SL
Uploaded bySamuel Langlois
PPTX, PDF16,764 views

Sonar Overview

This document summarizes Sonar, an open source platform for managing code quality. Sonar aggregates various tools to analyze code quality metrics like static analysis, duplicate code detection, and code coverage. It provides a web-based portal with visualizations of code quality statistics, violations, and technical debt over time. The document encourages trying out Sonar to improve code quality and discusses prioritizing areas to start like increasing test coverage or removing duplicate code.

Technology
Related topics:
Quality Control
In this document
Powered by AI

A call to action for high-quality coding practices by Samuel Langlois.

Introduction to Sonar as an open-source platform for code quality management with static analysis tools.

Details on Sonar's deployment at Alfresco and the projects it manages.

Visual representation and interface of the Sonar platform.

Overview of basic statistical data provided by Sonar.

Explanation of how Sonar drills down from projects to Java classes.

Analysis of duplicate code metrics using Sonar.

Insights into package tangle and dependencies within code projects.

Discussion on code coverage statistics in Sonar.

Exploration of Sonar's cloud capabilities.

An overview of the types of code violations detected by Sonar.

Examples of various code violations such as impossible casts and dead stores.

Options for managing code violations, including commenting and severity changes.

Introduction to technical debt and its implications for coding practices.

Description of the SQALE model and its measurement of technical debt in days.

Philosophy on maintaining constant costs in implementing program features over its lifetime.

Guidance on where to start improving code quality, focusing on critical projects and violations.

Embed presentation

Downloaded 796 times
Do Great Code! Samuel Langlois, 17-Jan-2013
Sonar • A platform to manage code quality • Free, open source, LGPL, web-based portal • Backed by • Aggregates well-known tools – Static analysis (PMD, findbugs, Checkstyle) – Duplicate code (Squid, CPD) – Code coverage (Cobertura, JaCoCo) (name change soon?)
Sonar @ Alfresco • http://sonar.alfresco.com • Open access, LDAP authentication coming • Contains the following projects: – Enterprise HEAD (Maven build) – CLOUD1 (Maven build) – Benchmark – Android SDK and App – …
Sonar portal
Sonar – Basic statistics
Drilling down • Whole project – Project/module • Java package – Java class
Sonar – Duplications
Sonar – Package tangle
Sonar - Coverage
Clouds
Sonar - Violations
Violation examples • Impossible cast
Violation examples • Dead store
Violation examples • Dead store
Violation examples • Redundant nullcheck
Violation examples • Empty if statement
Managing violations • For each violation you can – Comment – Change its severity – Declare it as a false-positive – Assign it to someone – Assign it to an action plan
Time machine
Technical debt • Term coined by Ward Cunningham in 1992 • Work that needs done before a job is complete • Unwritten tests • Bad design and architecture • Duplicated code • … • The higher you wait to fix, the more expensive it becomes
SQALE • Based on ISO 9126 Quality Model • Computes a Technical Debt, measured in days
Code quality “A well-written program is a program where the cost of implementing a feature is constant throughout the program's lifetime.”
What now? • What to start with? – Improving test coverage? – Removing duplicate code? – Checking violations? – … • Where to start? – Most critical projects? – Most « buggy » projects? – Voluntary teams? – … Try it and tell me!
Sonar Overview

More Related Content

PDF
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
PDF
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
PPTX
Sonarqube
byKalkey
 
PPTX
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
PPTX
Managing code quality with SonarQube
byRadu Vunvulea
 
PPTX
Track code quality with SonarQube
byDmytro Patserkovskyi
 
PDF
Sonarqube
byPeerapat Asoktummarungsri
 
PDF
Java Source Code Analysis using SonarQube
byAngelin R
 
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
Sonarqube
byKalkey
 
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
Managing code quality with SonarQube
byRadu Vunvulea
 
Track code quality with SonarQube
byDmytro Patserkovskyi
 
Sonarqube
byPeerapat Asoktummarungsri
 
Java Source Code Analysis using SonarQube
byAngelin R
 

What's hot

PDF
SonarQube
byGnanaseelan Jeb
 
PDF
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
PPTX
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
PPTX
Sonar qube
bypenetration Tester
 
PPT
SonarQube Overview
byAhmed M. Gomaa
 
PPTX
SonarQube.pptx
byYASHWANTHGANESH1
 
PDF
Sonar
byPeerapat Asoktummarungsri
 
PPTX
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
PPTX
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
PDF
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
PDF
Sonar Metrics
byKeheliya Gallaba
 
PPTX
Static Analysis with Sonarlint
byUT, San Antonio
 
PDF
Jenkins with SonarQube
bySomkiat Puisungnoen
 
PDF
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
PPTX
An introduction to DevOps
byAlexander Meijers
 
PPTX
Mobile testing practices
byRakesh Jha
 
PPTX
Introduction to DevOps
byMatthew David
 
PPTX
Static code analysis with sonar qube
byHayi Nukman
 
PPTX
Code Security with GitHub Advanced Security
byLuis Fraile
 
PPT
Non Functional Testing
byNishant Worah
 
SonarQube
byGnanaseelan Jeb
 
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
Sonar qube
bypenetration Tester
 
SonarQube Overview
byAhmed M. Gomaa
 
SonarQube.pptx
byYASHWANTHGANESH1
 
Sonar
byPeerapat Asoktummarungsri
 
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
Sonar Metrics
byKeheliya Gallaba
 
Static Analysis with Sonarlint
byUT, San Antonio
 
Jenkins with SonarQube
bySomkiat Puisungnoen
 
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
An introduction to DevOps
byAlexander Meijers
 
Mobile testing practices
byRakesh Jha
 
Introduction to DevOps
byMatthew David
 
Static code analysis with sonar qube
byHayi Nukman
 
Code Security with GitHub Advanced Security
byLuis Fraile
 
Non Functional Testing
byNishant Worah
 

Viewers also liked

PPTX
Basics of Robotics
byAmeya Gandhi
 
PPTX
Robotics project ppt
byVundavalli Shreya
 
PPTX
SONAR
byshri. ram murti smarak college of engg. & technology
 
PPTX
Sonar system
byArvin Moeini
 
PPTX
SONAR
bykamal6902
 
PPTX
robotics ppt
bysivabenten1
 
PPT
Robot PowerPoint
bybradschultz
 
PPT
Sonar
byPPThelperkid
 
PPTX
Echolocation
byMary Alice Osborne
 
PPTX
Maven overview
bySamuel Langlois
 
PPTX
Slideshare ppt
byMandy Suzanne
 
PPT
Alfresco Mavenisation
bySamuel Langlois
 
Basics of Robotics
byAmeya Gandhi
 
Robotics project ppt
byVundavalli Shreya
 
SONAR
byshri. ram murti smarak college of engg. & technology
 
Sonar system
byArvin Moeini
 
SONAR
bykamal6902
 
robotics ppt
bysivabenten1
 
Robot PowerPoint
bybradschultz
 
Sonar
byPPThelperkid
 
Echolocation
byMary Alice Osborne
 
Maven overview
bySamuel Langlois
 
Slideshare ppt
byMandy Suzanne
 
Alfresco Mavenisation
bySamuel Langlois
 

Similar to Sonar Overview

PDF
Code Coverage
byErnani Omar Cruz
 
PPTX
Identifying and Managing Technical Debt
byzazworka
 
PDF
Technical debt strategy
byMasas Dani
 
PDF
Managing technical debt
byFadi Stephan
 
PDF
Sqale meaningful insights into your technical debt
bydrewz lin
 
PDF
Technical debt management strategies
byRaquel Pau
 
PPTX
Slides for Houston iPhone Developers' Meetup (April 2012)
bylqi
 
PPTX
Java Code Quality Tools
byAnju ML
 
PDF
Ady beleanu automate-theprocessdelivery
byRomania Testing
 
PPTX
Paying Off Your Technical Debt
byJosh Cummings
 
PDF
Continuous inspection with Sonar
bygaudol
 
PDF
Fight your technical debt with Jenkins, Jacoco and Sonar
byMickael Istria
 
PDF
Msr17a.ppt
byYann-Gaël Guéhéneuc
 
PDF
Msr17a.ppt
byPtidej Team
 
PPT
Ensuring code quality
byMikhailVladimirov
 
PDF
The SQALE method: Meaningful insights into your Technical Debt
byJean-Louis LETOUZEY
 
PDF
Managing Software Debt Workshop at Intel
byChris Sterling
 
PDF
Machine Learning in Static Analysis of Program Source Code
byAndrey Karpov
 
PDF
Technical Debt - PHPBenelux
byenaramore
 
ODP
Pay off Technical Debt by Good Code
byTung Nguyen
 
Code Coverage
byErnani Omar Cruz
 
Identifying and Managing Technical Debt
byzazworka
 
Technical debt strategy
byMasas Dani
 
Managing technical debt
byFadi Stephan
 
Sqale meaningful insights into your technical debt
bydrewz lin
 
Technical debt management strategies
byRaquel Pau
 
Slides for Houston iPhone Developers' Meetup (April 2012)
bylqi
 
Java Code Quality Tools
byAnju ML
 
Ady beleanu automate-theprocessdelivery
byRomania Testing
 
Paying Off Your Technical Debt
byJosh Cummings
 
Continuous inspection with Sonar
bygaudol
 
Fight your technical debt with Jenkins, Jacoco and Sonar
byMickael Istria
 
Msr17a.ppt
byYann-Gaël Guéhéneuc
 
Msr17a.ppt
byPtidej Team
 
Ensuring code quality
byMikhailVladimirov
 
The SQALE method: Meaningful insights into your Technical Debt
byJean-Louis LETOUZEY
 
Managing Software Debt Workshop at Intel
byChris Sterling
 
Machine Learning in Static Analysis of Program Source Code
byAndrey Karpov
 
Technical Debt - PHPBenelux
byenaramore
 
Pay off Technical Debt by Good Code
byTung Nguyen
 

Recently uploaded

PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
Hybrid Cloud vs Multi-Cloud Strategy 2025
byTeleglobal International
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
Hybrid Cloud vs Multi-Cloud Strategy 2025
byTeleglobal International
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 

Sonar Overview