I am using SonarQube version 9.3.0.51899, VSCode version 1.72.2 and SonarLint extension version 3.11.0
I connected SonarLint to my server and bound the project successfully.
In SonarQube i use a modified version of Sonarway JavaScript profile (just a single modification in cognitive complexity rule).
However, in local SonarLint i don’t see the issues reported in SonarQube.
SonarLint:
SonarLint is using a newer version of our Javascript analyzer than SonarQube – I would recommend updating to the latest version of SonarQube (v9.7), reanalyze your code, and see if the issues still exist in SonarQube (they could be false-positives that we fixed).
Hello, thanks for coming back with the additional information.
Could you please enable SonarLint verbose and analyzer logs in the VSCode settings and upload an extract from the SonarLint Output when analyzing the lock_order.js file you mentioned earlier? Maybe there is something off with the analyzer and/or IDE setup on this particular file.
Would it be possible for you to share a minimal reproducer for this issue (a file that reports these issues in SonarQube but not in SonarLint)?
I’m wondering whether this could be linked to type resolution, e.g on SonarQube the analyzer is able to infer that a function in the code is used as a callback, whereas in the current version of SonarLint, type resolution in JS is less precise and can result in such false negatives.