Issues
 | Update rules metadata | Unassigned | Michael Gumowski |  | Fixed | Jan 13, 2023 | Jan 13, 2023 | ||||
 | Upgrade sonar-analyzer-commons to 2.1.0.1111 | Unassigned | Dorian Burihabwa | | Fixed | Jan 11, 2023 | Jan 13, 2023 | ||||
 | NumberFormatException for "*" in S3417, unable to build dependency from "*:.*log4j" | Unassigned | Alban Auzeill | | Fixed | Jan 10, 2023 | Jan 13, 2023 | ||||
| xml:XPathCheck does not support correctly "::" syntax | Unassigned | Michael Gumowski | | Fixed | Jan 6, 2023 | Jan 24, 2023 | ||||
| XPathCheck supports schemeless namespace-uri() in xpath expressions | Unassigned | Dorian Burihabwa | | Fixed | Sep 30, 2022 | Oct 7, 2022 | ||||
 | Update rules metadata | Unassigned | Marharyta Nedzelska | | Fixed | Sep 29, 2022 | Sep 30, 2022 | ||||
| Upgrade sonar-analyzer-commons | Unassigned | Dorian Burihabwa | | Done | Jul 25, 2022 | Sep 27, 2022 | ||||
| Remove dependency on xalan | Unassigned | Dorian Burihabwa | | Fixed | Jul 25, 2022 | Sep 30, 2022 | ||||
| Provide OWASP Top 10 2021 security standards for rules metadata | Unassigned | Elena Vilchik | | Done | Mar 10, 2022 | Sep 30, 2022 | ||||
| Update rules metadata | Unassigned | Quentin Jaquier | | Fixed | Dec 9, 2021 | Dec 9, 2021 | ||||
| Declare XML sensor as a sensor processing files independently | Unassigned | Massimo Paladin | | Fixed | Dec 8, 2021 | Dec 9, 2021 | ||||
| Update sonar-plugin-api to version 8.9 | Unassigned | Massimo Paladin | | Fixed | Nov 19, 2021 | Nov 22, 2021 | ||||
 | cls-meta.xml files should be excluded from the scope of XML analysis | Unassigned | Yassin Kammoun | | Fixed | Nov 18, 2021 | Sep 30, 2022 | ||||
| NPE parsing XML empty CDATA | Unassigned | Alban Auzeill | | Fixed | Nov 15, 2021 | Dec 8, 2021 | ||||
| S3417 resolves versions defined as properties within the same file | Unassigned | Dorian Burihabwa | | Fixed | Oct 31, 2021 | Sep 30, 2022 | ||||
| Update rules metadata | Unassigned | Quentin Jaquier | | Fixed | Oct 14, 2021 | Oct 15, 2021 | ||||
| S2647: remove CWE-311 from "securityStandards" to match the "See" section | Unassigned | Alexandre Gigleux | | Fixed | Oct 14, 2021 | Oct 14, 2021 | ||||
 | S5594 should not raise on activities expecting android.intent.action.SEND* intents | Unassigned | Alexandre Gigleux | | Fixed | Oct 6, 2021 | Oct 15, 2021 | ||||
| Rule S5332: Using clear-text protocols is security-sensitive | Unassigned | Pierre-Loup Tristant | | Fixed | Oct 5, 2021 | Oct 15, 2021 | ||||
| Rule S6361: Defining a single permission for read and write access of Content Providers is security-sensitive | Unassigned | Pierre-Loup Tristant | | Fixed | Sep 30, 2021 | Oct 15, 2021 | ||||
| Rule S6359: Custom permissions should not be defined in the 'android.permission' namespace | Unassigned | Eric Therond | | Fixed | Sep 27, 2021 | Oct 15, 2021 | ||||
| Rule S5322: Receiving intents is security-sensitive | Unassigned | Hendrik Buchwald | | Fixed | Sep 23, 2021 | Oct 15, 2021 | ||||
| Rule S6358: Allowing application backup is security-sensitive | Unassigned | Pierre-Loup Tristant | | Fixed | Sep 23, 2021 | Oct 18, 2021 | ||||
| Update rules metadata | Unassigned | Quentin Jaquier | | Fixed | Aug 6, 2021 | Aug 9, 2021 | ||||
| Move all rules targeting XML from SonarQube Java Analyzer to SonarXML | Unassigned | Michael Gumowski | | Fixed | Aug 3, 2021 | Nov 17, 2021 | ||||
| S2068 should not raise on "android:password" attribute | Unassigned | Alexandre Gigleux | | Fixed | Jul 30, 2021 | Aug 6, 2021 | ||||
| S5594 should handle activity-alias component | Unassigned | Eric Therond | | Fixed | Jul 6, 2021 | Aug 6, 2021 | ||||
| Update description for sonar.xml.file.suffixes | Unassigned | Elena Vilchik | | Fixed | May 31, 2021 | Aug 4, 2021 | ||||
| Add missing remediation functions | Unassigned | Amélie Renard | | Done | Apr 27, 2021 | May 31, 2021 | ||||
| Update Rules Metadata | Unassigned | Michael Gumowski | | Fixed | Apr 26, 2021 | Apr 26, 2021 | May 3, 2021 | |||
| NPE in xml:S2068 on entity node | Unassigned | Michael Gumowski | | Fixed | Mar 25, 2021 | Apr 26, 2021 | May 3, 2021 | |||
| S5594 should not raise on a activity expecting a android.intent.action.MAIN intent | Unassigned | Eric Therond | | Fixed | Mar 11, 2021 | Apr 26, 2021 | May 3, 2021 | |||
| Update rules metadata | Unassigned | Michael Gumowski | | Fixed | Feb 8, 2021 | Feb 16, 2021 | Feb 22, 2021 | |||
| Update to common-xml-parser version 1.12 | Unassigned | Michael Gumowski | | Fixed | Feb 1, 2021 | Feb 16, 2021 | Feb 8, 2021 | |||
| Update header files to cover 2021 | Unassigned | Michael Gumowski | | Fixed | Feb 1, 2021 | Feb 25, 2021 | Feb 8, 2021 | |||
| S105: limit the number of secondary locations and add secondary location messages | Unassigned | Nicolas Harraudeau | | Fixed | Nov 6, 2020 | Feb 15, 2021 | Feb 8, 2021 | |||
| Update branding to drop 'SonarXML' | Unassigned | Ann Campbell | | Fixed | Mar 31, 2020 | Feb 15, 2021 | Feb 9, 2021 | |||
| Rule S2068 Hard-coded credentials are security-sensitive | Unassigned | Eric Therond | | Fixed | Dec 17, 2019 | Feb 16, 2021 | Feb 16, 2021 | |||
| Rule S5604: Requesting dangerous Android permissions is security-sensitive | Unassigned | Eric Therond | | Fixed | Nov 5, 2019 | Feb 16, 2021 | Feb 15, 2021 | |||
| Rule S4507: Delivering code in production with debug features activated is security-sensitive | Unassigned | Eric Therond | | Fixed | Nov 5, 2019 | Feb 16, 2021 | Feb 12, 2021 | |||
| Rule S5594: Restrict access to exported components with appropriate permissions | Unassigned | Eric Therond | | Fixed | Nov 4, 2019 | Feb 16, 2021 | Feb 16, 2021 | |||
| XPathCheck should not throw an exception when no message is configured | Unassigned | Pierre-Yves Nicolas | | Fixed | Sep 23, 2019 | Feb 15, 2021 | Feb 9, 2021 | |||
| Add support for xaml files | Unassigned | Mickaël Caro |  | Incomplete | Aug 15, 2019 | Feb 15, 2021 | ||||
| Add static analyzer documentation | Unassigned | Nicolas Harraudeau | | Fixed | Jul 18, 2019 | Feb 15, 2021 | Feb 9, 2021 | |||
| Remove usage of deprecated methods in ITs | Unassigned | Tibor Blenessy | | Fixed | Jul 16, 2019 | Feb 16, 2021 | Jul 23, 2019 | |||
| Rule S2647: Basic authentication should not be used | Unassigned | Alexandre Gigleux | | Fixed | Feb 7, 2019 | Feb 15, 2021 | Feb 15, 2021 | |||
| Rule S3330: "HttpOnly" should be set on cookies | Unassigned | Alexandre Gigleux | | Fixed | Feb 6, 2019 | Feb 15, 2021 | Feb 12, 2021 | |||
| Rule S5122: Having a permissive Cross-Origin Resource Sharing policy is security-sensitive | Unassigned | Alexandre Gigleux | | Fixed | Feb 4, 2019 | Feb 16, 2021 | Feb 19, 2021 | |||
| Update message of IndentCheck | Unassigned | Elena Vilchik | | Fixed | Jan 21, 2019 | Feb 15, 2021 | Feb 8, 2021 | |||
| Update sonar-xml-parsing to 1.10.2.456 | Unassigned | Michael Gumowski | | Fixed | Jan 14, 2019 | Jan 14, 2019 | Jan 21, 2019 |
1-50 of 141