I would like to use SonarLint mainly for Bugs and Security Vulnerabilities.
Before using SonarLint, I would like understand can SonarLint detect all types Vulnerabilities such as password, keys/tokens, CreditCard numbers, vulnerable dependency, secrets, etc. in the code when using IDE.
I am not sure as I found this post* stating that SonarLint cannot detect high level security risk in IDE, it can only be detected in SonarQube or SonarCloud.
Basically, I would like to understand if SonarLint & SonarQube can do the same job as **GitHub Advance Security
User’s who are using SonarLint, could you please give feedback if SonarLint can detect for my use case.