sonar-php-forbidden-string-rules

PHP Custom Rules to detect forbidden word (for example, hard-coded password).

Build

mvn clean package

Or you can use files in releases.

Place jar file in SONARQUBE_HOME/extensions/plugins directory.

Create forbidden.txt and place it in sonar-scanner working directory.

forbidden.txt is newline separated list like following.

forbidden_string_1
forbidden_string_2
...