SonarSource Static Analyzer for JavaScript and TypeScript
sonar-max-lines-per-function
): Improve React functional components detection by @victor-diez-sonarsource in https://github.com/SonarSource/SonarJS/pull/3679
unused-named-groups
): Consider accesses via the index syntax by @yassin-kammoun-sonarsource in https://github.com/SonarSource/SonarJS/pull/3685
aws-ec2-rds-dms-public
): Consider sensitive RDS DB instance on public subnet only by @yassin-kammoun-sonarsource in https://github.com/SonarSource/SonarJS/pull/3688
aws-s3-bucket-granted-access
): Fix BucketDeployment resolving by @yassin-kammoun-sonarsource in https://github.com/SonarSource/SonarJS/pull/3689
aws-s3-bucket-insecure-http
): Consider TypeScript import = require()
construct by @victor-diez-sonarsource in https://github.com/SonarSource/SonarJS/pull/3665
weak-ssl
): Change issue message when omitting tlsSecurityPolicy
by @yassin-kammoun-sonarsource in https://github.com/SonarSource/SonarJS/pull/3687
Full Changelog: https://github.com/SonarSource/SonarJS/compare/9.13.0.20537...10.0.0.20728
Part of SonarQube 10.0
https://github.com/SonarSource/SonarJS/issues?q=is%3Aclosed+milestone%3A9.13
node:
imports in several rules using getFullyQualifiedName()
by @ilia-kebets-sonarsource in https://github.com/SonarSource/SonarJS/pull/3618
no-built-in-override
): Remove System from globals by @ilia-kebets-sonarsource in https://github.com/SonarSource/SonarJS/pull/3620
no-hook-setter-in-body
): Shouldn't raise when used conditionally by @saberduck in https://github.com/SonarSource/SonarJS/pull/3622
no-redeclare
) for TypeScript by @victor-diez-sonarsource in https://github.com/SonarSource/SonarJS/pull/3635
Full Changelog: https://github.com/SonarSource/SonarJS/compare/9.12.1.20358...9.13.0.20537
In this release:
We improved the precision of the Cognitive Complexity for JSX by ignoring shorthand such as short-circuit logic.
We added 6 new rules for detecting performance issues in React:
Milestone: https://github.com/SonarSource/SonarJS/issues?q=is%3Aclosed+milestone%3A9.12
Full Changelog: https://github.com/SonarSource/SonarJS/compare/9.11.1.20218...9.12.0.20319
Fix dependency injection of JavaScriptProjectChecker for SonarCloud
Milestone: https://github.com/SonarSource/SonarJS/milestone/63?closed=1
SonarQube version: 9.8
This new version:
Milestone: https://github.com/SonarSource/SonarJS/milestone/63?closed=1
SonarQube version: 9.8
This new version adds 16 AWS CDK rules and includes fixes listed in the 9.10 milestone.
SonarJS hardening before SonarQube 9.7.
Details are available in 9.9 milestone.
faster PR analysis security analysis for AWS YAML TypeScript 4.8 deprecation of Node.JS v14 remove support for Node.JS v12
Details are available in 9.8 milestone.