The vulnerability does not appear in the report

cryptoparty · January 17, 2022, 11:44am

I use the dependency-check plugin, which shows a vulnerable dependency, but it is not in the main report

Please advise on where to look to understand the causes and fix them

Colin · January 17, 2022, 1:29pm

Hey there.

I would suggest raising an issue with dependency-check/dependency-check-sonar-plugin who maintain this plugin.

cryptoparty · January 17, 2022, 2:59pm

Thx, but may be any ideas?

Topic		Replies	Views
SonarQube does not show as issues dependency vulnerabilities found by Dependency-check SonarQube Server / Community Build	1	47	June 11, 2025
Unable to see Vulnerabilities reported by dependency-check SonarQube Server / Community Build sonarqube , dotnet	3	1151	October 14, 2022
[NEW PLUGIN] dependencycheck - Requesting inclusion in SonarQube Marketplace Plugin Development	15	3041	July 6, 2020
Sonar dependency-check plugin not working properly Plugin Development sonarqube , plugin	3	142	November 6, 2024
OWASP Report SonarCloud ingestion? SonarQube Cloud java	3	982	May 9, 2022