Questions tagged [sonarqube]

SonarQube is the open source platform, to continuously inspect code quality of applications. It allows developers to detect bugs and vulnerabilities as well as to decrease code smells or bad practices, in more than 20 different languages.

SonarQube was formerly known as Sonar.

SonarQube is the open source platform, to continuously inspect code quality of applications.

It allows developers to detect bugs and vulnerabilities as well as to decrease code smells, in more than 20 different languages.

Feature overview

Fully supports the Leak concept to make sure that the code quality of an application gets only better and better as code is added or updated over time
Available for more than 20 languages (including Java, C#, C/C++, Cobol, PL/SQL, ABAP, Javascript, PHP, Web, XML)
Built-in components for an easy integration (Maven, Ant, SVN, Git, JIRA, Mantis, Google Analytics, Redmine, Jenkins)

Resources

Tutorials & Examples

Books

11817 questions

votes

6 answers

How to correctly configure the property "sonar.java.binaries"?

We are using SonarQube 5.1.2 using Ant runner 2.2 and Java pluging 3.12 for the analysis. I can succesfully analyse my project. I just keep getting this error: Java bytecode has not been made available to the analyzer. The…

asked Sep 02 '16 at 11:12

Mark

votes

4 answers

SonarQube issue "Add at least one assertion to this test case" for unit test with assertions?

I'm having issues with SonarQube raising issues with several of my unit tests, prompting the following issue: Add at least one assertion to this test case. Each test case resembles this format (where a number of assertions are delegated to a…

java unit-testing junit sonarqube

asked Aug 04 '16 at 09:55

Michael

7,348
10
49
86

votes

1 answer

ERROR - Could not complete symbolic execution: reached limit of 10000 steps

With SonarQube 5.2 when I analyse the same project as I did with SonarQube 5.1.2 I see a lot of such error messages in the log when it analyzes Java sources: ERROR - Could not complete symbolic execution: reached limit of 10000 steps for method…

sonarqube

asked Dec 03 '15 at 12:10

Ernesto Maserati

votes

1 answer

What is the difference between coverage_exclusions vs exclusions in sonar?

What is the difference between coverage_exclusions vs exclusions in sonar? example: "sonar": { "exclusions": "gulpfile.js, ...", "coverage_exclusions": "gulpfile.js, ..., server/models/*.js", "quality_gate": "...", "server_id":…

javascript node.js sonarqube sonarqube-scan

asked Feb 28 '19 at 10:18

Sohail Si

2,750
2
22
36

votes

5 answers

Gitlab integration with SonarQube

I am pretty new to Development community and specifically to DevOps practices , as a part of project we are trying to integrate SonarQube with Gitlab , did some R& D on SonarQube and Git CI ( Continuous Integration ) and look like plugin is released…

plugins continuous-integration sonarqube gitlab devops

asked Mar 21 '17 at 18:41

Adi

votes

3 answers

How to fail a maven build, if JUnit coverage falls below certain threshold

I'm getting the Unit test coverage percentage metric from sonar rest api. How can I fail the build if it falls below a defined value?

java maven jenkins sonarqube code-coverage

asked Jan 27 '17 at 10:25

rathna

1,055
2
11
23

votes

3 answers

How to inspect a json response from Ansible URI call

I have a service call that returns system status in json format. I want to use the ansible URI module to make the call and then inspect the response to decide whether the system is up or…

json sonarqube uri ansible

asked Oct 25 '16 at 08:54

Hafiz

4,921
3
19
28

votes

4 answers

SONAR complaining about Make the enclosing method "static" or remove this set

I have the following piece of code in my program and I am running SonarQube 5 for code quality check on it after integrating it with Maven. However, Sonar is asking to Make the enclosing method "static" or remove this set. the method is…

java spring performance static sonarqube

asked Sep 09 '16 at 09:06

Aawan

votes

3 answers

Can not execute Findbugs Caused by: This project contains Java source files that are not compiled

I am currently using the sonarqube server 5.6 with scanner 2.6.1 and I keep getting errors during analysis for a java project. It appears to complain about some java files not compiled in the binaries folder (there aren't any at all in the binaries…

sonarqube findbugs

asked Aug 23 '16 at 13:42

NicolasW

1,519
5
22
34

votes

3 answers

java.lang.UnsupportedClassVersionError: org/sonar/batch/bootstrapper/EnvironmentInformation : Unsupported major.minor version 52.0

Environment details: SonarQube 5.6 Apache Maven 3.3.9 Java version: 1.7.0_09 I integrated SonarQube plugin with java maven project like in pom.xml …

sonarqube

asked Jun 07 '16 at 17:54

user3492783

votes

3 answers

SonarQube "Close this ConfigurableApplicationContext" in Spring Boot project

I have blocker issue "Close this "ConfigurableApplicationContext"" in main method public static void main(String[] args) { SpringApplication.run(MyApplication.class, args); } I've tried code from SonarQube example public static void…

java spring spring-boot sonarqube

asked May 06 '16 at 11:17

kimreik

votes

2 answers

Duplicated block of Code in Sonar for import statements in Java

In Sonar 4.5.6 (with default settings) I am seeing Duplicated Blocks message as My java code for which I am getting the message is like below:- package com.jabong.orchestratorservice.adapter.order.endpoints; import…

java sonarqube sonarqube-4.5 sonarqube-web

asked Mar 20 '16 at 08:01

tuk

5,941
14
79
162

votes

1 answer

Why use SonarQube plugin for Jenkins rather than simply use maven goal sonar:sonar?

I want to launch SonarQube analysis with Jenkins for a Maven 2 project. I first used the goal sonar:sonar in the build configuration. But I just found the SonarQube plugin for Jenkins. Why use it? Is it a better practice and why?

maven hudson jenkins sonarqube

asked May 21 '12 at 15:28

Pith

3,706
3
31
44

votes

4 answers

Sonarqube bad coverage because of lombok @Data

I use jacoco for coverage report. When I look at the jacoco report, coverage seems to be good. But in Sonarqube, the coverage is low because it says that @Dataannotation from lombok is not cover by test. Compiled classes is mark as @Generated but…

maven sonarqube jacoco lombok jacoco-maven-plugin

asked Aug 08 '17 at 13:00

Martin Choraine

2,296
3
20
37

votes

8 answers

SonarQube: Fail to get bootstrap index from server: Status returned by url [http://hostname:9095/sonar/batch/index] is not valid: [403]

I am trying to execute following maven command from jenkins job, mvn clean install sonar:sonar -Dsonar.host.url=http://hostname:9095/sonar -Dsonar.projectKey=mavensample -Dsonar.login=admin -Dsonar.password=admin -X But it fails with following…

maven jenkins sonarqube

asked Jul 14 '17 at 16:39

user1878934

Prev 1 2 3

…

99 100 Next