Release notes - SonarIac - 1.40
Bug
SONARIAC-1692 Dockerfile Jinja template should not be parsed
SONARIAC-1808 Bicep parser should not fail on union operator for array or variable declaration
SONARIAC-1816 Bicep parser should support extensions
SONARIAC-1845 ARM parser should not crash when parsing resources with symbolic name
False Negative
SONARIAC-1819 S6400: Update the list of resources that the Terraform analyzer detects
SONARIAC-1827 S6437 should raise on instructions part of the final image
False Positive
SONARIAC-1796 S6893 should not raise on Helm separators `{{`/`}}` in strings
SONARIAC-1817 S6400, S6302: Improve Terraform detection of Google Cloud roles
SONARIAC-1818 S6258: Improve S3 bucket logic
SONARIAC-1824 S117 should allow "$_" for ignored variables
SONARIAC-1840 S7031 Should only raise on instructions in the final image
SONARIAC-1865 S6893 should not raise on comment for specific case with dash
Improvement
SONARIAC-1188 Deprecate S6245
SONARIAC-1668 S6868: Change rule type to Security Hotspot
SONARIAC-1750 S6473 should be configurable for Kubernetes
SONARIAC-1776 Support resources with symbolic name
SONARIAC-1833 S6255: Remove rule from default quality profile "SonarWay"
SONARIAC-1837 S6433: Remove rule from default quality profile "SonarWay"