Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-12234

Do not display CWE distribution in portfolio security report

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 7.9
    • Component/s: Web
    • Edition:
      Enterprise
    • Production Notes:
      None

      Description

      The distribution in CWEs is interesting when trying to understand how security hotspots and vulnerabilities in projects and applications are distributed across CWEs categories.

      But this info is useless and can even be confusing at high level, in portfolios. There's no need to provide this option there.

      The "Show CWE distribution" should not be displayed in portfolios security reports.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              jeremy.davis Jeremy Davis
              Reporter:
              christophe.levis Christophe Levis
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved: