feat(cpp): add cpp module scaffolding and plugin registration#398
Open
Divyateja2709 wants to merge 3 commits into
Open
feat(cpp): add cpp module scaffolding and plugin registration#398Divyateja2709 wants to merge 3 commits into
Divyateja2709 wants to merge 3 commits into
Conversation
Signed-off-by: Divyateja Indrakanti <indrakantidivyateja@gmail.com>
Signed-off-by: Divyateja Indrakanti <indrakantidivyateja@gmail.com>
Signed-off-by: Divyateja Indrakanti <indrakantidivyateja@gmail.com>
Contributor
|
Hi @Divyateja2709, Thank you for your PR and for the time and effort you put into contributing to CBOMkit—we truly appreciate your interest. You may have noticed that we are already working on adding C/C++ support to sonar-cryptography in PR #377. This approach differs from yours, as it relies on Sonar’s native C/C++ support package rather than ANTLR, similar to how the existing Java module is implemented. Work on PR #377 is already quite advanced, and at this stage we are leaning toward this approach because we expect it to provide stronger support for cross-file symbol tracing through the Sonar infrastructure. That said, we will keep your PR open for now until a final decision is made. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
hi @n1ckl0sk0rtge
This PR introduces the initial Maven and plugin scaffolding required for upcoming C/C++ language support in the Sonar Cryptography Plugin.
Changes Included
Added a new cpp Maven module
Registered the cpp module in the root pom.xml
Added the cpp dependency to sonar-cryptography-plugin/pom.xml
Updated SonarQube plugin configuration to recognize:
.c
.cpp
.h
source files through requiredForLanguages
Purpose
This PR establishes the build and plugin wiring needed before implementing:
C/C++ parsing
ANTLR grammar integration
OpenSSL detection rules
C/C++ detection engine support
This work is part of the initial language support setup outlined in the LFX mentorship project improvements for extending the Sonar Cryptography Plugin with C/C++ support.