Using hardcoded IP addresses is security-sensitive

For my code it says, “This security hotspot needs to be reviewed to assess whether the code poses a risk.” since it has hardcoded IP addresses. I’m reviewing each one by one and marking it as safe since it’s for internal purpose. I would like to know if there is an option to make a bulk change or remove this rule temporarily.


There’s no bulk-change option, but you can easily disable the rule if you’re using a custom Quality Profile. If you’re using the Sonar way profile, you’ll find that it’s not editable - you would need to make a copy.

And it’s worth mentioning that in SonarQube 10.3 we’ll add the ability to disable a rule in an inherited/child profile, so that will soon be an option too.