I’m trying to find what security practices the built in Quality Profile follows for sonar cloud and I’m struggling to find it.
I’ve seen material suggest OWASP TOP 10 but when I check the category filter it shows no rules under that filter. This may be my misunderstanding of how that categorization is supposed to be used.
Would someone be able to confirm and likewise confirm the security standard or frameworks that SonarWay implements e.g. (OWASP TOP 10, CWE, etc) on enterprise?
Hey there.
That’s odd. You should see something more like this:
- What version of SQ are you using?
- Is it possible your Elasticsearch index is corrupt?