This instance of Jira is read-only for non-SonarSourcers. Want to discuss a ticket or ask for help? Visit us at https://community.sonarsource.com/

Issues

Go to advanced search
Select view

Select search mode

New Feature
Rule S6474: Using remote artifacts without authenticity and integrity checks is security-sensitive
Unassigned
Loris Sierra
Major
Unresolved
Nov 21, 2022
Dec 1, 2022
New Feature
Rule S6473: Exposing administration services is security-sensitive
Unassigned
Hendrik Buchwald
Major
Unresolved
Nov 18, 2022
Nov 28, 2022
New Feature
Rule S6469: Permissions of sensitive mount points should be restrictive
Unassigned
Hendrik Buchwald
Major
Unresolved
Nov 15, 2022
Nov 28, 2022
New Feature
Rule S6472: Using ENV to handle secrets is security-sensitive
Unassigned
Gaëtan Ferry
Major
Unresolved
Nov 23, 2022
Nov 28, 2022
New Feature
Rule S6470: Copying context directories recursively is security-sensitive
Unassigned
Gaëtan Ferry
Major
Unresolved
Nov 15, 2022
Nov 28, 2022
Improvement
Support environment replacements
Unassigned
Nils Werner
Major
Unresolved
Nov 18, 2022
Nov 28, 2022
Improvement
Fix EXPOSE parsing to support quotes in the middle of port definition
Unassigned
Rudy Regazzoni
Normal
Unresolved
Nov 16, 2022
Nov 28, 2022
Improvement
Docker: parse Directive
Unassigned
Rudy Regazzoni
Medium
Unresolved
Nov 9, 2022
Nov 28, 2022
New Feature
Rule S5332: Using clear-text protocols is security-sensitive
Unassigned
Hendrik Buchwald
Major
Unresolved
Nov 24, 2022
Nov 24, 2022
New Feature
Rule S6471: Running containers as a privileged user is security-sensitive
Unassigned
Loris Sierra
Major
Unresolved
Nov 14, 2022
Nov 23, 2022
False Negative
[S6303][Terraform for AWS] Support all kinds of DB resource
Unassigned
Loris Sierra
Major
Unresolved
Nov 3, 2022
Nov 10, 2022
False Negative
[S6303][Cloudformation] Support all kinds of DB resource
Unassigned
Loris Sierra
Major
Unresolved
Nov 3, 2022
Nov 10, 2022
Improvement
[S6303] Update message to target the resource type
Unassigned
Loris Sierra
Major
Unresolved
Nov 10, 2022
Nov 10, 2022
Improvement
S6317: Update message and supports secondary locations
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 8, 2022
Sep 20, 2022
False-Positive
[S6258][Terraform] Remove Azure Storage Account logging check
Unassigned
Pedro de Oliveira
Major
Unresolved
Sep 15, 2022
Sep 15, 2022
False-Positive
Rule S6249: Bucket and Policy Relation Resolution should not relay on BucketName property
Unassigned
Nils Werner
Critical
Unresolved
Jul 19, 2022
Sep 14, 2022
Bug
Parser should not fail on empty line in JSON files
Unassigned
Nils Werner
Major
Unresolved
Aug 8, 2022
Aug 8, 2022
Improvement
HCL Parser: template expressions in heredocs should be accessible.
Unassigned
Karim El Ouerghemmi
Major
Unresolved
Jun 1, 2021
Jul 13, 2022
Improvement
S6317: supports multiple policy statements
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 8, 2022
Jul 13, 2022
Improvement
S6249: Update issue message and add secondary location
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 9, 2022
Jul 13, 2022
False Negative
S6249 should raise on the sensitive RSPEC example
Unassigned
Nils Werner
Major
Unresolved
Feb 25, 2022
Jul 7, 2022
New Feature
Checks can use a XPath-like syntax to access trees
Unassigned
Nils Werner
Major
Unresolved
Jun 18, 2021
Jul 5, 2022
Improvement
In Hotspot or Issue messages, the missing property should be surrounded with double quotes
Unassigned
Alexandre Gigleux
Major
Unresolved
Mar 11, 2022
Mar 29, 2022
New Feature
Rule S6258: Disabling logging is security-sensitive supports Log Analytics workspaces
Unassigned
Loris Sierra
Major
Unresolved
Jan 28, 2022
Mar 22, 2022
New Feature
Rule S6258: Disabling logging is security-sensitive supports HDInsight Clusters
Unassigned
Loris Sierra
Major
Unresolved
Jan 28, 2022
Mar 22, 2022
False Negative
Track&modify existing rules that are affected by 'lenient forms of false'
Unassigned
Stanislav Jordanov
Normal
Unresolved
Mar 1, 2022
Mar 2, 2022
False Negative
Rules S6400 and SXXXX: Granting highly privileged GCP resource rights is security-sensitive
Unassigned
Loris Sierra
Major
Unresolved
Jan 14, 2022
Jan 19, 2022
Improvement
Rule S6382: Disabling certificate-based authentication is security-sensitive (For Azure AD resources)
Unassigned
Loris Sierra
Major
Unresolved
Nov 15, 2021
Jan 19, 2022
Improvement
Improve TF bucket policy related rule by heredoc parsing.
Unassigned
Nils Werner
Major
Unresolved
Jul 1, 2021
Nov 12, 2021
New Feature
Cfln-lint import error log should convey the reason
Unassigned
Karim El Ouerghemmi
Major
Unresolved
Jul 23, 2021
Sep 2, 2021
Task
Create IT for SonarLint context
Unassigned
Nils Werner
Major
Unresolved
May 26, 2021
Jul 1, 2021
New Feature
Support Cloudformation ShortHand notations
Unassigned
Nils Werner
Major
Unresolved
Jun 22, 2021
Jun 22, 2021
1-32 of 32