This instance of Jira is read-only for non-SonarSourcers. Want to discuss a ticket or ask for help? Visit us at https://community.sonarsource.com/

Issues

Go to advanced search
Select view

Select search mode

Bug
Do not raise parser errors on Helm syntax template directives
Unassigned
Nils Werner
Critical
Fixed
Aug 3, 2022
Aug 8, 2022
Bug
Parser should not fail on empty line in JSON files
Unassigned
Nils Werner
Major
Unresolved
Aug 8, 2022
Aug 8, 2022
Bug
KubernetesSensor constructor has to be public to be invoked by the scanner
Unassigned
Nils Werner
Major
Done
Jul 20, 2022
Jul 20, 2022
False-Positive
Rule S6249: Bucket and Policy Relation Resolution should not relay on BucketName property
Unassigned
Nils Werner
Critical
Unresolved
Jul 19, 2022
Jul 19, 2022
False-Positive
[CF] S6249 raises false positives on policies on unknown statement
Unassigned
Nils Werner
Major
Duplicate
Jan 20, 2022
Jul 19, 2022
Task
Common Sensor Test Structure for Abstract Sensors
Unassigned
Nils Werner
Major
Fixed
Jul 18, 2022
Jul 19, 2022
Task
Update Readme and Documentation to reflect K8 support
Unassigned
Nils Werner
Major
Unresolved
Jul 18, 2022
Jul 18, 2022
False-Positive
Rule S6303: Exclude Aurora for Terraform
Unassigned
Hendrik Buchwald
Major
Unresolved
Jul 14, 2022
Jul 18, 2022
False-Positive
Rule S6303: Exclude Aurora for Cloudformation
Unassigned
Hendrik Buchwald
Major
Fixed
Jul 14, 2022
Jul 18, 2022
Bug
Verifier does not parse issue location correctly
Unassigned
Nils Werner
Major
Unresolved
Jul 14, 2022
Jul 18, 2022
Task
Create Kubernetes Plugin Extension Infrastructure
Unassigned
Nils Werner
Major
Fixed
Jul 11, 2022
Jul 17, 2022
New Feature
Rule S6433: Mounting sensitive file system paths is security-sensitive
Unassigned
Hendrik Buchwald
Major
Fixed
Jun 7, 2022
Jul 17, 2022
Bug
Abtract check and file predicate fail on files with multiple objects
Unassigned
Nils Werner
Major
Fixed
Jul 13, 2022
Jul 15, 2022
New Feature
Rule S5849: Setting capabilities is security-sensitive
Unassigned
Hendrik Buchwald
Major
Fixed
Jun 1, 2022
Jul 15, 2022
False Negative
Properly handle 'transitive closure' on azurerm_api_management_api.source_api_id
Unassigned
Stanislav Jordanov
Major
Won't Fix
Jan 21, 2022
Jul 13, 2022
New Feature
SonarIaC should parse Terraform files
Unassigned
Karim El Ouerghemmi
Major
Fixed
May 11, 2021
Jul 13, 2022
May 24, 2021
Improvement
HCL Parser: template expressions in heredocs should be accessible.
Unassigned
Karim El Ouerghemmi
Major
Unresolved
Jun 1, 2021
Jul 13, 2022
New Feature
Rule S5332: Using clear-text protocols is security-sensitive (for Elasticsearch domain)
Unassigned
Pierre-Loup Tristant
Major
Fixed
Oct 11, 2021
Jul 13, 2022
New Feature
Rule S6385: Azure custom roles should not grant subscription Owner capabilities
Unassigned
Pierre-Loup Tristant
Major
Fixed
Nov 18, 2021
Jul 13, 2022
New Feature
Rule S6410: Google Cloud load balancers SSL policies should not offer weak cipher suites
Unassigned
Pierre-Loup Tristant
Major
Fixed
Jan 31, 2022
Jul 13, 2022
New Feature
Rule S6413: support Google Cloud Logging bucket
Unassigned
Pierre-Loup Tristant
Major
Fixed
Feb 8, 2022
Jul 13, 2022
Improvement
S6385: Add a Secondary Locations on the `permissions.actions` and `assignable_scopes` field
Unassigned
Alexandre Gigleux
Major
Fixed
Mar 4, 2022
Jul 13, 2022
Improvement
S4423: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 7, 2022
Jul 13, 2022
False-Positive
S6317: Should only raise an issue when all the permissions for a given privilege escalation vector are granted
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 8, 2022
Jul 13, 2022
Improvement
S6317: Update message and supports secondary locations
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 8, 2022
Jul 13, 2022
Improvement
S6317: supports multiple policy statements
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 8, 2022
Jul 13, 2022
Improvement
S6245: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 8, 2022
Jul 13, 2022
Improvement
S6378: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 8, 2022
Jul 13, 2022
Improvement
S6375: Add secondary locations
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 8, 2022
Jul 13, 2022
Improvement
S6249: Update issue message and add secondary location
Unassigned
Pierre-Loup Tristant
Major
Unresolved
Mar 9, 2022
Jul 13, 2022
Improvement
S6252: Update issue message and rule title
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 9, 2022
Jul 13, 2022
Improvement
S6255: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 9, 2022
Jul 13, 2022
Improvement
S6270: Update issue message and rule title
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
Improvement
S6275: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6303: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
Improvement
S6281: Update primary issue messages
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6308: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6319: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6329: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6327: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
New Feature
S6330: Update issue message
Unassigned
Pierre-Loup Tristant
Major
Fixed
Mar 10, 2022
Jul 13, 2022
Improvement
Add complete string parsing validation in TerraformTreeModelTest
Unassigned
Karim El Ouerghemmi
Major
Fixed
Jun 16, 2021
Jul 13, 2022
New Feature
Rule S6431: Using host namespaces is security-sensitive
Unassigned
Loris Sierra
Major
Fixed
Jun 3, 2022
Jul 13, 2022
False-Positive
[CF] Unsimulated intrinsic functions lead to false positives and negatives
Unassigned
Nils Werner
Major
Fixed
Jan 20, 2022
Jul 12, 2022
New Feature
Rule S6429: Exposing Docker sockets is security-sensitive
Unassigned
Hendrik Buchwald
Major
Fixed
May 27, 2022
Jul 12, 2022
New Feature
Rule S6430: Allowing process privilege escalation is security-sensitive
Unassigned
Loris Sierra
Major
Fixed
May 27, 2022
Jul 12, 2022
New Feature
Rule S6428: Enabling privileged mode on containers is security-sensitive
Unassigned
Loris Sierra
Major
Fixed
May 16, 2022
Jul 8, 2022
Improvement
Add windows build in CI
Unassigned
Marco Bearzi
Major
Fixed
Jul 7, 2022
Jul 7, 2022
False Negative
S6249 should raise on the sensitive RSPEC example
Unassigned
Nils Werner
Major
Unresolved
Feb 25, 2022
Jul 7, 2022
New Feature
Cfn-lint import warnings should appear in the UI
Unassigned
Karim El Ouerghemmi
Major
Fixed
Jul 23, 2021
Jul 7, 2022
1-50 of 415