Issues
 | Infer types of Typeshed class attributes | Unassigned | Andrea Guarino |  | Unresolved | Oct 6, 2022 | Oct 6, 2022 | ||||
 | Resolve unpacking expression when analyzing call arguments | Unassigned | Nils Werner | | Unresolved | Oct 5, 2022 | Oct 5, 2022 | ||||
 | Checks using the CdkUtils.getArgument mehtod are causing ClassCastException when handling UnpackingExpression | Unassigned | Nils Werner |  | Fixed | Oct 5, 2022 | Oct 5, 2022 | ||||
| Rule S6304: Policies granting access to all resources of an account are security-sensitive | Unassigned | Egon Okerman | | Unresolved | Oct 3, 2022 | Oct 6, 2022 | ||||
 | Implement for database instance related resources | Unassigned | Gaëtan Ferry | | Unresolved | Sep 30, 2022 | Sep 30, 2022 | ||||
| Rule S6463: Allowing unrestricted outbound communications is security-sensitive | Unassigned | Hendrik Buchwald | | Done | Sep 30, 2022 | Oct 5, 2022 | ||||
| Rename ExpressionTrace to ExpressionFlow | Unassigned | Nils Werner | | Fixed | Sep 29, 2022 | Sep 29, 2022 | ||||
| S4423 and S6308 should not raise on non-call expression matching the fqn | Unassigned | Nils Werner | | Fixed | Sep 29, 2022 | Sep 29, 2022 | ||||
| Create dictionary element expression flow on argument flow | Unassigned | Nils Werner | | Unresolved | Sep 29, 2022 | Sep 29, 2022 | ||||
| Rule S6317: AWS IAM policies should not allow privilege escalation | Unassigned | Egon Okerman | | Unresolved | Sep 28, 2022 | Oct 5, 2022 | ||||
| Implement for Database migration resources | Unassigned | Gaëtan Ferry | | Unresolved | Sep 28, 2022 | Oct 7, 2022 | ||||
| Rule S6302: Policies granting all privileges are security-sensitive | Unassigned | Pierre-Loup Tristant | | Unresolved | Sep 28, 2022 | Oct 5, 2022 | ||||
| Rule S5332: Adding precision on the issue by highlighting the root cause | Unassigned | Rudy Regazzoni |  | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
| Update S3Bucket checks with new utils and predicates | Unassigned | Nils Werner | | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
| Drop deprecated methods from `AbstractCdkResourceCheck` | Unassigned | Nils Werner | | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
| Move general predicate methods to `CdkPredicates` class | Unassigned | Nils Werner | | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
| Move general util methods to `CdkUtils` class | Unassigned | Nils Werner | | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
 | Refactoring before release of SonarPython 3.18 | Unassigned | Nils Werner | | Done | Sep 28, 2022 | Sep 29, 2022 | ||||
| Implement for Instances related resources | Unassigned | Gaëtan Ferry | | Unresolved | Sep 27, 2022 | Sep 30, 2022 | ||||
| Rule S6329: Allowing public network access to cloud resources is security-sensitive | Unassigned | Gaëtan Ferry | | Unresolved | Sep 27, 2022 | Sep 30, 2022 | ||||
| Rule S6270: Policies authorizing public access to resources are security-sensitive | Unassigned | Pierre-Loup Tristant | | Unresolved | Sep 27, 2022 | Oct 6, 2022 | ||||
| Rules support OWASP ASVS Security Standard | Unassigned | Alexandre Gigleux | | Unresolved | Sep 26, 2022 | Sep 26, 2022 | ||||
| Activation of DBD IR generation statistics should be configurable via an analysis parameter | Unassigned | Andrea Guarino | | Unresolved | Sep 23, 2022 | Sep 23, 2022 | ||||
| ApiGatewayV2: CfnRoute | Unassigned | Hendrik Buchwald | | Done | Sep 23, 2022 | Oct 7, 2022 | ||||
| ApiGateway: CfnMethod | Unassigned | Hendrik Buchwald | | Done | Sep 23, 2022 | Oct 7, 2022 | ||||
| ApiGateway: RestApi | Unassigned | Hendrik Buchwald | | Unresolved | Sep 23, 2022 | Oct 5, 2022 | ||||
| Rule S6333: Creating public APIs is security-sensitive | Unassigned | Hendrik Buchwald | | Unresolved | Sep 23, 2022 | Oct 5, 2022 | ||||
| Implement for level 1 constructs | Unassigned | Gaëtan Ferry | | Done | Sep 22, 2022 | Oct 6, 2022 | ||||
| Implement for level 2 constructs | Unassigned | Gaëtan Ferry | | Unresolved | Sep 22, 2022 | Oct 6, 2022 | ||||
| Rule S6321: Administration services access should be restricted to specific IP addresses | Unassigned | Gaëtan Ferry | | Unresolved | Sep 22, 2022 | Oct 5, 2022 | ||||
 | Fix broken link in documentation | Unassigned | Nils Werner | | Fixed | Sep 22, 2022 | Sep 30, 2022 | ||||
| Check parent pom and update rule metadate for SonarPython 3.18 | Unassigned | Nils Werner | | Done | Sep 20, 2022 | Sep 30, 2022 | ||||
| Read ".coveragerc" configuration to exclude files from coverage | Unassigned | Andrea Guarino | | Unresolved | Sep 19, 2022 | Sep 19, 2022 | ||||
 | Fix FP on S930 due to outdated Flask stubs | Unassigned | Guillaume Dequenne | | Unresolved | Sep 19, 2022 | Sep 19, 2022 | ||||
| Rule S6319: Using unencrypted SageMaker notebook instances is security-sensitive | Unassigned | Egon Okerman | | Done | Sep 19, 2022 | Sep 30, 2022 | ||||
| Rule S4423: support OpenSearch / Elasticsearch domains | Unassigned | Pierre-Loup Tristant | | Fixed | Sep 19, 2022 | Sep 28, 2022 | ||||
| Rule S4423: support APIGateway custom domain names | Unassigned | Pierre-Loup Tristant | | Done | Sep 19, 2022 | Sep 28, 2022 | ||||
| Rule S4423: Weak SSL/TLS protocols should not be used | Unassigned | Pierre-Loup Tristant | | Fixed | Sep 19, 2022 | Sep 30, 2022 | ||||
| Kinesis | Unassigned | Gaëtan Ferry | | Fixed | Sep 16, 2022 | Sep 26, 2022 | ||||
| Elasticache | Unassigned | Gaëtan Ferry | | Fixed | Sep 16, 2022 | Sep 26, 2022 | ||||
| ELBv1 | Unassigned | Gaëtan Ferry | | Fixed | Sep 16, 2022 | Sep 26, 2022 | ||||
| ELBv2 | Unassigned | Gaëtan Ferry | | Fixed | Sep 16, 2022 | Sep 22, 2022 | ||||
| Rule S5332: Using clear-text protocols is security-sensitive - Adding python CDK | Unassigned | Gaëtan Ferry | | Fixed | Sep 16, 2022 | Sep 30, 2022 | ||||
| Rule S6332: Using unencrypted EFS file systems is security-sensitive | Unassigned | Hendrik Buchwald | | Fixed | Sep 15, 2022 | Sep 30, 2022 | ||||
| Rule S6303: Using unencrypted RDS databases is security-sensitive | Unassigned | Hendrik Buchwald | | Done | Sep 14, 2022 | Sep 28, 2022 | ||||
| Rule S6308: Using unencrypted OpenSearch domains is security-sensitive | Unassigned | Egon Okerman | | Done | Sep 12, 2022 | Sep 26, 2022 | ||||
| S1854 Fix potential FP on import or adapt message | Unassigned | Rudy Regazzoni | | Unresolved | Sep 9, 2022 | Sep 9, 2022 | ||||
| Rule S6327: Using unencrypted SNS topics is security-sensitive | Unassigned | Hendrik Buchwald | | Done | Sep 8, 2022 | Sep 30, 2022 | ||||
| Rule S6330: Using unencrypted SQS queues is security-sensitive | Unassigned | Hendrik Buchwald | | Fixed | Sep 6, 2022 | Sep 22, 2022 | ||||
| Python sensor should be executed also on TEST files | Unassigned | Nils Werner | | Fixed | Sep 6, 2022 | Sep 7, 2022 |
1-50 of 1000+