-
Notifications
You must be signed in to change notification settings - Fork 77
Secrets detection rules
duncanp-sonar edited this page May 5, 2022
·
6 revisions
Starting with v6.4, SonarLint for Visual Studio will detect and report hard-coded cloud secrets as issues. All types of text files are analysed, irrespective of the type of content (code, configuration, documentation etc). Analysis is triggered whenever a text file is opened or saved.
Documentation for individual rules can be found on the Rules website.
Secrets detection rules are only run in the IDE.
They do not appear in SonarQube/SonarCloud i.e. they can only be configured locally, and the secrets detection rules will not be run by the various Sonar scanners.
The rules can be enabled and disabled locally. It is not currently possible to suppress individual issues. See the rules configuration page for more information.