nicklem
commented
10 months ago Reviewing in https://codacy.atlassian.net/browse/DOCS-613
Closed github-actions[bot] closed 10 months ago
nicklem
commented
10 months ago Reviewing in https://codacy.atlassian.net/browse/DOCS-613
Checking if each tool that detects security issues is included in the documentation:
✅ Cppcheck (C, CPP) is included, supports 5 security code patterns ✅ Clang-Tidy (C, CPP, Objective C) is included, supports 28 security code patterns ✅ Checkov (JSON, YAML, Terraform) is included, supports 248 security code patterns ✅ ShellCheck (Shell) is included, supports 4 security code patterns ✅ Prospector (Python) is included, supports 2 security code patterns ✅ Trivy (Dart, TypeScript, Python, Javascript, Elixir, PHP, C, CSharp, Swift, CPP, JSON, Rust, Ruby, Terraform, Go, Java, Dockerfile, YAML) is included, supports 2 security code patterns ✅ Pylint (Python) is included, supports 2 security code patterns ✅ TSQLLint (SQL, TSQL) is included, supports 1 security code patterns ❌ bundler-audit (deprecated) (Ruby) ISN'T included, supports 2 security code patterns ✅ PHP Mess Detector (PHP) is included, supports 1 security code patterns ✅ Codacy ScalaMeta Pro (Scala) is included, supports 35 security code patterns ✅ Credo (Elixir) is included, supports 2 security code patterns ✅ RuboCop (Ruby) is included, supports 7 security code patterns ✅ Flawfinder (C, CPP) is included, supports 222 security code patterns ✅ SonarC# (CSharp) is included, supports 73 security code patterns ✅ Bandit (Python) is included, supports 78 security code patterns ✅ PSScriptAnalyzer (Powershell) is included, supports 6 security code patterns ✅ PMD (PLSQL, XML, JSP, Velocity, Apex, Javascript, VisualForce, Java, SQL) is included, supports 17 security code patterns ✅ SonarVB (VisualBasic) is included, supports 24 security code patterns ✅ Brakeman (Ruby) is included, supports 69 security code patterns ✅ Hadolint (Dockerfile) is included, supports 4 security code patterns ✅ CodeNarc (Groovy) is included, supports 10 security code patterns ✅ SpotBugs (Java, Scala) is included, supports 179 security code patterns ✅ Gosec (Go) is included, supports 34 security code patterns ✅ PHP_CodeSniffer (PHP) is included, supports 59 security code patterns ✅ ESLint (Javascript, TypeScript) is included, supports 44 security code patterns
Found 1 tools that aren't included in the documentation.