Issues
Update rules metadata | Unassigned | Michael Gumowski | Fixed | Jan 13, 2023 | Jan 13, 2023 | ||||||
Upgrade sonar-analyzer-commons to 2.1.0.1111 | Unassigned | Dorian Burihabwa | Fixed | Jan 11, 2023 | Jan 13, 2023 | ||||||
NumberFormatException for "*" in S3417, unable to build dependency from "*:.*log4j" | Unassigned | Alban Auzeill | Fixed | Jan 10, 2023 | Jan 13, 2023 | ||||||
xml:XPathCheck does not support correctly "::" syntax | Unassigned | Michael Gumowski | Fixed | Jan 6, 2023 | Jan 24, 2023 | ||||||
XPathCheck supports schemeless namespace-uri() in xpath expressions | Unassigned | Dorian Burihabwa | Fixed | Sep 30, 2022 | Oct 7, 2022 | ||||||
Update rules metadata | Unassigned | Marharyta Nedzelska | Fixed | Sep 29, 2022 | Sep 30, 2022 | ||||||
Upgrade sonar-analyzer-commons | Unassigned | Dorian Burihabwa | Done | Jul 25, 2022 | Sep 27, 2022 | ||||||
Remove dependency on xalan | Unassigned | Dorian Burihabwa | Fixed | Jul 25, 2022 | Sep 30, 2022 | ||||||
Provide OWASP Top 10 2021 security standards for rules metadata | Unassigned | Elena Vilchik | Done | Mar 10, 2022 | Sep 30, 2022 | ||||||
Update rules metadata | Unassigned | Quentin Jaquier | Fixed | Dec 9, 2021 | Dec 9, 2021 | ||||||
Declare XML sensor as a sensor processing files independently | Unassigned | Massimo Paladin | Fixed | Dec 8, 2021 | Dec 9, 2021 | ||||||
Update sonar-plugin-api to version 8.9 | Unassigned | Massimo Paladin | Fixed | Nov 19, 2021 | Nov 22, 2021 | ||||||
cls-meta.xml files should be excluded from the scope of XML analysis | Unassigned | Yassin Kammoun | Fixed | Nov 18, 2021 | Sep 30, 2022 | ||||||
NPE parsing XML empty CDATA | Unassigned | Alban Auzeill | Fixed | Nov 15, 2021 | Dec 8, 2021 | ||||||
S3417 resolves versions defined as properties within the same file | Unassigned | Dorian Burihabwa | Fixed | Oct 31, 2021 | Sep 30, 2022 | ||||||
Update rules metadata | Unassigned | Quentin Jaquier | Fixed | Oct 14, 2021 | Oct 15, 2021 | ||||||
S2647: remove CWE-311 from "securityStandards" to match the "See" section | Unassigned | Alexandre Gigleux | Fixed | Oct 14, 2021 | Oct 14, 2021 | ||||||
S5594 should not raise on activities expecting android.intent.action.SEND* intents | Unassigned | Alexandre Gigleux | Fixed | Oct 6, 2021 | Oct 15, 2021 | ||||||
Rule S5332: Using clear-text protocols is security-sensitive | Unassigned | Pierre-Loup Tristant | Fixed | Oct 5, 2021 | Oct 15, 2021 | ||||||
Rule S6361: Defining a single permission for read and write access of Content Providers is security-sensitive | Unassigned | Pierre-Loup Tristant | Fixed | Sep 30, 2021 | Oct 15, 2021 | ||||||
Rule S6359: Custom permissions should not be defined in the 'android.permission' namespace | Unassigned | Eric Therond | Fixed | Sep 27, 2021 | Oct 15, 2021 | ||||||
Rule S5322: Receiving intents is security-sensitive | Unassigned | Hendrik Buchwald | Fixed | Sep 23, 2021 | Oct 15, 2021 | ||||||
Rule S6358: Allowing application backup is security-sensitive | Unassigned | Pierre-Loup Tristant | Fixed | Sep 23, 2021 | Oct 18, 2021 | ||||||
Update rules metadata | Unassigned | Quentin Jaquier | Fixed | Aug 6, 2021 | Aug 9, 2021 | ||||||
Move all rules targeting XML from SonarQube Java Analyzer to SonarXML | Unassigned | Michael Gumowski | Fixed | Aug 3, 2021 | Nov 17, 2021 | ||||||
S2068 should not raise on "android:password" attribute | Unassigned | Alexandre Gigleux | Fixed | Jul 30, 2021 | Aug 6, 2021 | ||||||
S5594 should handle activity-alias component | Unassigned | Eric Therond | Fixed | Jul 6, 2021 | Aug 6, 2021 | ||||||
Update description for sonar.xml.file.suffixes | Unassigned | Elena Vilchik | Fixed | May 31, 2021 | Aug 4, 2021 | ||||||
Add missing remediation functions | Unassigned | Amélie Renard | Done | Apr 27, 2021 | May 31, 2021 | ||||||
Update Rules Metadata | Unassigned | Michael Gumowski | Fixed | Apr 26, 2021 | Apr 26, 2021 | May 3, 2021 | |||||
NPE in xml:S2068 on entity node | Unassigned | Michael Gumowski | Fixed | Mar 25, 2021 | Apr 26, 2021 | May 3, 2021 | |||||
S5594 should not raise on a activity expecting a android.intent.action.MAIN intent | Unassigned | Eric Therond | Fixed | Mar 11, 2021 | Apr 26, 2021 | May 3, 2021 | |||||
Update rules metadata | Unassigned | Michael Gumowski | Fixed | Feb 8, 2021 | Feb 16, 2021 | Feb 22, 2021 | |||||
Update to common-xml-parser version 1.12 | Unassigned | Michael Gumowski | Fixed | Feb 1, 2021 | Feb 16, 2021 | Feb 8, 2021 | |||||
Update header files to cover 2021 | Unassigned | Michael Gumowski | Fixed | Feb 1, 2021 | Feb 25, 2021 | Feb 8, 2021 | |||||
S105: limit the number of secondary locations and add secondary location messages | Unassigned | Nicolas Harraudeau | Fixed | Nov 6, 2020 | Feb 15, 2021 | Feb 8, 2021 | |||||
Update branding to drop 'SonarXML' | Unassigned | Ann Campbell | Fixed | Mar 31, 2020 | Feb 15, 2021 | Feb 9, 2021 | |||||
Rule S2068 Hard-coded credentials are security-sensitive | Unassigned | Eric Therond | Fixed | Dec 17, 2019 | Feb 16, 2021 | Feb 16, 2021 | |||||
Rule S5604: Requesting dangerous Android permissions is security-sensitive | Unassigned | Eric Therond | Fixed | Nov 5, 2019 | Feb 16, 2021 | Feb 15, 2021 | |||||
Rule S4507: Delivering code in production with debug features activated is security-sensitive | Unassigned | Eric Therond | Fixed | Nov 5, 2019 | Feb 16, 2021 | Feb 12, 2021 | |||||
Rule S5594: Restrict access to exported components with appropriate permissions | Unassigned | Eric Therond | Fixed | Nov 4, 2019 | Feb 16, 2021 | Feb 16, 2021 | |||||
XPathCheck should not throw an exception when no message is configured | Unassigned | Pierre-Yves Nicolas | Fixed | Sep 23, 2019 | Feb 15, 2021 | Feb 9, 2021 | |||||
Add support for xaml files | Unassigned | Mickaël Caro | Incomplete | Aug 15, 2019 | Feb 15, 2021 | ||||||
Add static analyzer documentation | Unassigned | Nicolas Harraudeau | Fixed | Jul 18, 2019 | Feb 15, 2021 | Feb 9, 2021 | |||||
Remove usage of deprecated methods in ITs | Unassigned | Tibor Blenessy | Fixed | Jul 16, 2019 | Feb 16, 2021 | Jul 23, 2019 | |||||
Rule S2647: Basic authentication should not be used | Unassigned | Alexandre Gigleux | Fixed | Feb 7, 2019 | Feb 15, 2021 | Feb 15, 2021 | |||||
Rule S3330: "HttpOnly" should be set on cookies | Unassigned | Alexandre Gigleux | Fixed | Feb 6, 2019 | Feb 15, 2021 | Feb 12, 2021 | |||||
Rule S5122: Having a permissive Cross-Origin Resource Sharing policy is security-sensitive | Unassigned | Alexandre Gigleux | Fixed | Feb 4, 2019 | Feb 16, 2021 | Feb 19, 2021 | |||||
Update message of IndentCheck | Unassigned | Elena Vilchik | Fixed | Jan 21, 2019 | Feb 15, 2021 | Feb 8, 2021 | |||||
Update sonar-xml-parsing to 1.10.2.456 | Unassigned | Michael Gumowski | Fixed | Jan 14, 2019 | Jan 14, 2019 | Jan 21, 2019 |
1-50 of 141