Skip to content

Issues: dependency-check/dependency-check-sonar-plugin

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
18 Open 240 Closed
18 Open 240 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Vunerabilities found during dependency check is not shown in sonar UI bug
#677 opened Jul 12, 2022 by sudhirpandey
@Reamer @sudhirpandey
41 👍 4
Support Yarn enhancement lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#367 opened Feb 20, 2021 by quinnturner
9 👍 3
Vulnerabilities not visible in Sonar on pull requests bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#485 opened Aug 20, 2021 by michalkochanowicz
11 👍 3
Critical CVEs only get C rating instead of E bug
#982 opened Aug 22, 2024 by isaguimiot
3 👍 3
Issue description being changed to different CVE on repeated runs bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#682 opened Jul 26, 2022 by jordannstrong
@Reamer
14 👍 1
SonarQube (Enterprise EditionVersion 10.3 --build 82913) Content Security Policy blocking the plugin resource bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#893 opened Dec 13, 2023 by platformbeheer-otv
7 👍 1
Integration with Security Hotspot should be improved enhancement lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#272 opened Aug 5, 2020 by Gh0s7
@Reamer
2
Sonarqube + dependency-check plugin for dotnet bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#473 opened Jul 27, 2021 by RunFox
4
Not resolving ENV var in GitHub Actions bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#717 opened Nov 4, 2022 by lbenedetto
6
assets section of each release doesnt include .sha256 file enhancement lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#876 opened Nov 9, 2023 by erickramer51115
1
[SonarQube] : Quality gates missing settings bug lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
#950 opened May 28, 2024 by K44sper
@Reamer
4
Issues and hotspots doesn't include dependency-check vulnerabilities bug
#952 opened Jun 4, 2024 by arturkasperek
13
Dynamic parts of dependency report when opened from SonarQube not working bug lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale.
#970 opened Jul 30, 2024 by markus2810
8
Report content is not deplyed within SonarQube bug
#979 opened Aug 12, 2024 by ahmadalfy
5
SecurityHotspots don't work with the dotnet multi csproj example bug lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale.
#985 opened Aug 29, 2024 by lizziebeans
3
No HTML-Report found. Please check property sonar.dependencyCheck.htmlReportPath error in Sonarqube UI when using dependency-check plugin bug
#1013 opened Oct 25, 2024 by Krishpluto
1
Big NodeJS-Reports bug reproduced bug Bugs that could be reproduced by the maintainer
#175 opened Sep 25, 2019 by Reamer
Dependency Checks displaying vulnerabilites but not appearing on Sonar bug
#1018 opened Nov 18, 2024 by TheTricky65
ProTip! Exclude everything labeled bug with -label:bug.