Added more meta information to the SonarQube rules.

Signed-off-by: Felix Patschkowski <[email protected]>
david-a-wheeler · Dec 16, 2023 · be386c1 · be386c1
1 parent 86173e1
commit be386c1
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -135,7 +135,7 @@ SonarQube under "Administration > CXX External Analyers > Other Rule Definitions
 by running Flawfinder once using the following options.
 
 ~~~~
-flawfinder --listrules --sonar
+flawfinder --listrules --sonar [...]
 ~~~~
 
 The in your CI/CD run Flawfinder like this to generate output that SonarQube

diff --git a/flawfinder.py b/flawfinder.py
@@ -187,6 +187,9 @@ def output_rules(self):
             str += '\t\t<severity>%s</severity>\n' % (SONAR_SEVERITIES[self._ruleset[key][1]])
             str += '\t\t<type>VULNERABILITY</type>\n'
             str += '\t\t<tag>cwe</tag>\n'
+            str += '\t\t<tag>flawfinder</tag>\n'
+            str += '\t\t<remediationFunction>CONSTANT_ISSUE</remediationFunction>\n'
+            str += '\t\t<remediationFunctionBaseEffort>2min</remediationFunctionBaseEffort>\n'
             str += '\t</rule>\n'
         str += '</rules>'
         return str