Why doesn't SonarQube/SonarLint show C++ bugs or security issues in VS Code like other languages?

SonarQube for IDE VS Code
1

Please provide

  • Operating system: Windows 11
  • SonarQube for VS Code plugin version: 4.26.0
  • Programming language you’re coding in: C++
  • Is connected mode used: yes
    • SonarQube Cloud, SonarQube Server, or SonarQube Community Build? (if one of the latter two, which version?): SonarQube Enterprise Edition v2025.1.2

And a thorough description of the problem / question:
I’m working on a C++ project and trying to integrate SonarQube analysis into VS Code.

  • I successfully installed and configured tools like Clang, MSVC, CMake, build-wrapper, and SonarScanner.
  • I generated compile_commands.json via CMake and used the build-wrapper correctly.
  • Ran sonar-scanner with success — results show up on the SonarQube server.

However:

  • No bugs, issues, or Security Hotspots show up in VS Code, even when connected to the server.
  • Real-time issue highlighting is not working for C++ (unlike Java or JS).
  • I tried both Connected Mode and Standalone Mode, but no C++ issues appear in the Problems panel or inline.

Questions:

  1. Does SonarLint support real-time feedback for C++ in VS Code?
  2. Is there a limitation with C++ analysis in SonarLint compared to other languages?
  3. Can SonarLint show Security Hotspots and bug markers for C++ in the VS Code editor?

Thank you!

2

Hey @Kamal_Manwani,

Did you follow the documentation on C/C++ in VSCode?

You need to configure the Compilation Database in your VSCode settings as well.

Cheers :glass_of_milk:

5

Thank you for the reference
:grinning_face:

1 Like
7

Hello @Kamal_Manwani, and apologies for the late reply.

Were you able to solve this issue?

If not, would it be possible for you to share the analysis logs with us? You can obtain them by following the instructions here.

I can also start a private thread with you if you prefer to share this information privately.

Best regards,
Michael