SonarCube for Web Application Vulnerability

Dear All,

I am finding a possibility to check if SonarCube can scan web Application by providing url with authentication details and can give vulnerability details of web applications.

Please can someone let me know…!
Thank you.

Hello Yash and welcome to the community! SonarQube is a Static Application Security Testing tool. It analyzes source code, thus you can not scan a web application by providing its URL. How to scan your code depends on the type of project, e.g. does it use, Maven, Gradle, or something else?

Here you can find information on how to scan a Maven project: SonarScanner for Maven | SonarQube Docs

1 Like

Thank you @Hendrik_Buchwald .

1 Like

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.