VS2017: getting CA0064 (No analysis was performed)

[AndreyAspose]

I installed Roslyn Security Guard into VS 2017 Community via Extensions UI. Trying to analyze sample project, but getting CA0064 (No analysis was performed because the specified rule set could not be loaded or did not contain any managed code analysis rules.).

See attached screenshot:

• Roslyn SG analyzers are installed, visible and enabled
• Still get the warning

How do I make it work?

[AndreyAspose]

running from command line showed the same....

> MSBuild.exe WebGoat.NET.sln /t:Clean,Build /p:RunCodeAnalysis=true

MSBUILD : warning : CA0064 : No analysis was performed because the specified rule set could not be loaded or did not contain any managed code analysis rules. [E:\WebGoat.NET\WebGoat\WebGoat.NET.csproj]

[quincycs]

if you check one rule inside "Managed Binary Analysis" the warning will go away, but I think code analysis of RoslynSecurityGuard DOES NOT actually run. Sad, was excited for this project, not anymore.

[quincycs]

idk if its related, but I created #96 . Maybe all these analyzers are good - except when they are actually triggered to be checked seems buggy.

[SJMakin]

I am not able to recreate this issue. Please clarify recreation instructions.

[jftsaraiva]

I have the same problem.

Installed by Extension and Update in Visual Studio 2017 Professional, search for 'Roslyn' and install.
After Visual Studio reboot, I added a Rule Set with:

Run Code Analysis on project and always get:

[pich4ya]

same problem here with VS 2017.

[Nitrosito]

You can fix it?

[duncanp-lseg]

FYI this isn't an issue with roslyn-security-guard. It affects all Roslyn analysis rules that are installed in a VSIX, and it's down to how VS/MSBuild work. See the linked SonarLint issue #719 an example of the same issue with another analyzer and an explanation of what is happening.