|
False Negative - SQL Injection (S3649) from azure functions HttpRequestData in c#
|
|
2
|
34
|
November 20, 2025
|
|
False Negative: NullMarked Class must use Nullable for equals parameter
|
|
1
|
31
|
November 10, 2025
|
|
Secret analysis not picking up plaintext passwords in Terraform
|
|
6
|
68
|
August 29, 2025
|
|
S2259 in Community Edition v9.9.5 (build 90363)
|
|
4
|
54
|
July 31, 2025
|
|
FN on S4449 in SonarQube Server for jspecify @NullMarked annotation
|
|
6
|
138
|
May 16, 2025
|
|
False-negative for S2183 in enum values
|
|
2
|
37
|
February 19, 2025
|
|
Pull Request analysis frequently falsely marks issues as resolved or misses issues
|
|
1
|
16
|
February 3, 2025
|
|
Highly strange behaviour of Sonar analysis surrounding usage of a lombok SuperBuilder class
|
|
4
|
189
|
January 31, 2025
|
|
java:S1128: false negative when Lombok log is used
|
|
6
|
1313
|
September 13, 2024
|
|
Scanning embedded SQL calls / FN SQL Injection for Python
|
|
4
|
447
|
May 29, 2024
|
|
False-negative Async suffix reported when the character 'a' or 'A' is in front of the 'Async' suffix
|
|
8
|
578
|
February 2, 2024
|
|
java:S116 does not check fields of test classes
|
|
1
|
515
|
December 15, 2023
|
|
A false negative about the rule RSPEC-3306
|
|
1
|
362
|
September 5, 2023
|
|
False Negative In rule python:S930
|
|
1
|
556
|
February 27, 2023
|
|
SonarQube reporting duplicate code for database entities
|
|
2
|
4844
|
January 23, 2023
|
|
FN about the rule S1068
|
|
1
|
1567
|
December 22, 2022
|
|
@WebService/@WebMethod not recognized as taint source
|
|
2
|
542
|
December 5, 2022
|
|
False Negative pattern not identified in javasecurity-rules
|
|
2
|
521
|
December 12, 2022
|
|
React Native SAST
|
|
1
|
810
|
February 21, 2022
|
|
SonarQube not finding C# issues that other static analysis tools found
|
|
4
|
2038
|
February 2, 2022
|
|
[java] A false negative about the rule RSPEC-4143
|
|
2
|
861
|
December 21, 2021
|
|
[java] A false negative about the rule RSPEC-1862
|
|
2
|
813
|
December 21, 2021
|
|
Make RSPEC-1751 detect if code block
|
|
4
|
903
|
December 17, 2021
|
|
Missed catch of SQL injection in PHP code with SonarQube Developer Edition
|
|
1
|
553
|
December 6, 2021
|
|
SonarQube is not able to find an error
|
|
0
|
424
|
November 12, 2021
|
|
FromRawSql detection in EF Core?
|
|
6
|
1235
|
November 2, 2021
|
|
Java S4544 @JsonTypeInfo on Interface
|
|
2
|
703
|
October 19, 2021
|
|
False negative using Collections.unmodifiableList() on store part for rule java:S2384 - Mutable members should not be stored or returned directly : a view is stored not a copy
|
|
2
|
1211
|
October 18, 2021
|
|
PHP codeigniter index controller false negatives
|
|
2
|
1009
|
October 7, 2021
|
|
SQLi not detected when using StringBuilder for query
|
|
6
|
4539
|
July 16, 2021
|