dependency-check/dependency-check-sonar-plugin

Issues

• SecurityHotspots don't work with the dotnet multi csproj example

  #985 opened 3 months ago by lizziebeans
  2

• Dynamic parts of dependency report when opened from SonarQube not working

  #970 opened 4 months ago by markus2810
  7

• Report content is not deplyed within SonarQube

  #979 opened 3 months ago by ahmadalfy
  3

• No HTML-Report found. Please check property sonar.dependencyCheck.htmlReportPath error in Sonarqube UI when using dependency-check plugin

  #1013 opened a month ago by Krishpluto
  0

• Dependency-Check JSON report does not exists. JSON-Analysis skipped/aborted due to missing report file

  #954 opened a month ago by Katheeja-Yasmin
  5

• [SonarQube] : Quality gates missing settings

  #950 opened 6 months ago by K44sper
  4

• Sonar dependency check multi project setup

  #951 opened 2 months ago by pellepelster
  4

• Issues and hotspots doesn't include dependency-check vulnerabilities

  #952 opened 6 months ago by arturkasperek
  11

• Critical CVEs only get C rating instead of E

  #982 opened 3 months ago by isaguimiot
  1

• Integration with SonarCloud

  #955 opened 3 months ago by mack0196
  3

• Pnpm vulnerabilities are not shown in sonarqube

  #947 opened 3 months ago by Manideepakakula
  5

• high_severity_vulns\u0027 does not exist

  #971 opened 4 months ago by Sam8301-arch
  3

• Release 5.0 not compatible with SonarQube 9.9 LTA

  #953 opened 4 months ago by alixwar
  1

• Not Flagging Hotspots Since Friday.

  #963 opened 5 months ago by rupreck
  5

• Add "DownloadOnlyWhenRequired" to packaging

  #911 opened 8 months ago by ganncamp
  2

• SonarQube (Enterprise EditionVersion 10.3 --build 82913) Content Security Policy blocking the plugin resource

  #893 opened a year ago by platformbeheer-otv
  7

• URI encoded package names do not match names in lock-file

  #863 opened 8 months ago by slosd
  8

• Update 5.0.0 Release Notes to Clarify SonarQube Version Compatibility

  #927 opened 8 months ago by A-Fitz-Nelnet
  2

• Examples and tests still use removed `sonar.dependencyCheck.reportPath` property

  #846 opened 9 months ago by maloewe-ona
  5

• Support for Sonar 10.2 Software Quality Severities

  #870 opened 9 months ago by Blir
  7

• Issue with Documentation for 10.2+

  #908 opened 9 months ago by kantipenko
  1

• Html report break sonar UI

  #904 opened 9 months ago by ricson-dev
  0

• Can't see CVEs (vulnerabilities) on Sonar UI under Project>Issues. Used to see them in the past. Has anything changed?

  #834 opened a year ago by mansing2
  7

• Support dependency check 8.0.0

  #748 opened 2 years ago by sellersj
  10

• Cannot collspae Published Vulnerabilities in SonarQube

  #858 opened a year ago by dennys
  6

• The dependency check scan is not uploading the reports when scanning a project

  #859 opened a year ago by ammar-helasoft
  3

• Update dependency-check-maven 9.0.X breaks Sonarqube Vulnerabilities report / JSON-Analysis aborted

  #888 opened a year ago by srcimon
  9

• NVD Api key config missing

  #891 opened a year ago by czechdude
  1

• Integrate OWASP plugin with SonarQube from Azure Pipeline

  #879 opened a year ago by hyousif-pkglobal
  0

• 9.0.2 of dependency-check plugin throws JSON parsing error with field "CvssV2.confidentialityImpact"

  #886 opened a year ago by istosSchulz
  4

• DependencyCheck reports uploaded to SonarQube has the "suppress" button disabled

  #806 opened a year ago by perostman
  10

• Quality gate uses original severity of the issue, not the user assigned one

  #829 opened a year ago by michalszelagsonos
  7

• assets section of each release doesnt include .sha256 file

  #876 opened a year ago by erickramer51115
  1

• [Quality Gates] : Owasp Dependency check

  #873 opened a year ago by K44sper
  1

• Apache Log4j vulnerability

  #869 opened a year ago by eshwarkarthikn
  3

• False positive: NPM package ionicabizau/parse-url confused with parseurl

  #842 opened a year ago by jan316
  2

• Does Dependency Checker support PHP?

  #825 opened a year ago by bsteelekuk
  1

• JSON-Dependency-Check report does not exist

  #819 opened a year ago by liuhe-trec
  3

• Crowd username changes - impact on sonar-dependency-check plugin

  #810 opened 2 years ago by mos9mu
  1

• Release 4.0.0

  #805 opened 2 years ago by pjk6
  2

• Dependency-Check Page extension failed in community edition

  #807 opened 2 years ago by parth42
  2

• When accessing the "Dependency-Check" tab in SonarQube UI, a red box with text "Page extension failed" is shown

  #804 opened 2 years ago by perostman
  1

• Release of plugin version 4.0.0?

  #803 opened 2 years ago by perostman
  1

• Support for Sonarqube 10.x

  #779 opened 2 years ago by simcomp2003
  15

• owasp_2021 branch merge into master branch

  #773 opened 2 years ago by pjk6
  3

• Not resolving ENV var in GitHub Actions

  #717 opened 2 years ago by lbenedetto
  6

• CPE Confidence not showing anything

  #729 opened 2 years ago by eliassal
  3

• OSS INDEX - status user

  #713 opened 2 years ago by Emilien-S
  2

• Unable to see Vulnerabilities reported by dependency-check

  #710 opened 2 years ago by kunal-deshmukh-deltatre
  7

• Sonar failed to parse json file due org.sonar.dependencycheck.parser.element.Analysis["scanInfo"] error

  #707 opened 2 years ago by garry-t
  5