I would like to suggest the implementation of a built-in code scanning tool within Blue Prism. Currently, we face challenges in identifying bugs or vulnerabilities in our Blue Prism projects, as there is no dedicated code scanning tool available. While we attempted to integrate with SonarQube, it did not yield satisfactory results.
The primary issue we encountered with SonarQube is its treatment of the .bprelease files as XML, which leads to inaccurate analysis results. The tool primarily focuses on detecting code smells, which are not applicable or relevant to our specific requirements.
Therefore, I kindly request the development team to consider incorporating a native code scanning tool into Blue Prism which can scan code stages like C#, Visual Basic, JavaScript . This tool would be tailored to analyze Blue Prism's unique code structure and provide comprehensive feedback on potential bugs, vulnerabilities, and any other code-related issues specific to Blue Prism processes.
By having a dedicated code scanning tool within Blue Prism, we can streamline our code review process, enhance the overall quality of our projects, and ensure compliance with security standards. This tool would greatly contribute to maintaining the integrity and reliability of Blue Prism solutions.
Thank you for considering this suggestion, and I look forward to the possibility of a built-in code scanning tool being introduced in Blue Prism.
... View more