jenspopp

Hello @guwirth, I don't want to create a new rule ;-) The idea would be to have a fixed rule for each tool (gcc, cppcheck...) with the ruleId = NEW_VIOLATION....

Hi, I did some test runs, where I created an artificial -Wtest-scanner compiler warning. What I see is in the scanner log is no real info: 12:28:05.566 INFO: Sensor CXX...

Hello @guwirth, I had a longer discussion with the sonarsource developers, final answer: "Since we don’t support writing rules for C-Family languages and since you’re basing this on Cxx, I’m...

Hello, thanks for the answer ;-) Found this too. I did also a deeper dig in Sonar Core source. The issue is, that they run the scanner in Spring, but...

Hello @guwirth, good news, I finally had a bit of time to create a solution. I tested it with gcc, cppcheck and clangtidy. I used the java httpclient to download...

Hi, I came across the same issue. Even if I introduce a vulnerability by changing values in maven dependency management section it will only be shown in the branch build...

That would be a highly appreciated feature ;-) Right now it already fails for my most simple projects with: failed extracting pom.xml: failed to merge parents: failed to get Maven...