SonarQube
  • Preface
  • 1. About SonarQube
  • 2. Get Started in Two minutes
  • 3. Installation of SonarQube
    • 3.0.1 Pre-requisities
    • 3.1 SonarQube - SQL Server configuration
    • 3.2 SonarQube - MySQL Server configuration
    • 3.2.1 SonarQube - PostgreSQL Server Configuration
    • 3.3 Install SonarQube as Standalone Service
    • 3.4 Firewall settings for SonarQube
    • 3.5 Configure ODBC Driver
  • 4. SonarScanner Installation
    • 4.1 Installation of SonarScanner in Windows
    • 4.2 Installation of SonarScanner in Jenkins
  • 5. Analysis using SonarQube
    • 5.1 Simple Analysis using SonarScanner
    • 5.2 Advanced Analysis using SonarQube
  • 6. Understanding the Report
  • 7. Integration with Jenkins
Powered by GitBook
On this page

Was this helpful?

1. About SonarQube

PreviousPrefaceNext2. Get Started in Two minutes

Last updated 5 years ago

Was this helpful?

SonarQube® platform is an open source quality management platform, dedicated to continuously analyzing and measuring the technical quality of source code, from project portfolio down to the method level, and tracking the introduction of new Bugs, Vulnerabilities, and Code Smells in the Leak Period.

SonarQube can perform analysis on 20+ different languages. The outcome of this analysis will be quality measures and issues (instances where coding rules were broken). However, what gets analyzed will vary depending on the language:

  • On all languages, "blame" data will automatically be imported from supported SCM providers. Git and SVN are supported automatically. Other providers require .

  • On all languages, a static analysis of source code is performed (Java files, COBOL programs, etc.)

  • A static analysis of compiled code can be performed for certain languages (.class files in Java, .dll files in C#, etc.)

  • A dynamic analysis of code can be performed on certain languages.

additional plugins