Skip to main content

SonarQube Token With Host

Description

General

  • Documentation: https://docs.sonarqube.org/latest/extend/web-api/
  • Summary: SonarQube is an open-source platform for continuous inspection of code quality and detection of code vulnerabilities. SonarQube provides a web API to access its functionalities from applications. This detector focuses on detecting user, global analysis and project analysis tokens along with the hostnames used to authenticate API calls.

Revoke the secret

The tokens can be revoked from User > My Account > Security and click on the Revoke button.

Details for SonarQube Token Prefixed with Host

  • Family: token

  • Category: code_analysis

  • Company: SonarQube

  • High recall: False

  • Validity check available: True

  • Analyzer available: False

  • On-premise instances exist: False

  • Only valid secrets raise an alert: False

  • Minimum number of matches: 2

  • Occurrences found for one million commits: 13.24

  • Prefixed: False