Hello SonarCloud users,
In our continued effort to provide improved security and more controlled network access, we are adding support for static IPs for outgoing calls to supported DevOps platforms (GitHub, GitLab, Azure DevOps Services, and BitBucket Cloud). This will help organizations whitelist based on static IPs and add a layer of security to limit the traffic sources allowed to access their resources.
The list of IP addresses is as follows (and documented here):
In addition, we have added those addresses to our SonarCloud GitHub App, so they will be automatically applied if you have selected the “Enable IP allow list configuration for installed GitHub Apps” option for your GitHub organization.
The SonarCloud team