Description / Features
This plugin enables to define and monitor a group of rules. The violations on those rules get reported in the new widget. The plugin is called Security Rules Plugin as it embedds the list of security rules as the default set of rules.
The set of rules can be redefined by going to configuration -> settings -> Security rules. The format is pluginName:ruleKey, pluginName2:ruleKey2...
Usage & Installation
1. Copy the jar into /extensions/plugins/ directory
2. Restart Sonar Web server
3. Launch a new quality analysis and the metrics will be fed
The plugin enables to quickly identify files that are impacted by a security break, but when in the file there is no mechanism to highlight the security violations.