SonarLint not detecting TS security vulnerability in connected mode

SonarQube for IDE Visual Studio
1

Hello I have SonarLint extension installed in VisualStudio 2022
Current VS version:
12:29:40:850 Visual Studio Professional 2022
12:29:40:850 17.6.33815.320
12:29:40:850 17.6.4

Connected to SonarQube ‘9.9.1.69595’.

I could review my security vulnerabilities until I was not in connected mode. But as soon as I set up the connected mode, I couldn’t see them in my typescript file. However, I do see them on the Sonarqube server Analysis.

This is what I get the output:

13:19:39:337 [Hotspots] Finished fetching all hotspots
13:19:39:345 [ConnectedMode/QualityProfiles] Number of out of date Quality Profiles: 0
13:19:39:346 [ConnectedMode/QualityProfiles] All quality profiles are up to date
13:19:39:366 [Suppressions] Finished fetching all suppressions
13:24:40:480 [SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id
13:24:40:633 [SLCORE] Generating temporary tsconfig is not supported by DefaultTsConfigProvider in SONARLINT context.
13:24:40:635 [SLCORE] No tsconfig.json file found, analysis will be skipped.
13:24:40:636 [SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id …, analysis time: 0s
13:24:40:637 [SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts
13:24:40:642 [SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id …, analysis time: 0s
13:24:40:645 [SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts
2

Hi,

Can you provide your SonarLint version?

Additionally, what rules are we talking about? Because taint analysis rules don’t run in SonarLint.

 
Ann

3

Sure My SonarLint version is: 8.2.2.98119

I am talking specifically for typescript and javascript security vulnerability found in my Sonarqube. If I delete my bindings, I can see it in my local environment, but the movement I apply the bindings again the typescript file returns 0 vulnerabilities with the message above.

This is what I see on SonarQube but NOT in SonarLint:
Google API keys should not be disclosed secrets:S6334

4

Hi,

Thanks for those details. I’m going to flag this for more expert eyes.

 
Ann

7

Hello, any update on this, please?

8

Hi @tbhutada

Could you please enable verbose logging, restart the IDE and send me the full log? The snippet you provided is missing the project initialization, which is important for the investigation

9

|22:14:39:744|[SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id |
|22:14:39:940|[SLCoreAnalyzer] Analysis not ready for file C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts: Configuration scope not initialized|
|22:14:40:024|Connected to SonarQube ‘9.9.1.69595’.|
|22:14:44:956|Initializing the telemetry package…|
|22:14:44:959|Finished initializing the telemetry package…|
|22:14:45:063|Initializing the SonarLint package…|
|22:14:45:096|Finishing initializing the SonarLint package|
|22:14:46:099|Initializing the notifications package…|
|22:14:46:109|Loading notifications settings…|
|22:14:46:122|Connected: checking for notifications|
|22:14:46:133|Finished initializing the notifications package|
|22:14:47:554|[ConnectedMode] Initializing package…|
|22:14:47:646|[ConnectedMode] Package initialized|
|22:14:47:747|[Taint] Initializing taint issues synchronization package…|
|22:14:47:757|[Suppressions] Fetching all suppressions…|
|22:14:47:757|[Hotspots] Fetching all hotspots…|
|22:14:48:696|[ConnectedMode/BranchMapping] Matching Sonar server branch: develop|
|22:14:48:697|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:14:48:951|[ConnectedMode/BranchMapping] Matching Sonar server branch: develop|
|22:14:48:952|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:14:50:805|[ServerIssueStore] Raising change event…|
|22:14:50:811|[Suppressions] Finished fetching all suppressions|
|22:14:51:555|[Taint] Fetched 2 taint vulnerabilities.|
|22:14:51:726|Initializing security package…|
|22:14:51:730|Finished initializing security package.|
|22:14:51:769|[Taint] Finished initializing taint issues synchronization package.|
|22:14:51:833|Initializing the daemon package…|
|22:14:51:898|[SLCoreHandler] Creating SLCore instance|
|22:14:51:899|[SLCoreHandler] Starting SLCore instance|
|22:14:52:000|Loaded settings from C:\Users\T014191\AppData\Roaming\SonarLint for Visual Studio\settings.json.|
|22:14:52:008|Current VS version:|
|22:14:52:008| Visual Studio Professional 2022|
|22:14:52:008| 17.6.33815.320|
|22:14:52:008| 17.6.4|
|22:14:52:011|[NodeJSLocator] Checking environment variable SONAR_NODEJS_PATH|
|22:14:52:011|[NodeJsLocator] Environment variable is not set|
|22:14:52:049|Finished initializing the daemon package.|
|22:14:53:871|[SLCORE] Can’t open directory channel. Log directory fsync won’t be performed.|
|22:14:55:960|Updated analysis readiness: True|
|22:14:55:967|Starting job: re-analyzing 1 document(s)… Time: 3:14:55 AM|
|22:14:55:978|Finished job re-analyzing 1 document(s)… started at 3:14:55 AM. Elapsed time: 10ms|
|22:14:55:984|[SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id |
|22:16:16:944|[SLCORE] No workDir in SonarLint|
|22:16:22:312|[SLCORE] Generating temporary tsconfig is not supported by DefaultTsConfigProvider in SONARLINT context.|
|22:16:22:313|[SLCORE] No tsconfig.json file found, analysis will be skipped.|
|22:16:22:352|[SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id 3641b40e-f794-4d80-9675-e9d82cb0bc27, analysis time: 0s|
|22:16:22:354|[SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts|
|22:16:22:357|[SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id 3641b40e-f794-4d80-9675-e9d82cb0bc27, analysis time: 0s|
|22:16:22:357|[SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts|
|22:16:27:879|[Hotspots] Fetch operation cancelled|
|22:24:47:644|[ConnectedMode/TimedUpdate] Triggering refresh of server settings…|
|22:24:47:645|[Suppressions] Fetching all suppressions…|
|22:24:47:677|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:24:47:678|[Hotspots] Fetching all hotspots…|
|22:24:47:679|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:24:47:712|[ConnectedMode/QualityProfiles] Updating quality profiles…|
|22:24:48:098|[ServerIssueStore] Raising change event…|
|22:24:48:109|[Suppressions] Finished fetching all suppressions|
|22:24:48:903|[Hotspots] Finished fetching all hotspots|
|22:24:50:163|[ConnectedMode/QualityProfiles] Number of out of date Quality Profiles: 0|
|22:24:50:164|[ConnectedMode/QualityProfiles] All quality profiles are up to date|
|22:34:47:638|[ConnectedMode/TimedUpdate] Triggering refresh of server settings…|
|22:34:47:640|[Suppressions] Fetching all suppressions…|
|22:34:47:658|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:34:47:658|[Hotspots] Fetching all hotspots…|
|22:34:47:660|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:34:47:661|[ConnectedMode/QualityProfiles] Updating quality profiles…|
|22:34:48:312|[Hotspots] Finished fetching all hotspots|
|22:34:48:505|[ConnectedMode/QualityProfiles] Number of out of date Quality Profiles: 0|
|22:34:48:506|[ConnectedMode/QualityProfiles] All quality profiles are up to date|
|22:34:49:593|[ServerIssueStore] Raising change event…|
|22:34:49:595|[Suppressions] Finished fetching all suppressions|
|22:44:47:643|[ConnectedMode/TimedUpdate] Triggering refresh of server settings…|
|22:44:47:644|[Suppressions] Fetching all suppressions…|
|22:44:47:654|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:44:47:655|[Hotspots] Fetching all hotspots…|
|22:44:47:656|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:44:47:657|[ConnectedMode/QualityProfiles] Updating quality profiles…|
|22:44:48:182|[Hotspots] Finished fetching all hotspots|
|22:44:48:288|[ConnectedMode/QualityProfiles] Number of out of date Quality Profiles: 0|
|22:44:48:289|[ConnectedMode/QualityProfiles] All quality profiles are up to date|
|22:44:49:924|[ServerIssueStore] Raising change event…|
|22:44:49:941|[Suppressions] Finished fetching all suppressions|
|22:54:47:638|[ConnectedMode/TimedUpdate] Triggering refresh of server settings…|
|22:54:47:639|[Suppressions] Fetching all suppressions…|
|22:54:47:678|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:54:47:680|[Hotspots] Fetching all hotspots…|
|22:54:47:709|[ConnectedMode/BranchMapping] Closest Sonar server branch: develop|
|22:54:47:710|[ConnectedMode/QualityProfiles] Updating quality profiles…|
|22:54:49:443|[ServerIssueStore] Raising change event…|
|22:54:49:446|[Suppressions] Finished fetching all suppressions|
|22:54:49:720|[Hotspots] Finished fetching all hotspots|
|22:54:50:234|[ConnectedMode/QualityProfiles] Number of out of date Quality Profiles: 0|
|22:54:50:234|[ConnectedMode/QualityProfiles] All quality profiles are up to date|
|22:56:13:455|[SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id |
|22:56:13:555|[SLCORE] Generating temporary tsconfig is not supported by DefaultTsConfigProvider in SONARLINT context.|
|22:56:13:556|[SLCORE] No tsconfig.json file found, analysis will be skipped.|
|22:56:13:557|[SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id 50af15a3-5d82-4268-ba10-ad7a60d47e26, analysis time: 0s|
|22:56:13:558|[SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts|
|22:56:13:560|[SLCoreAnalyzer] Finished analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id 50af15a3-5d82-4268-ba10-ad7a60d47e26, analysis time: 0s|
|22:56:13:562|[SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts|

11

Hi @tbhutada

Unfortunately, the log you provided, while includes some configuration information, is missing the verbose logs. Could you enable them in the settings and try again? Unfortunately our non-verbose logs are lacking in this case and I need more information

12

Sorry, I thought I changed to Verbose. But here is the verbose log now:

10:56:32:772 [ThreadId 1] [DEBUG] [ConnectedMode/GitMonitor] Monitoring git repo. Root path: C:\dev\git\customer-portal\customer-portal
10:56:32:807 [ThreadId 1] Connecting to ‘https://sonarqube.usventure.com/’.
10:56:32:808 [ThreadId 1] [DEBUG] IsConnected is False.
10:56:32:808 [ThreadId 1] [DEBUG] Selected SonarQube request factory
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V2_10.GetPluginsRequest for 2.1
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V2_10.GetProjectsRequest for 2.1
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V2_10.GetVersionRequest for 2.1
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V2_60.GetPropertiesRequest for 2.6
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V3_30.ValidateCredentialsRequest for 3.3
10:56:32:819 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_00.GetSourceCodeRequest for 5.0
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_10.GetIssuesRequest for 5.1
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_10.GetLanguagesRequest for 5.1
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_20.GetQualityProfileChangeLogRequest for 5.2
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_20.GetQualityProfilesRequest for 5.2
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_20.GetRoslynExportProfileRequest for 5.2
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_40.GetModulesRequest for 5.4
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_50.GetRulesRequest for 5.5
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V5_50.DownloadStaticFile for 5.5
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_20.GetOrganizationsRequest for 6.2
10:56:32:820 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_20.GetProjectsRequest for 6.2
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_30.GetPluginsRequest for 6.3
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_30.GetPropertiesRequest for 6.3
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_50.GetQualityProfileChangeLogRequest for 6.5
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_50.GetQualityProfilesRequest for 6.5
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_60.GetNotificationsRequest for 6.6
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_60.GetRoslynExportProfileRequest for 6.6
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V6_60.GetProjectBranchesRequest for 6.6
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V7_00.GetOrganizationsRequest for 7.0
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V7_20.GetIssuesRequestWrapper`1[SonarQube.Client.Api.V7_20.GetIssuesWithComponentSonarQubeRequest] for 7.2
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V8_6.GetHotspotRequest for 8.6
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V8_6.GetTaintVulnerabilitiesRequest for 8.6
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V7_20.GetExclusionsRequest for 7.2
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_4.GetSonarLintEventStream for 9.4
10:56:32:821 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_5.GetRulesWithDescriptionSectionsRequest for 9.5
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_6.GetRulesWithEducationPrinciplesRequest for 9.6
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_6.GetTaintVulnerabilitiesWithContextRequest for 9.6
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_7.SearchHotspotRequest for 9.7
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V10_2.SearchHotspotRequest for 10.2
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V10_2.GetTaintVulnerabilitiesWithCCTRequest for 10.2
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V10_2.GetRulesWithCCTRequest for 10.2
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_9.TransitionIssueRequestWithWontFix for 9.9
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V10_4.TransitionIssueRequestWithAccept for 10.4
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_9.CommentIssueRequest for 9.9
10:56:32:822 [ThreadId 1] [DEBUG] Registered SonarQube.Client.Api.V9_9.SearchFilesByNameRequest for 9.9
10:56:32:822 [ThreadId 1] [DEBUG] Getting the version of SonarQube…
10:56:33:055 [ThreadId 15] [DEBUG] Looking up implementation of ‘IGetVersionRequest’ for version ‘’ on thread ‘15’
10:56:33:056 [ThreadId 9] [FileTracker] Service Provider is unavailable
10:56:33:062 [ThreadId 15] [DEBUG] Created request of type ‘SonarQube.Client.Api.V2_10.GetVersionRequest’.
10:56:33:073 [ThreadId 15] [DEBUG] Sending Http request:
10:56:33:078 [ThreadId 15] [DEBUG] Method: GET, RequestUri: ‘api/server/version’, Version: 1.1, Content: , Headers:
10:56:33:078 {
10:56:33:078 }
10:56:33:319 [ThreadId 58] [DEBUG] [ExclusionSettingsStorage] File content: {
10:56:33:319 sonar.exclusions: ,
10:56:33:319 sonar.global.exclusions: ,
10:56:33:319 sonar.inclusions:
10:56:33:319 }
10:56:33:323 [ThreadId 58] [DEBUG] [AnalyzableFileIndicator]
10:56:33:323 Server Exclusions:
10:56:33:323 Inclusions:
10:56:33:323 Exclusions:
10:56:33:323 Global Exclusions:
10:56:33:323 file: ‘C:/dev/git/customer-portal/customer-portal/CustomerPortal/AngularClientApp/src/environments/environment.ts’
10:56:33:323 should analyze: True
10:56:33:336 [ThreadId 58] [SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id
10:56:33:401 [ThreadId 58] [SLCoreAnalyzer] Analysis not ready for file C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts: Configuration scope not initialized
10:56:33:476 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:33:488 [ThreadId 40] [DEBUG] 9.9.1.69595
10:56:33:606 [ThreadId 1] Connected to SonarQube ‘9.9.1.69595’.
10:56:33:608 [ThreadId 1] [DEBUG] Validating the credentials…
10:56:33:619 [ThreadId 58] [DEBUG] Looking up implementation of ‘IValidateCredentialsRequest’ for version ‘’ on thread ‘58’
10:56:33:620 [ThreadId 58] [DEBUG] Created request of type ‘SonarQube.Client.Api.V3_30.ValidateCredentialsRequest’.
10:56:33:645 [ThreadId 58] [DEBUG] Sending Http request:
10:56:33:646 [ThreadId 58] [DEBUG] Method: GET, RequestUri: ‘api/authentication/validate’, Version: 1.1, Content: , Headers:
10:56:33:646 {
10:56:33:646 }
10:56:33:817 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:33:846 [ThreadId 40] [DEBUG] {valid:true}
10:56:33:866 [ThreadId 1] [DEBUG] Credentials accepted.
10:56:39:926 [ThreadId 1] Initializing the telemetry package…
10:56:39:927 [ThreadId 1] Finished initializing the telemetry package…
10:56:40:046 [ThreadId 1] Initializing the SonarLint package…
10:56:40:068 [ThreadId 1] Finishing initializing the SonarLint package
10:56:40:697 [ThreadId 73] Initializing the notifications package…
10:56:40:702 [ThreadId 1] Loading notifications settings…
10:56:40:710 [ThreadId 1] Connected: checking for notifications
10:56:40:718 [ThreadId 1] Finished initializing the notifications package
10:56:40:723 [ThreadId 30] [DEBUG] Looking up implementation of ‘IGetNotificationsRequest’ for version ‘9.9.1.69595’ on thread ‘30’
10:56:40:724 [ThreadId 30] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetNotificationsRequest’.
10:56:40:726 [ThreadId 30] [DEBUG] Sending Http request:
10:56:40:734 [ThreadId 30] [DEBUG] Method: GET, RequestUri: ‘api/developers/search_events?projects=Customer-Portal&from=2024-09-03T10%3A56%3A40-0500’, Version: 1.1, Content: , Headers:
10:56:40:734 {
10:56:40:734 }
10:56:40:852 [ThreadId 50] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:40:853 [ThreadId 50] [DEBUG] {events:}
10:56:40:891 [ThreadId 1] [ConnectedMode] Initializing package…
10:56:40:902 [ThreadId 1] [DEBUG] [SSESessionManager] Ending current session…
10:56:40:902 [ThreadId 1] [DEBUG] [SSESessionManager] Disposing current session:
10:56:40:902 [ThreadId 1] [DEBUG] [SSESessionManager] In connected mode, creating session…
10:56:40:903 [ThreadId 1] [DEBUG] [SSESessionManager] Created session: 61337839
10:56:40:907 [ThreadId 1] [DEBUG] [SSESessionManager] Session started
10:56:40:949 [ThreadId 1] [ConnectedMode] Package initialized
10:56:40:951 [ThreadId 14] [DEBUG] Looking up implementation of ‘IGetSonarLintEventStream’ for version ‘9.9.1.69595’ on thread ‘14’
10:56:40:952 [ThreadId 37] [DEBUG] [ConnectedMode/ImportsBeforeFileGenerator] Checking if file SonarLint before imports targets file exists. File: C:\Users\T014191\AppData\Local\Microsoft\MSBuild\Current\Microsoft.Common.targets\ImportBefore\SonarLint.targets
10:56:40:952 [ThreadId 54] [DEBUG] [ActionRunner] Cancelling current operation…
10:56:40:952 [ThreadId 6] [DEBUG] [ActionRunner] Cancelling current operation…
10:56:40:956 [ThreadId 14] [DEBUG] Created request of type ‘SonarQube.Client.Api.V9_4.GetSonarLintEventStream’.
10:56:40:956 [ThreadId 37] [DEBUG] [ConnectedMode/ImportsBeforeFileGenerator] Skipped file writing as identical file was found.
10:56:40:957 [ThreadId 54] [Suppressions] Fetching all suppressions…
10:56:40:958 [ThreadId 6] [Hotspots] Fetching all hotspots…
10:56:40:960 [ThreadId 14] [DEBUG] Sending Http request:
10:56:40:971 [ThreadId 1] [Taint] Initializing taint issues synchronization package…
10:56:40:976 [ThreadId 14] [DEBUG] Method: GET, RequestUri: ‘api/push/sonarlint_events?languages=cs%2Cvbnet%2Ccpp%2Cc%2Cjs%2Cts%2Csecrets%2Ccss&projectKeys=Customer-Portal’, Version: 1.1, Content: , Headers:
10:56:40:976 {
10:56:40:976 Accept: text/event-stream
10:56:40:976 }
10:56:40:976 [ThreadId 54] [DEBUG] [ConnectedMode/BranchMapping] Cache miss. Recalculating server branch mapping…
10:56:40:977 [ThreadId 6] [DEBUG] [ConnectedMode/BranchMapping] Cache miss. Recalculating server branch mapping…
10:56:40:983 [ThreadId 36] [DEBUG] [ConnectedMode/BranchMapping] Cache miss. Recalculating server branch mapping…
10:56:41:012 [ThreadId 36] [DEBUG] [ConnectedMode/BranchMapping] Calculating closest Sonar server branch…
10:56:41:012 [ThreadId 6] [DEBUG] [ConnectedMode/BranchMapping] Calculating closest Sonar server branch…
10:56:41:013 [ThreadId 54] [DEBUG] [ConnectedMode/BranchMapping] Calculating closest Sonar server branch…
10:56:41:026 [ThreadId 6] [DEBUG] Looking up implementation of ‘IGetProjectBranchesRequest’ for version ‘9.9.1.69595’ on thread ‘6’
10:56:41:026 [ThreadId 36] [DEBUG] Looking up implementation of ‘IGetProjectBranchesRequest’ for version ‘9.9.1.69595’ on thread ‘36’
10:56:41:026 [ThreadId 54] [DEBUG] Looking up implementation of ‘IGetProjectBranchesRequest’ for version ‘9.9.1.69595’ on thread ‘54’
10:56:41:026 [ThreadId 6] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetProjectBranchesRequest’.
10:56:41:026 [ThreadId 36] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetProjectBranchesRequest’.
10:56:41:026 [ThreadId 54] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetProjectBranchesRequest’.
10:56:41:027 [ThreadId 36] [DEBUG] Sending Http request:
10:56:41:027 [ThreadId 6] [DEBUG] Sending Http request:
10:56:41:027 [ThreadId 54] [DEBUG] Sending Http request:
10:56:41:028 [ThreadId 6] [DEBUG] Method: GET, RequestUri: ‘api/project_branches/list?project=Customer-Portal’, Version: 1.1, Content: , Headers:
10:56:41:028 {
10:56:41:028 }
10:56:41:028 [ThreadId 54] [DEBUG] Method: GET, RequestUri: ‘api/project_branches/list?project=Customer-Portal’, Version: 1.1, Content: , Headers:
10:56:41:028 {
10:56:41:028 }
10:56:41:028 [ThreadId 36] [DEBUG] Method: GET, RequestUri: ‘api/project_branches/list?project=Customer-Portal’, Version: 1.1, Content: , Headers:
10:56:41:028 {
10:56:41:028 }
10:56:41:406 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:41:407 [ThreadId 40] [DEBUG] {branches:[{name:develop,isMain:true,type:BRANCH,status:{qualityGateStatus:ERROR},analysisDate:2024-08-20T19:15:30+0000,excludedFromPurge:true}]}
10:56:41:411 [ThreadId 40] [DEBUG] [ConnectedMode/BranchMapping] Match found: same Sonar branch name: develop
10:56:41:412 [ThreadId 40] [DEBUG] [ConnectedMode/BranchMapping] Finished calculating closest Sonar server branch. Result: develop
10:56:41:412 [ThreadId 40] [ConnectedMode/BranchMapping] Matching Sonar server branch: develop
10:56:41:413 [ThreadId 40] [ConnectedMode/BranchMapping] Closest Sonar server branch: develop
10:56:41:415 [ThreadId 40] [DEBUG] Looking up implementation of ‘ISearchHotspotRequest’ for version ‘9.9.1.69595’ on thread ‘40’
10:56:41:415 [ThreadId 40] [DEBUG] Created request of type ‘SonarQube.Client.Api.V9_7.SearchHotspotRequest’.
10:56:41:419 [ThreadId 40] [DEBUG] Sending Http request:
10:56:41:422 [ThreadId 40] [DEBUG] Method: GET, RequestUri: ‘api/hotspots/search?projectKey=Customer-Portal&branch=develop&p=1&ps=500’, Version: 1.1, Content: , Headers:
10:56:41:422 {
10:56:41:422 }
10:56:41:494 [ThreadId 39] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:41:494 [ThreadId 39] [DEBUG] {branches:[{name:develop,isMain:true,type:BRANCH,status:{qualityGateStatus:ERROR},analysisDate:2024-08-20T19:15:30+0000,excludedFromPurge:true}]}
10:56:41:495 [ThreadId 39] [DEBUG] [ConnectedMode/BranchMapping] Match found: same Sonar branch name: develop
10:56:41:495 [ThreadId 39] [DEBUG] [ConnectedMode/BranchMapping] Finished calculating closest Sonar server branch. Result: develop
10:56:41:495 [ThreadId 39] [ConnectedMode/BranchMapping] Matching Sonar server branch: develop
10:56:41:496 [ThreadId 39] [ConnectedMode/BranchMapping] Closest Sonar server branch: develop
10:56:41:498 [ThreadId 39] [DEBUG] Looking up implementation of ‘IGetIssuesRequest’ for version ‘9.9.1.69595’ on thread ‘39’
10:56:41:499 [ThreadId 39] [DEBUG] Created request of type ‘SonarQube.Client.Api.V7_20.GetIssuesRequestWrapper`1[SonarQube.Client.Api.V7_20.GetIssuesWithComponentSonarQubeRequest]’.
10:56:41:502 [ThreadId 39] [DEBUG] Sending Http request:
10:56:41:506 [ThreadId 39] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=Customer-Portal&statuses=RESOLVED&branch=develop&types=CODE_SMELL&p=1&ps=500’, Version: 1.1, Content: , Headers:
10:56:41:506 {
10:56:41:506 }
10:56:41:837 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:41:838 [ThreadId 40] [DEBUG] {paging:{pageIndex:1,pageSize:500,total:6},hotspots:[{key:AYu1vrIgTHRHnoqYETqh,component:Customer-Portal:CustomerPortal.LoadTests/LoadTestState.cs,project:Customer-Portal,securityCategory:auth,vulnerabilityProbability:HIGH,status:TO_REVIEW,line:59,message:\password\ detected here, make sure this is not a hard-coded credential.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:59,endLine:59,startOffset:12,endOffset:36},flows:,ruleKey:csharpsquid:S2068,messageFormattings:},{key:AY6k6AeZutGqpKGLuiQE,component:Customer-Portal:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,project:Customer-Portal,securityCategory:auth,vulnerabilityProbability:HIGH,status:TO_REVIEW,line:51,message:Review this potentially hardcoded credential.,author:,creationDate:2024-04-03T16:59:45+0000,updateDate:2024-04-03T16:59:45+0000,textRange:{startLine:51,endLine:51,startOffset:27,endOffset:48},flows:,ruleKey:typescript:S2068,messageFormattings:},{key:AYu1vrCBTHRHnoqYEToy,component:Customer-Portal:CustomerPortal/Helpers/LoadTestBM.cs,project:Customer-Portal,securityCategory:weak-cryptography,vulnerabilityProbability:MEDIUM,status:TO_REVIEW,line:29,message:Make sure that using this pseudorandom number generator is safe here.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:29,endLine:29,startOffset:36,endOffset:72},flows:,ruleKey:csharpsquid:S2245,messageFormattings:},{key:AY6k6A_QutGqpKGLuiV1,component:Customer-Portal:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,project:Customer-Portal,securityCategory:weak-cryptography,vulnerabilityProbability:MEDIUM,status:TO_REVIEW,line:158,message:Make sure that using this pseudorandom number generator is safe here.,author:,creationDate:2024-04-03T16:59:45+0000,updateDate:2024-04-03T16:59:45+0000,textRange:{startLine:158,endLine:158,startOffset:26,endOffset:39},flows:,ruleKey:typescript:S2245,messageFormattings:},{key:AYu1vrF5THRHnoqYETp-,component:Customer-Portal:CustomerPortal/Startup.cs,project:Customer-Portal,securityCategory:insecure-conf,vulnerabilityProbability:LOW,status:TO_REVIEW,line:183,message:Make sure this permissive CORS policy is safe here.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:183,endLine:184,startOffset:29,endOffset:33},flows:,ruleKey:csharpsquid:S5122,messageFormattings:},{key:AYu1vrGkTHRHnoqYETqD,component:Customer-Portal:CustomerPortal/Program.cs,project:Customer-Portal,securityCategory:log-injection,vulnerabilityProbability:LOW,status:TO_REVIEW,line:43,message:Make sure that this logger\u0027s configuration is safe.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:43,endLine:43,startOffset:33,endOffset:58},flows:,ruleKey:csharpsquid:S4792,messageFormattings:}],components:[{key:Customer-Portal:CustomerPortal.LoadTests/LoadTestState.cs,qualifier:FIL,name:LoadTestState.cs,longName:CustomerPortal.LoadTests/LoadTestState.cs,path:CustomerPortal.LoadTests/LoadTestState.cs},{key:Customer-Portal:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,qualifier:FIL,name:utility-functions.ts,longName:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,path:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts},{key:Customer-Portal:CustomerPortal/Program.cs,qualifier:FIL,name:Program.cs,longName:CustomerPortal/Program.cs,path:CustomerPortal/Program.cs},{key:Customer-Portal:CustomerPortal/Startup.cs,qualifier:FIL,name:Startup.cs,longName:CustomerPortal/Startup.cs,path:CustomerPortal/Startup.cs},{key:Customer-Portal:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,qualifier:FIL,name:change-password.component.ts,longName:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,path:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts},{key:Customer-Portal,qualifier:TRK,name:Customer Portal,longName:Customer Portal},{key:Customer-Portal:CustomerPortal/Helpers/LoadTestBM.cs,qualifier:FIL,name:LoadTestBM.cs,longName:CustomerPortal/Helpers/LoadTestBM.cs,path:CustomerPortal/Helpers/LoadTestBM.cs}]}
10:56:41:851 [ThreadId 40] [DEBUG] Received 6 items.
10:56:41:854 [ThreadId 40] [Hotspots] Finished fetching all hotspots
10:56:41:893 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:41:894 [ThreadId 40] [DEBUG] {total:1,p:1,ps:500,paging:{pageIndex:1,pageSize:500,total:1},effortTotal:5,issues:[{key:AYu1vrJUTHRHnoqYETqv,rule:csharpsquid:S125,severity:MAJOR,component:Customer-Portal:CustomerPortal.LoadTests/LoadTestWorker.cs,project:Customer-Portal,line:145,hash:c3821b418b406165878a0292b2d002db,textRange:{startLine:145,endLine:145,startOffset:24,endOffset:90},flows:,resolution:WONTFIX,status:RESOLVED,message:Remove this commented out code.,effort:5min,debt:5min,author:,tags:[unused],creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-28T20:48:34+0000,type:CODE_SMELL,scope:MAIN,quickFixAvailable:false,messageFormattings:}],components:[{key:Customer-Portal:CustomerPortal.LoadTests/LoadTestWorker.cs,enabled:true,qualifier:FIL,name:LoadTestWorker.cs,longName:CustomerPortal.LoadTests/LoadTestWorker.cs,path:CustomerPortal.LoadTests/LoadTestWorker.cs},{key:Customer-Portal,enabled:true,qualifier:TRK,name:Customer Portal,longName:Customer Portal}],facets:}
10:56:41:901 [ThreadId 40] [DEBUG] Received 1 items.
10:56:41:902 [ThreadId 40] [DEBUG] Sending Http request:
10:56:41:902 [ThreadId 40] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=Customer-Portal&statuses=RESOLVED&branch=develop&types=BUG&p=1&ps=500’, Version: 1.1, Content: , Headers:
10:56:41:902 {
10:56:41:902 }
10:56:41:997 [ThreadId 39] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:41:998 [ThreadId 39] [DEBUG] {total:0,p:1,ps:500,paging:{pageIndex:1,pageSize:500,total:0},effortTotal:0,issues:,components:,facets:}
10:56:41:998 [ThreadId 39] [DEBUG] Received 0 items.
10:56:41:998 [ThreadId 39] [DEBUG] Sending Http request:
10:56:41:999 [ThreadId 39] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=Customer-Portal&statuses=RESOLVED&branch=develop&types=VULNERABILITY&p=1&ps=500’, Version: 1.1, Content: , Headers:
10:56:41:999 {
10:56:41:999 }
10:56:42:087 [ThreadId 40] [DEBUG] Response with HTTP status code ‘OK’ received.
10:56:42:088 [ThreadId 40] [DEBUG] {total:0,p:1,ps:500,paging:{pageIndex:1,pageSize:500,total:0},effortTotal:0,issues:,components:,facets:}
10:56:42:088 [ThreadId 40] [DEBUG] Received 0 items.
10:56:42:089 [ThreadId 40] [ServerIssueStore] Raising change event…
10:56:42:094 [ThreadId 40] [Suppressions] Finished fetching all suppressions
10:57:40:727 [ThreadId 62] [DEBUG] Looking up implementation of ‘IGetNotificationsRequest’ for version ‘9.9.1.69595’ on thread ‘62’
10:57:40:728 [ThreadId 62] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetNotificationsRequest’.
10:57:40:728 [ThreadId 62] [DEBUG] Sending Http request:
10:57:40:728 [ThreadId 62] [DEBUG] Method: GET, RequestUri: ‘api/developers/search_events?projects=Customer-Portal&from=2024-09-03T10%3A56%3A40-0500’, Version: 1.1, Content: , Headers:
10:57:40:728 {
10:57:40:728 }
10:57:40:827 [ThreadId 86] [DEBUG] Response with HTTP status code ‘OK’ received.
10:57:40:828 [ThreadId 86] [DEBUG] {events:}
10:57:53:840 [ThreadId 38] [FileTracker] Service Provider is unavailable
10:57:53:843 [ThreadId 6] [DEBUG] [ExclusionSettingsStorage] File content: {
10:57:53:843 sonar.exclusions: ,
10:57:53:843 sonar.global.exclusions: ,
10:57:53:843 sonar.inclusions:
10:57:53:843 }
10:57:53:846 [ThreadId 6] [DEBUG] [AnalyzableFileIndicator]
10:57:53:846 Server Exclusions:
10:57:53:846 Inclusions:
10:57:53:846 Exclusions:
10:57:53:846 Global Exclusions:
10:57:53:846 file: ‘C:/dev/git/customer-portal/customer-portal/CustomerPortal/AngularClientApp/src/environments/environment.ts’
10:57:53:846 should analyze: True
10:57:53:852 [ThreadId 6] [SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id
10:57:53:853 [ThreadId 6] [SLCoreAnalyzer] Analysis not ready for file C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts: Configuration scope not initialized
13

@tbhutada unfortunately, in the last log you’ve prodived the javascript analyzer did not have enough time to start analyzing the file, and the analysis logs are missing, which is where the problem seems to be happening. Could you please try again and give it a bit more time to start analyzing the file? It should do it automatically after the analyzer has loaded, but doing a Ctrl+S will force re-analysis if the analyzer is loaded.

This type of message should be the indicator that the analysis has been performed:

[SLCoreAnalyzer] Found 0 issue(s) for C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts

14

Hello Georgii, That is where it gets stuck … It then again tried to refresh from sonarqube and returns a response code of OK. See below:

13:08:46:440 [ThreadId 66] [DEBUG] [SLCORE] Language of file file:///C:/dev/git/customer-portal/customer-portal/CustomerPortal/AngularClientApp/src/environments/environment.ts is detected to be TS
13:08:46:440 [ThreadId 54] [DEBUG] [AnalyzableFileIndicator]
13:08:46:440 Server Exclusions:
13:08:46:440 Inclusions:
13:08:46:440 Exclusions:
13:08:46:440 Global Exclusions:
*** 13:08:46:440

> |13:08:46:440| should analyze: True |
> |13:08:46:440|[ThreadId 66] [DEBUG] [SLCORE] Computing file exclusion for uri ‘file:///C:/dev/git/customer-portal/customer-portal/CustomerPortal/AngularClientApp/src/environments/environment.ts’|
> |13:08:46:440|[ThreadId 54] [SLCoreAnalyzer] Analyzing C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts with id |
> |13:08:46:441|[ThreadId 66] [DEBUG] [SLCORE] Unable to read settings in local storage|
> |13:08:46:441|[ThreadId 54] [SLCoreAnalyzer] Analysis not ready for file C:\dev\git\customer-portal\customer-portal\CustomerPortal\AngularClientApp\src\environments\environment.ts: Configuration scope not initialized|
> |13:08:51:470|[ThreadId 19] [DEBUG] Looking up implementation of ‘IGetNotificationsRequest’ for version ‘9.9.1.69595’ on thread ‘19’|
> |13:08:51:470|[ThreadId 19] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetNotificationsRequest’.|
> |13:08:51:470|[ThreadId 19] [DEBUG] Sending Http request:|
> |13:08:51:470|[ThreadId 19] [DEBUG] Method: GET, RequestUri: ‘api/developers/search_events?projects=CustomerPortalApplication&from=2024-09-08T12%3A20%3A51-0500’, Version: 1.1, Content: , Headers:|

|13:08:51:470|{|
|13:08:51:470|}|
|13:08:51:554|[ThreadId 95] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:08:51:555|[ThreadId 95] [DEBUG] {events:}|
|13:09:51:476|[ThreadId 117] [DEBUG] Looking up implementation of ‘IGetNotificationsRequest’ for version ‘9.9.1.69595’ on thread ‘117’|
|13:09:51:476|[ThreadId 117] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetNotificationsRequest’.|
|13:09:51:477|[ThreadId 117] [DEBUG] Sending Http request:|
|13:09:51:477|[ThreadId 117] [DEBUG] Method: GET, RequestUri: ‘api/developers/search_events?projects=CustomerPortalApplication&from=2024-09-08T12%3A20%3A51-0500’, Version: 1.1, Content: , Headers:|
|13:09:51:477|{|
|13:09:51:477|}|
|13:09:51:564|[ThreadId 118] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:09:51:565|[ThreadId 118] [DEBUG] {events:}|
|13:10:51:487|[ThreadId 91] [DEBUG] Looking up implementation of ‘IGetNotificationsRequest’ for version ‘9.9.1.69595’ on thread ‘91’|
|13:10:51:488|[ThreadId 91] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_60.GetNotificationsRequest’.|
|13:10:51:489|[ThreadId 91] [DEBUG] Sending Http request:|
|13:10:51:489|[ThreadId 91] [DEBUG] Method: GET, RequestUri: ‘api/developers/search_events?projects=CustomerPortalApplication&from=2024-09-08T12%3A20%3A51-0500’, Version: 1.1, Content: , Headers:|
|13:10:51:489|{|
|13:10:51:489|}|
|13:10:51:515|[ThreadId 112] [ConnectedMode/TimedUpdate] Triggering refresh of server settings…|
|13:10:51:516|[ThreadId 112] [DEBUG] [ActionRunner] Cancelling current operation…|
|13:10:51:516|[ThreadId 112] [Suppressions] Fetching all suppressions…|
|13:10:51:516|[ThreadId 112] [DEBUG] [ConnectedMode/BranchMapping] Cache hit|
|13:10:51:517|[ThreadId 112] [ConnectedMode/BranchMapping] Closest Sonar server branch: main|
|13:10:51:517|[ThreadId 112] [DEBUG] Looking up implementation of ‘IGetIssuesRequest’ for version ‘9.9.1.69595’ on thread ‘112’|
|13:10:51:517|[ThreadId 112] [DEBUG] Created request of type ‘SonarQube.Client.Api.V7_20.GetIssuesRequestWrapper`1[SonarQube.Client.Api.V7_20.GetIssuesWithComponentSonarQubeRequest]’.|
|13:10:51:517|[ThreadId 112] [DEBUG] Sending Http request:|
|13:10:51:518|[ThreadId 112] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=CustomerPortalApplication&statuses=RESOLVED&branch=main&types=CODE_SMELL&p=1&ps=500’, Version: 1.1, Content: , Headers:|
|13:10:51:518|{|
|13:10:51:518|}|
|13:10:51:518|[ThreadId 112] [DEBUG] [ActionRunner] Cancelling current operation…|
|13:10:51:518|[ThreadId 112] [Hotspots] Fetching all hotspots…|
|13:10:51:519|[ThreadId 112] [DEBUG] [ConnectedMode/BranchMapping] Cache hit|
|13:10:51:519|[ThreadId 112] [ConnectedMode/BranchMapping] Closest Sonar server branch: main|
|13:10:51:519|[ThreadId 112] [DEBUG] Looking up implementation of ‘ISearchHotspotRequest’ for version ‘9.9.1.69595’ on thread ‘112’|
|13:10:51:520|[ThreadId 112] [DEBUG] Created request of type ‘SonarQube.Client.Api.V9_7.SearchHotspotRequest’.|
|13:10:51:520|[ThreadId 112] [DEBUG] Sending Http request:|
|13:10:51:520|[ThreadId 112] [DEBUG] Method: GET, RequestUri: ‘api/hotspots/search?projectKey=CustomerPortalApplication&branch=main&p=1&ps=500’, Version: 1.1, Content: , Headers:|
|13:10:51:520|{|
|13:10:51:520|}|
|13:10:51:521|[ThreadId 112] [DEBUG] [ActionRunner] Cancelling current operation…|
|13:10:51:521|[ThreadId 112] [ConnectedMode/QualityProfiles] Updating quality profiles…|
|13:10:51:521|[ThreadId 112] [DEBUG] Looking up implementation of ‘IGetQualityProfilesRequest’ for version ‘9.9.1.69595’ on thread ‘112’|
|13:10:51:521|[ThreadId 112] [DEBUG] Created request of type ‘SonarQube.Client.Api.V6_50.GetQualityProfilesRequest’.|
|13:10:51:521|[ThreadId 112] [DEBUG] Sending Http request:|
|13:10:51:521|[ThreadId 112] [DEBUG] Method: GET, RequestUri: ‘api/qualityprofiles/search?project=CustomerPortalApplication’, Version: 1.1, Content: , Headers:|
|13:10:51:521|{|
|13:10:51:521|}|
|13:10:51:573|[ThreadId 81] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:10:51:573|[ThreadId 81] [DEBUG] {events:}|
|13:10:51:823|[ThreadId 94] [DEBUG] Response with HTTP status code ‘NotFound’ received.|
|13:10:51:824|[ThreadId 94] This project has no quality profile. Downloading the default quality profile.|
|13:10:51:824|[ThreadId 94] [DEBUG] Sending Http request:|
|13:10:51:825|[ThreadId 94] [DEBUG] Method: GET, RequestUri: ‘api/qualityprofiles/search?defaults=true’, Version: 1.1, Content: , Headers:|
|13:10:51:825|{|
|13:10:51:825|}|
|13:10:51:844|[ThreadId 99] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:10:51:844|[ThreadId 99] [DEBUG] {total:0,p:1,ps:500,paging:{pageIndex:1,pageSize:500,total:0},effortTotal:0,issues:,components:,facets:}|
|13:10:51:845|[ThreadId 99] [DEBUG] Received 0 items.|
|13:10:51:845|[ThreadId 99] [DEBUG] Sending Http request:|
|13:10:51:845|[ThreadId 99] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=CustomerPortalApplication&statuses=RESOLVED&branch=main&types=BUG&p=1&ps=500’, Version: 1.1, Content: , Headers:|
|13:10:51:845|{|
|13:10:51:845|}|
|13:10:51:859|[ThreadId 94] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:10:51:859|[ThreadId 94] [DEBUG] {paging:{pageIndex:1,pageSize:500,total:6},hotspots:[{key:AYu1vrIgTHRHnoqYETqh,component:Customer-Portal:CustomerPortal.LoadTests/LoadTestState.cs,project:Customer-Portal,securityCategory:auth,vulnerabilityProbability:HIGH,status:TO_REVIEW,line:59,message:\password\ detected here, make sure this is not a hard-coded credential.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:59,endLine:59,startOffset:12,endOffset:36},flows:,ruleKey:csharpsquid:S2068,messageFormattings:},{key:AY6k6AeZutGqpKGLuiQE,component:Customer-Portal:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,project:Customer-Portal,securityCategory:auth,vulnerabilityProbability:HIGH,status:TO_REVIEW,line:51,message:Review this potentially hardcoded credential.,author:,creationDate:2024-04-03T16:59:45+0000,updateDate:2024-04-03T16:59:45+0000,textRange:{startLine:51,endLine:51,startOffset:27,endOffset:48},flows:,ruleKey:typescript:S2068,messageFormattings:},{key:AYu1vrCBTHRHnoqYEToy,component:Customer-Portal:CustomerPortal/Helpers/LoadTestBM.cs,project:Customer-Portal,securityCategory:weak-cryptography,vulnerabilityProbability:MEDIUM,status:TO_REVIEW,line:29,message:Make sure that using this pseudorandom number generator is safe here.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:29,endLine:29,startOffset:36,endOffset:72},flows:,ruleKey:csharpsquid:S2245,messageFormattings:},{key:AY6k6A_QutGqpKGLuiV1,component:Customer-Portal:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,project:Customer-Portal,securityCategory:weak-cryptography,vulnerabilityProbability:MEDIUM,status:TO_REVIEW,line:158,message:Make sure that using this pseudorandom number generator is safe here.,author:,creationDate:2024-04-03T16:59:45+0000,updateDate:2024-04-03T16:59:45+0000,textRange:{startLine:158,endLine:158,startOffset:26,endOffset:39},flows:,ruleKey:typescript:S2245,messageFormattings:},{key:AYu1vrF5THRHnoqYETp-,component:Customer-Portal:CustomerPortal/Startup.cs,project:Customer-Portal,securityCategory:insecure-conf,vulnerabilityProbability:LOW,status:TO_REVIEW,line:183,message:Make sure this permissive CORS policy is safe here.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:183,endLine:184,startOffset:29,endOffset:33},flows:,ruleKey:csharpsquid:S5122,messageFormattings:},{key:AYu1vrGkTHRHnoqYETqD,component:Customer-Portal:CustomerPortal/Program.cs,project:Customer-Portal,securityCategory:log-injection,vulnerabilityProbability:LOW,status:TO_REVIEW,line:43,message:Make sure that this logger\u0027s configuration is safe.,author:,creationDate:2023-11-09T20:20:14+0000,updateDate:2023-11-09T20:20:14+0000,textRange:{startLine:43,endLine:43,startOffset:33,endOffset:58},flows:,ruleKey:csharpsquid:S4792,messageFormattings:}],components:[{key:Customer-Portal:CustomerPortal.LoadTests/LoadTestState.cs,qualifier:FIL,name:LoadTestState.cs,longName:CustomerPortal.LoadTests/LoadTestState.cs,path:CustomerPortal.LoadTests/LoadTestState.cs},{key:Customer-Portal:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,qualifier:FIL,name:utility-functions.ts,longName:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts,path:CustomerPortal/AngularClientApp/src/app/_helpers/utility-functions.ts},{key:Customer-Portal:CustomerPortal/Program.cs,qualifier:FIL,name:Program.cs,longName:CustomerPortal/Program.cs,path:CustomerPortal/Program.cs},{key:Customer-Portal:CustomerPortal/Startup.cs,qualifier:FIL,name:Startup.cs,longName:CustomerPortal/Startup.cs,path:CustomerPortal/Startup.cs},{key:Customer-Portal:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,qualifier:FIL,name:change-password.component.ts,longName:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts,path:CustomerPortal/AngularClientApp/src/app/user/change-password/change-password.component.ts},{key:Customer-Portal,qualifier:TRK,name:Customer Portal,longName:Customer Portal},{key:Customer-Portal:CustomerPortal/Helpers/LoadTestBM.cs,qualifier:FIL,name:LoadTestBM.cs,longName:CustomerPortal/Helpers/LoadTestBM.cs,path:CustomerPortal/Helpers/LoadTestBM.cs}]}|
|13:10:51:860|[ThreadId 94] [DEBUG] Received 6 items.|
|13:10:51:860|[ThreadId 94] [Hotspots] Finished fetching all hotspots|
|13:10:51:938|[ThreadId 99] [DEBUG] Response with HTTP status code ‘OK’ received.|
|13:10:51:938|[ThreadId 99] [DEBUG] {total:0,p:1,ps:500,paging:{pageIndex:1,pageSize:500,total:0},effortTotal:0,issues:,components:,facets:}|
|13:10:51:939|[ThreadId 99] [DEBUG] Received 0 items.|
|13:10:51:939|[ThreadId 99] [DEBUG] Sending Http request:|
|13:10:51:939|[ThreadId 99] [DEBUG] Method: GET, RequestUri: ‘api/issues/search?projects=CustomerPortalApplication&statuses=RESOLVED&branch=main&types=VULNERABILITY&p=1&ps=500’, Version: 1.1, Content: , Headers:|
|13:10:51:939|{|
|13:10:51:939|}|
|13:10:52:026|[ThreadId 94] [DEBUG] Response with HTTP status code ‘OK’ received.|