Questions tagged [sonarqube]

SonarQube is the open source platform, to continuously inspect code quality of applications. It allows developers to detect bugs and vulnerabilities as well as to decrease code smells or bad practices, in more than 20 different languages.

SonarQube was formerly known as Sonar.

SonarQube is the open source platform, to continuously inspect code quality of applications.

It allows developers to detect bugs and vulnerabilities as well as to decrease code smells, in more than 20 different languages.

Feature overview

Fully supports the Leak concept to make sure that the code quality of an application gets only better and better as code is added or updated over time
Available for more than 20 languages (including Java, C#, C/C++, Cobol, PL/SQL, ABAP, Javascript, PHP, Web, XML)
Built-in components for an easy integration (Maven, Ant, SVN, Git, JIRA, Mantis, Google Analytics, Redmine, Jenkins)

Resources

Tutorials & Examples

Books

11817 questions

votes

1 answer

Using the sonar plugin with eclipse

I'm trying to use Sonar to analyse my projects in Eclipse. I am currently using Maven in eclipse. I installed the Sonar Eclipse plugin as described in this link. But when I try and associate my project with Sonar, I get an error saying: project …

asked Feb 20 '12 at 11:43

user1218900

votes

2 answers

Sonar Code Coverage Analysis Doesn't Add Up

Maybe this is due to my own misunderstanding of what in Sonar is being analyzed, but at the Component level Sonar is reporting a much higher percentage of code coverage than what appears to be possible given the results at the package level. May I…

java code-coverage sonarqube

asked Feb 16 '12 at 22:48

Brett VanderVeen

votes

1 answer

installing phpunit/PHPUnit-3.5.5 via pear (for sonar)

I am trying to setup PHP Plugin for Sonar, and this plugin needs specific packages in specific version. So, When I am trying to install PHPUnit 3.5.5 using following command, it is installing newer version. What I do wrong? [VMWARE] root@localhost ~…

php maven phpunit pear sonarqube

asked Feb 01 '12 at 16:37

bluszcz

4,054
4
33
52

votes

1 answer

Why does the sonar plugin in jenkins build everything again?

I installed Jenkins on my build machine and in the Jenkins config checked the box to run sonar analysis on my maven based project. It works but if I look at the log my entire project is built twice. Once from maven and once for sonar (still using…

hudson jenkins sonarqube hudson-plugins

asked Nov 14 '11 at 16:01

Usman Ismail

17,999
14
83
165

votes

2 answers

Bamboo + sonar.dynamicAnalysis=reuseReports = 0% Rules Compliance

Bamboo is in place to do continuous builds, but want to use Sonar for quality metrics tracking. Unit test pass/fail and Clover code coverage metrics must be captured in Bamboo. But, these same values should be sent to Sonar as well, so as to not…

java sonarqube bamboo

asked Nov 10 '11 at 14:42

orangepips

9,891
6
33
57

votes

1 answer

Google Cloud Dataflow's Code Coverage on the new code is not passing the threshold in SonarQube after Java 17 upgrade

Recently, I have upgraded my cloud dataflow application from Java 11 to Java 17 and its corresponding dependencies. The application works fine and even the test cases work fine. I have also upgraded my apache beam version from 2.35.0 to…

java junit sonarqube google-cloud-dataflow google-cloud-memorystore

asked Aug 22 '23 at 06:06

viveknaskar

2,136
1
20
35

votes

0 answers

SchemaFactory Sonar Disable access to external entities in XML parsing - how to fix?

Sonar proposes compliant solution for SchemaFactory as follows: SchemaFactory factory = SchemaFactory.newInstance(XMLConstants.W3C_XML_SCHEMA_NS_URI); // to be compliant, completely disable DOCTYPE…

java sonarqube

asked Mar 15 '23 at 14:49

makozaki

3,772
4
23
47

votes

1 answer

Hudson / Sonar report about compiler warnings

Is there a plugin to show compiler warnings in Hudson and / or Sonar?

hudson jenkins sonarqube

asked Sep 23 '11 at 05:32

redsofa

votes

4 answers

Reduce Cognitive Complexity

I'm having big trouble with reducing cognitive complexity in given piece of code. Could you please give some tips on how to fix this issue? I could reduce it from 24 to 16 using switch, but it is still 16 and I have no options left protected…

c# .net-core sonarqube

asked Jan 18 '23 at 07:00

GGotchaA

votes

2 answers

org/sonar/batch/bootstrapper/EnvironmentInformation compiled by more recent version (55), this version of Java recognises class file versions up to 52

I have installed sonar locally to run it on my java project code. My this code is using java 8. My environment variable is also set to java 8 but I have installed Java 11 on my machine and set a environment variable SONAR_JAVA_PATH in my machine…

java maven sonarqube sonarqube-scan

asked Nov 08 '22 at 20:46

Umair

votes

2 answers

How to fix SonarLint Cognitive Complexity Error for multiple If-Else conditions

I have to write a lot of conditions, but SonarLint is giving me error, asking to refactor the method to reduce its cognitive complexity. How to resolve this. I tried switch-case, but that is also giving the same error. public enum ExampleEnum { …

java spring-boot if-statement sonarqube sonarqube-scan

asked Oct 13 '22 at 05:24

Firdosh Alia

votes

1 answer

Sonar exclusions are not working which mentioned in sonar-project.properties file

I'm using GitLab CI/CD pipeline for deploying the Springboot project. I have integrated SonarQube in my project. In my sonar-project.properties file I have mentioned the sonar.coverage.exclusions. But its not excluded properly. below is my Project…

spring-boot maven sonarqube gitlab-ci

asked Aug 18 '22 at 13:44

Kavi Chinna

votes

2 answers

File saver is deprecated. How to resolve this issue from SonarQube

Working on filesaver, while running SONAR QUBE it shows " 'fileSaver' is deprecated. use { autoBom: false } as the third argument " this.http.get(`getTemplate/${doc.id}`, { responseType: 'blob' }).subscribe( (data: any) => { …

sonarqube angular11 filesaver.js

asked Aug 09 '22 at 08:03

hanu saikrishna

votes

3 answers

SonarQube build-wrapper silently fails

I'm running the build-wrapper like so: build-wrapper-macosx-x86 --out-dir build_wrapper_output xcodebuild -project MyProject.xcodeproj -scheme All -configuration Release clean build However, when I look at the result output the json file is…

sonarqube

asked Aug 03 '22 at 04:08

KVISH

12,923
17
86
162

votes

2 answers

Are these two if statements equivalent?

I am trying to reduce the function cognitive complexity required by SonarQube, I am wondering, are these two if statements equivalent? The first statement: if ( currentRef && currentRef.current && …

typescript sonarqube

asked Jul 21 '22 at 06:45

badm

Prev 1 2 3

…

100