
Product
Introducing Socket MCP for Claude Desktop
Add secure dependency scanning to Claude Desktop with Socket MCP, a one-click extension that keeps your coding conversations safe from malicious packages.
sonar-gitlab-converter
Advanced tools
A tool that convert SonarQube Issues from API to GitLab Vulnerability Report format
sonar-gitlab-converter is a tool that convert SonarQube Issues from API to GitLab Vulnerability Report format.
npm i -g sonar-gitlab-converter
sonar-gitlab-converter --host=<host> --token=<token> --project=<project ID>
Output:
Arguements:
Key | Value |
---|---|
host | The web services composing the web API are documented within SonarQube, through the URL /web_api. You can also access the web API documentation from the top bar in SonarQube |
token | You can create a token in /account/security |
project | SonarQube Project Key |
More details: https://docs.sonarqube.org/latest/extend/web-api/
FAQs
A tool that convert SonarQube Issues from API to GitLab Vulnerability Report format
The npm package sonar-gitlab-converter receives a total of 878 weekly downloads. As such, sonar-gitlab-converter popularity was classified as not popular.
We found that sonar-gitlab-converter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Add secure dependency scanning to Claude Desktop with Socket MCP, a one-click extension that keeps your coding conversations safe from malicious packages.
Product
Socket now supports Scala and Kotlin, bringing AI-powered threat detection to JVM projects with easy manifest generation and fast, accurate scans.
Application Security
/Security News
Socket CEO Feross Aboukhadijeh and a16z partner Joel de la Garza discuss vibe coding, AI-driven software development, and how the rise of LLMs, despite their risks, still points toward a more secure and innovative future.