Jump to content

SonarQube

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by DougStaubach (talk | contribs) at 19:42, 25 January 2021 (→‎Overview: Added two more supported languages: Apex and T-SQL). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

SonarQube
Developer(s)SonarSource
Initial release2006–2007[1]
Stable release
8.6 / December 10, 2020; 3 years ago (2020-12-10)
Repository
Written inJava
Operating systemCross-platform
TypeStatic program analysis
LicenseLesser GNU General Public License
Websitesonarqube.org

SonarQube (formerly Sonar)[2] is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages. SonarQube offers reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security vulnerabilities.[3][4]

SonarQube can record metrics history and provides evolution graphs. SonarQube provides fully automated analysis and integration with Maven, Ant, Gradle, MSBuild and continuous integration tools (Atlassian Bamboo, Jenkins, Hudson, etc.).[5][6][7]

Overview

SonarQube includes support for the programming languages Java (including Android), C#, C/C++, JavaScript, TypeScript, Python, Go, Swift, COBOL, Apex, PHP, Kotlin, Ruby, Scala, HTML, CSS, ABAP, Flex, Objective-C, PL/I, PL/SQL, RPG, T-SQL, VB.NET, VB6, and XML.[8] Some of these are only available via a commercial license.

SonarQube is available for free under the GNU Lesser General Public License. An enterprise version for paid licensing also exists, as well as a data center edition that supports high availability.[9][10]

SonarQube integrates with Eclipse, Visual Studio, and IntelliJ IDEA development environments through the SonarLint plug-ins, and also integrates with external tools like LDAP, Active Directory, GitHub, and others. SonarQube is expandable with the use of plug-ins.[11][12]

Reception

In 2009, SonarQube received the Jolt Awards under testing tools category.[13][14]

See also

References

  1. ^ https://www.sonarsource.com/company/history/
  2. ^ Freddy Mallet (20 March 2013). "SONAR is becoming SONARQUBE". SonarQube project mailing list. Retrieved 3 July 2013.
  3. ^ "Methods and Tools issue" (PDF). 2010-03-01. Retrieved 2017-08-29.
  4. ^ Campell/Papapetrou, Ann/Patroklos (2013). Sonar (SonarQube) in action. Greenwich, Connecticut, USA: Manning Publications. p. 350. ISBN 978-1617290954.
  5. ^ Buijze, Allard (2010-02-26). "Measuring Code Quality With Sonar". Retrieved 2017-08-29.
  6. ^ Odendaal, René (2009-06-24). "Continuous Integration on SAP using Subversion, Maven, Hudson, Nexus and Sonar". Retrieved 2017-08-29.
  7. ^ Smart, John (2010-03-14). "How can you improve, harmonize and automate your development process using tools like Maven, Hudson, and Nexus?". Retrieved 2017-08-29.
  8. ^ "Multi-Language | SonarQube". Retrieved 2021-01-25.
  9. ^ "License | SonarQube". www.sonarqube.org. Retrieved 2018-03-28.
  10. ^ "Plans & Pricing | SonarSource". www.sonarsource.com. Retrieved 2018-03-28.
  11. ^ Mariano (2009-11-17). "Creating a Sonar Plugin for software development metrics". Archived from the original on March 24, 2010. Retrieved 2017-08-29.
  12. ^ Hazrati, Vikas (2010-03-30). "Monetizing the Technical Debt". Retrieved 2017-08-29.
  13. ^ "Jolt Awards Winners". 2009-03-18. Archived from the original on February 1, 2010. Retrieved 2010-04-13.
  14. ^ "Jolt Productivity Award #2: Testing and Debugging". 2010-12-01. Retrieved 2010-12-09.

External links

Retrieved from "https://en.wikipedia.org/w/index.php?title=SonarQube&oldid=1002722024"