Excluding Security Hotspots During SonarQube API Vulnerability Import into Defect Dojo #9785
Labels
Comments
|
Have you followed the instructions https://defectdojo.github.io/django-DefectDojo/integrations/parsers/api/sonarqube/ ? |
|
Yes, In the documentation. I could not see anything about security hotspot exclusion. |
I have to dive into the code, I was implementing it 2 year ago :) |
|
Any Update on this? |
|
Hi @KarthikY18, Security Hotspots are generally of low severity. When importing issues please choose minimum severity=medium, Security Hotspots will not be included. If you need to include low severity issues, there is currently no solution for that. You will see security hotspots. |
|
Thank you @sametr35, this helps me. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello,
I've been able to exclude bugs and code smells when importing SonarQube vulnerabilities with API into Defect Dojo, which is great. However, I'm encountering difficulty in excluding security hotspots. Is there a way to exclude them as well? Thank you for your assistance.
The text was updated successfully, but these errors were encountered: