SQL Taint rules missing in Sonar (SQL Injection)

Padma_G · September 19, 2023, 4:32pm

We are missing SQL taint rules in Sonar.

We are migrating from Coverity to Sonar and we have observed for example this kind of high impact security issues are not detected in Sonar. What can we do to detect such issues in Sonar. We are using Sonarqube enterprise 9.9 version

Issue snipped covered by Coverity but not Sonar.
sql_taint: Insecure concatenation of a SQL statement. The value X is tainted.
Perform one of the following to guard against SQL injection attacks.

Parameterize the SQL statement, binding tainted values to parameters within the statement.
Validate user-supplied values against predefined constant values. Concatenate these constant values into the SQL statement.
Cast tainted values to safe types such as integers. Concatenate these type safe values into the statement.

Colin · September 20, 2023, 12:48pm

Hey there.

I suggest you include a full code sample where you expect an issue to be raised (or where Coverity is raising an issue) but Sonar iis not.

Topic		Replies	Views
C# rule S3649 missing after upgrade to 7.2? SonarQube Server / Community Build sonarqube , security	1	1899	June 21, 2018
Sonarqube not detecting SQL injection in Java code SonarQube Server / Community Build	2	1143	March 25, 2021
Does sonarqube detect sql injection vulerabilities? SonarQube Server / Community Build sonarqube	2	633	February 2, 2023
Php/SQL injection in variables SonarQube Server / Community Build php	1	1510	February 5, 2021
RSPEC-3649 SQL queries injection rule missing from server SonarQube Server / Community Build java , sonarqube , security	2	1076	February 26, 2019

SQL Taint rules missing in Sonar (SQL Injection)

Related topics