SonarQube JavaScript 2.10 发布,此版本主要改进:
Automatically detects minified files and so exclude them from the analysis
Provides a new “Sonar Security Way” quality profile containing only rules targeting the detection of bugs or security vulnerabilities
And embeds 8 new rules
规则主要是:
“delete” should be used only with object properties (bug)
The identity operator (“===”) should not be used with dissimilar types (bug)
Strings and non-strings should not be added (suspicious)
Parameters should be passed in the correct order (bug)
Multiline blocks should be enclosed in curly braces (bug,cwe)
Loop counters should not be assigned to from within the loop body (suspicious)
Increment (++) and decrement (-) operators should not be used in a method call or mixed with other operators in an expression (cert, misra)
Comparison operators should not be used with strings (suspicious)
软件详情:https://jira.sonarsource.com/jira/secure/ReleaseNote.jspa?projectId=10933&version=12847
下载地址:http://www.sonarqube.org/downloads/
来自:开源中国社区
