CWE/SANS Top 25 2020 included in Security 2.4
September 10, 2020
The Security Plugin 2.4 includes a new functionality for the verification of the CWE / SANS Top 25 Most Dangerous Software Errors standard in the 2020 edition.
New Feature
Now the plugin is able to do the compliance verification following the most current standard, instead of the CWE / SANS Top 25 ranking of the year 2011, included in the standard version of SonarQube.
The Security Plugin, as with the OWASP standard, will show you a page in the project space with all the information related to the CWE Top 25 of 2020, including rating, vulnerabilities, security hotspots, etc.
If you want to read more information about the latest edition of the CWE / SANS Top 25 published in August 2020 please click on the following link: https://cwe.mitre.org/top25/archive/2020/2020_cwe_top25.html
bitegarden team
Helping companies to develop better software