Open MarkusTiede opened 2 years ago
Comparison of codeQL & SonarQube findings: no significant advantages of findings e.g. within code smells, security & co
SARIF is not (yet) supported as interchange format in sonarqube; we wrote a lightweight mapping
Next exchange: Show & Tell of defectDojo instance tool?
Basic demonstration of neutral project "Juice Shop" : https://owasp.org/www-project-juice-shop/
Test instance is ready - contact @MrCode97 for additional information.
SARIF compatible - interesting for @FT?
In February a new student joins us to continue with DefectDojo. He will contact us for any further cooperation.