latest versions of the analyzers: you can’t lock onto a specific version. On the other hand, you continuously benefit from latest and greatest versions.
If you want to lock onto specific version of some analyzers, a solution could be to use SonarQube: you could then choose when to upgrade the product, along with its analyzers. It would still have to happen, but you would be in control. The flip of the coin then would be that you have to operate the product yourself and would not get continuous improvements.
I hope this clarifies and helps!
@AlxO