Skip to main content

How can we do the Security Analysis using SonarQube?

By

For Security Analysy purposes, a source code security analyzer
- examines source code to
- detect and report weaknesses that can lead to security vulnerabilities.
They are one of the last lines of defense to eliminate software vulnerabilities during development or after deployment. A Source Code Security Analysis Tool Functional Specification is available.
 
The SonarQube Quality Model has three different types of rules: Reliability (bug), Vulnerability (security), and Maintainability (code smell) rules. But divided another way, there are only two types: security rules, and all the rest. Read more click here

Reference:- This article was originally posted on scmGalaxy.com

Virus-free. www.avast.com

Comments

Post a Comment

Popular posts from this blog

DevOps Training — 20% Discount — Lifetime Membership — Valid for 48 Hrs. Only

By
​ DevOps is one of the most demanding professional course for IT industry these days. Every enterprises and organisations whether its small or large wants to hire DevOps professionals.  So, If you are a working professional or a fresher who is looking for DevOps course, h ere is a good news for you. scmGalaxy  giving  20% Flat discount  with  lifetime membership for  upcoming  new batch of DevOps Training. This offer is valid for next 48 hrs. only. Highlights Original Course Fee - 25K Offer Price - 20K Mode - Instructor-led, Live and Interactive Online Life time access to Live Interactive Sessions - you can attend any number of session Life time free access to all learning materials 80% of the class is consist of Lab by doing Hands on Approach 24x7 online support to queries during and after the course completion Weekend Classes First time in the industry - you can directly talk with the trainer Training Agenda ...
21 comments
Read more

scmGalaxy Launched DevOpsTraining Program

By
About the course This DevOps course will cover the concepts of Enterprise Infrastructure like Scalability, Availability, Continuous Integration, Automation and Deployments with tools. After the completion of DevOps course at scmGalaxy, you will be able to :  Understand the need for DevOps and the problems it resolves.  Learn about the common Infrastructure Servers, Scalability and Availability  Implement Automated Installations and Deployments  Understand Performance and basic Security for Infrastructure  Implement Virtualization Concepts  Understand the need and concepts of Monitoring and Logging  Learn more about DevOps cloud environment in Amazon AWS. Agenda of the training.   Problem that DevOps Solve. Making a DevOps Transition Jira for Issues Tracking Chef for Configuration Management.  Jenkins for Automated Installation and Deployment.  Jenkins Plugins for Continuous Integration and Deli...
Post a Comment
Read more

DevOps Online Training by DevOpsSchool.com

By
DevOps Online Training- Instructor-led, live & Interactive By DevOpsSchool.com In this training program, We are going to cover these Top 16  Tools in our DevOps Course and 4 Assignments & 1 Real-Time Scenario Based Projects . The Training Duration is:- 53 Hrs, Which will be completely Instructor-Led, Live & Interactive Online We have available 2 Timing:- Weekends - Sat & Sun) 8:30AM To 11:30AM IST Weekdays - Tue & Thu) 8:30PM To 11:30PM IST Course Fee:- INR 17,999/- Lifetime Membership Instructor-led, Live Session Access for 3 months Lifetime access to all learning materials (Class recordings, Notes, Quizzes. etc..) Lifetime Technical Support Bittu Kumar   |   Course Advisor    M: +91 799 223 7558 bittu@devopsschool.com Skype - bittu.cotocus
Post a Comment
Read more