SonarQube Overview

1.1 What is SonarQube

SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages. It can serve multiple functions, including:

  • offering reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security vulnerabilities.
  • recording metrics history and provides evolution graphs.
  • providing fully automated analysis and integration with Maven, Ant, Gradle, MSBuild and continuous integration tools.

Flowchart

SonarQube Overview

1.1 What is SonarQube

SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages. It can serve multiple functions, including:

  • offering reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security vulnerabilities.
  • recording metrics history and provides evolution graphs.
  • providing fully automated analysis and integration with Maven, Ant, Gradle, MSBuild and continuous integration tools.

Flowchart