SonarQube is the open source platform for continuous inspection of code quality. SonarQube provides the capability to not only show health of an application but also to highlight issues newly introduced. With a Quality Gate in place, you can fix the leak and therefore improve code quality systematically. Code analyzers can detect tricky issues such as null-pointers dereferences, logic errors, resource leaks.
sonarqube code-quality static-code-analysisCreate your own team dashboard with custom widgets. Run npm run dev and go to http://localhost:3000.
dashboard widget jenkins jira bitbucket sonarqube pagespeed-insights elasticsearch github react tvRead about detekt configuration files here and about detekt baseline formats here. Best ways to get started is to configure the detekt-gradle-plugin in your project and use its detektBaseline and detektGenerateConfig tasks.
sonarqube kotlin linter code-analysis code-qualitySonarQube JavaScript Analyzer
sonarqube static-analysis static-code-analysis static-analyzer code-qualitySonarLint is a Visual Studio 2015 and 2017 extension that provides on-the-fly feedback to developers on new bugs and quality issues injected into .NET code. SonarLint for Visual Studio is based on and benefits from the .NET Compiler Platform (aka "Roslyn") and its code analysis API to provide a fully-integrated user experience in Visual Studio 2015 and Visual Studio 2017. SonarLint is free, open source, and available in the Visual Studio Gallery.To provide feedback (request a feature, report a bug etc.), simply create a GitHub Issue. Alternatively you can use SonarQube Google Group or StackOverflow with the tag sonarlint-vs.
visual-studio sonarlint sonarqubeStatic code analyzer for TypeScript detecting bugs and suspicious patterns in your code.See the documentation here and example project here.
typescript tslint code-quality static-analysis sonarqube sonarcloud linter tslint-pluginReverse Proxy Authenticator plugin for Sonar.
sonarqube sonarqube-authentication sonarqube-pluginsonarqube-scanner makes it very easy to trigger SonarQube / SonarCloud analyses on a JavaScript code base, without needing to install any specific tool or (Java) runtime. Prerequisite: you've installed the package as a dev dependency.
sonarqube sonarqube-scanner sonarcloud sonarqube-runner sonar-scanner sonar-runnerAn Ansible Role that installs SonarQube on RedHat/CentOS and Debian/Ubuntu Linux servers. Finally, recent versions of SonarQube also require MySQL 5.6 or later.
ansible role sonar sonarqube analytics code code-quality code-analysisAn Ansible Role that installs Sonar Runner on RedHat/CentOS and Debian/Ubuntu Linux servers. The role is currently configured to support SonarQube installations using MySQL as a database backend.
ansible role sonar sonarqube sonarqube-runner mysqlThis Vagrant configuration (with Ansible for provisioning) will install Jenkins, PHP, SonarQube, and Drupal CI profiles for code analysis (along with a bunch of other required software). Note for Windows users: This guide assumes you're on a Mac or Linux host. Windows support may be added when I get a little more time; the main difference is Ansible needs to be bootstrapped from within the VM after it's created. See JJG-Ansible-Windows for more information.
drupal ci sonarqube sonar jenkins ansible playbook vagrant vmThis SonarQube plugin ensures that projects in an organization adhere to a set of standard libraries and versions. This enables the governance of the used libraries and licences. Put the pre-built jar-file (from release downloads) in the directory $SONARQUBE_HOME/extensions/plugins and restart the server to install the plugin. Activate the rules of this plugin ("License is not allowed", "Dependency has unknown license") in your SonarQube quality profiles - otherwise the plugin is not executed.
sonarqube license-management open-sourceCreate the following stack. Create a PostgreSQL instance. It is recommended to use managed services such as Amazon RDS or Google Cloud SQL for maintenancebility reason. MySQL is available and works as well but PostgreSQL is recommended for JIRA.
jira confluence gitbucket jenkins owncloud mattermost sonarqube docker-compose nexusEnables analysis and reporting on PL/SQL projects.
sonarqube oracle-sql quality plsql analysisComplete Docker Compose guide to configure and run SonarQube + MySQL docker applications. Orchestrating Docker with compose sounds easy, but there are a few pitfalls in practice. Read on to learn about the whole story, or if you just wanna run it, jump directly to Getting Started.
docker orchestration sonar sonarqube quality static-analysis static-analyzer ciIntegrates Dependency-Check reports into SonarQube
owasp sonar-plugin nvd vulnerabilities component-analysis security visibility appsec sonarqube vulnerable-components software-securityjest-sonar-reporter is a custom results processor for Jest. The processor converts Jest's output into Sonar's generic test data format. Configure Jest in your package.json to use jest-sonar-reporter as a custom results processor.
sonarqube jest jest-testresultsprocessor nodejs sonar jest-sonar-reporter results processor
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.