# Introduction

## Overview and workflow <a href="#issues-overview-workflow" id="issues-overview-workflow"></a>

An analysis detects an issue as a problem in your code. When a coding rule is broken, an issue is raised. Each issue affects one or more software qualities with a varying impact level, called severity, as inherited from the rule. The following applies:

* A new issue is automatically assigned to the last committer on the issue line - the author - if the author can be correlated to a SonarQube Cloud user. You can reassign the issue.
* The issue context locates the issue in the code. The *primary location* is where the issue message is displayed. *Secondary locations* may be shown to help you understand the issue. Paths through the code (execution flows) are shown from the source to the destination (sink) when the issue originated upstream.
* An issue is assigned a status that changes during its lifecycle. See [analysis-process](https://docs.sonarsource.com/sonarqube-cloud/discovering-sonarcloud/analysis-process-overview/analysis-process "mention") for more details. In particular:
  * You can change the status of an issue from **Open** to **Accept** to fix it later.
  * Set an issue to **False positive** if you think the analysis is mistaken.

<figure><img src="https://2223713658-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FB4UT2GNiZKjtxFtcFAL7%2Fuploads%2FKfo6ifqUHjWSr5mvM3Af%2Fissues-status.png?alt=media&#x26;token=17b85f68-a615-419b-8d43-16deab6350ea" alt="Checking the issue&#x27;s status"><figcaption></figcaption></figure>

* You can tag and comment on issues.
* If you are a member of an organization that is part of an Enterprise you can view a list of issues from across all your projects at the organization level. See [retrieving](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/retrieving "mention") for more information.

{% hint style="info" %}
You can receive an email notification for issue-related events: see [notifications](https://docs.sonarsource.com/sonarqube-cloud/managing-your-account/notifications "mention") for more details.
{% endhint %}

## Permissions <a href="#issues-permissions" id="issues-permissions"></a>

Retrieving and managing issues is based on the permissions assigned to your profile on the project level.

* You can view issues on all public projects.
* On private projects, you need at least **Browse** permission to view issues, change an assignee, comment on issues, apply bulk changes, and change tags.
* In addition to the Browse permission, the **Administer Issues** permission enables you to change an issue’s status.

See [retrieving](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/retrieving "mention") for more information about how to retrieve, view, and filter issues.

To learn more about how to set project permissions, see [setting-permissions](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/administering-your-projects/setting-permissions "mention").

## Related pages <a href="#related-links" id="related-links"></a>

* The [analysis-process](https://docs.sonarsource.com/sonarqube-cloud/discovering-sonarcloud/analysis-process-overview/analysis-process "mention") page describes how SonarQube Cloud identifies, assigns, and synchronizes issues; the issue lifecycle.
* The [retrieving](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/retrieving "mention") page describes how to retrieve and filter issues.
* The[reviewing](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/reviewing "mention") page describes how to view and understand your issues in the SonarQube Cloud UI.
* The [editing](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/editing "mention") page describes how to accept, mark as false positive, reopen, assign, tag, or comment on an issue.
* The [fixing](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/fixing "mention") page describes how to get suggested fixes for your issues.
* The [jira-cloud](https://docs.sonarsource.com/sonarqube-cloud/discovering-sonarcloud/integrations/jira-cloud "mention") page describes how to integration SonarQube Cloud with Jira Cloud and create Jira Cloud work items from SonarQube issues.
* The [notifications](https://docs.sonarsource.com/sonarqube-cloud/managing-your-account/notifications "mention") page describes how to configure your account to receive email notifications for issue-related events.
* [in-devops-platform](https://docs.sonarsource.com/sonarqube-cloud/managing-your-projects/issues/in-devops-platform "mention")\
  This page explains how to view and manage the security issues reported by SonarQube Cloud in your DevOps platform.