This article provides access to third-party static code analysis reports generated using SonarQube.
These reports highlight code quality metrics, potential security vulnerabilities, maintainability issues, and technical debt associated with the development components of Virifi’s Solution Proposal.
The analysis covers backend, frontend, SDKs, mobile apps, and PKI integration points.
Included Reports
Report Name | Description |
cbj-android-application-issues-breakdown-summary.pdf | SonarQube findings on Android mobile application codebase. |
cbj-android-sdk-issues-breakdown-summary.pdf | Static analysis results for the Android SDK module. |
cbj-backend-issues-breakdown-summary.pdf | Code quality and security review for backend services. |
cbj-backend-sdk-main-breakdown-summary.pdf | Main backend SDK component analysis results. |
cbj-frontend-issues-breakdown-summary.pdf | Static findings for web frontend components. |
cbj-java-dss-issues-breakdown-summary.pdf | Analysis of Java DSS (Digital Signature Services) backend. |
cbj-pki-connection-report.pdf | Review of CBJ PKI integration components. |
ra-portal-backend-breakdown-summary.pdf | RA (Registration Authority) portal backend static analysis summary. |
ra-portal-frontend-report.pdf | RA portal frontend application SonarQube report. |
Notes
All reports are based on scans performed with industry-recognized SonarQube static analysis engines.
Findings have been reviewed and remediation efforts were applied where necessary before submission.