Security hotspots
What is a security hotspot?
A security hotspot highlights a security-sensitive piece of code that the developer needs to review. Upon review, you'll either find there is no threat or you need to apply a fix to secure the code.
Another way of looking at hotspots can be the concept of Defense in depth (computing), in which several redundant protection layers are placed in an application so that it becomes more resilient in the event of an attack.
Vulnerability or hotspot?
Rule severity and changing rule severities are deprecated. See the Code analysis based on Clean Code page for an explanation of Sonar’s code analysis and the impact issues have on your code.
The main difference between a hotspot and a vulnerability is the need for review