Kalkey, profile picture
Uploaded byKalkey
PPTX, PDF689 views

Sonarqube

SonarQube is an open source tool that analyzes source code and stores the results in a database. It makes this analysis data available through a dynamic website. SonarQube performs static code analysis to automatically find potential errors or poor coding practices by analyzing source code. The analysis focuses on detecting errors, recommending code formatting improvements, and computing code metrics.

Embed presentation

Download to read offline
@2020 copyright KalKey training
SONARQUBE – WHAT IS IT? • SonarQube is an open source Web Application • Takes in input a set of source code files and a set of analyses results (produced by external tools). • Stores both sources and results in a database. • Makes available the gathered information via a dynamic website where the results are shown in the context of the code itself. @2020 copyright KalKey training
WHAT IS STATIC CODE ANALYSIS ? • Static code analysis is a collection of algorithms and techniques used to analyze source code in order to automatically find potential errors or poor coding practices. • Static code analysis, also commonly called "white-box" testing, • The tasks solved by static code analysis software can be divided into 3 categories: 1. Detecting errors in programs 2. Recommendations on code formatting 3. Metrics computation @2020 copyright KalKey training
SONAR STRUCTURE @2020 copyright KalKey training
SONARQUBE AND CONTINUOUS INTEGRATION @2020 copyright KalKey training
HOW DOES IT WORK? • SonarQube takes project code as the input, analyzes it using pre-defined coding rules and publishes web based results giving overview of technical quality of code. • SonarQube can analyze source code in 20+ different languages. Input can be the project source code or compiled code depending on the language. @2020 copyright KalKey training
TYPE OF ANALYSIS • Static analysis of source code  Language supported All (Java files, COBOL programs, etc.) • Static analysis of compiled code  Language supported Certain languages (.class files in Java, .dll files in C#, etc.) • Dynamic analysis of code  Language supported Certain languages (execution of unit tests in Java, C#, etc.) Note: Analysis is carried out using pre-defined rules based on industry coding standards /best practices. Rules for a particular language are available as plug-in for most of the languages. @2020 copyright KalKey training
QUALITY PROFILE • Each language plugin comes with a predefined, built-in profile (called “Sonar way”) having set of pre- defined rules and it will be used as default profile during analysis for projects. • New quality profiles can be created to configure rules as per project requirements, but it’s optional. • SonarQube allows inheritance in quality profiles thereby allowing to inherit rules provided by plugin in the default profile. @2020 copyright KalKey training

More Related Content

PPTX
SonarQube: Continuous Code Inspection
byMichael Jesse
 
PDF
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
PDF
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
PPTX
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
PPT
SonarQube Overview
byAhmed M. Gomaa
 
PPTX
Track code quality with SonarQube
byDmytro Patserkovskyi
 
PPTX
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
PDF
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
SonarQube: Continuous Code Inspection
byMichael Jesse
 
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
SonarQube Overview
byAhmed M. Gomaa
 
Track code quality with SonarQube
byDmytro Patserkovskyi
 
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 

What's hot

PPTX
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
PPTX
Sonar qube
bypenetration Tester
 
PDF
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
PDF
SonarQube
byGnanaseelan Jeb
 
PDF
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
PDF
Java Source Code Analysis using SonarQube
byAngelin R
 
PPTX
SonarQube.pptx
byYASHWANTHGANESH1
 
PDF
Sonarqube
byPeerapat Asoktummarungsri
 
PPTX
Managing code quality with SonarQube
byRadu Vunvulea
 
PPTX
Static Analysis with Sonarlint
byUT, San Antonio
 
PDF
Jenkins with SonarQube
bySomkiat Puisungnoen
 
PDF
CI CD Pipeline Using Jenkins | Continuous Integration and Deployment | DevOps...
byEdureka!
 
PPTX
Test Automation Framework with BDD and Cucumber
byRhoynar Software Consulting
 
PDF
What is Jenkins | Jenkins Tutorial for Beginners | Edureka
byEdureka!
 
PPTX
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
ODP
BDD with Cucumber
byKnoldus Inc.
 
PPTX
Jenkins for java world
byAshok Kumar
 
PDF
Bridging the Security Testing Gap in Your CI/CD Pipeline
byDevOps.com
 
PDF
Sonar
byPeerapat Asoktummarungsri
 
PDF
Cypress testing
byVladyslav Romanchenko
 
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
Sonar qube
bypenetration Tester
 
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
SonarQube
byGnanaseelan Jeb
 
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
Java Source Code Analysis using SonarQube
byAngelin R
 
SonarQube.pptx
byYASHWANTHGANESH1
 
Sonarqube
byPeerapat Asoktummarungsri
 
Managing code quality with SonarQube
byRadu Vunvulea
 
Static Analysis with Sonarlint
byUT, San Antonio
 
Jenkins with SonarQube
bySomkiat Puisungnoen
 
CI CD Pipeline Using Jenkins | Continuous Integration and Deployment | DevOps...
byEdureka!
 
Test Automation Framework with BDD and Cucumber
byRhoynar Software Consulting
 
What is Jenkins | Jenkins Tutorial for Beginners | Edureka
byEdureka!
 
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
BDD with Cucumber
byKnoldus Inc.
 
Jenkins for java world
byAshok Kumar
 
Bridging the Security Testing Gap in Your CI/CD Pipeline
byDevOps.com
 
Sonar
byPeerapat Asoktummarungsri
 
Cypress testing
byVladyslav Romanchenko
 

Similar to Sonarqube

DOCX
What is SonarQube in DevOps.docx
byDevOps University
 
PPTX
Test driven development with sonarQube
byNanthakumar Suvethan
 
PPTX
Static code analysis
byChristoforus Surjoputro
 
PDF
Code Review with Sonar
byMax Kleiner
 
PPTX
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
PPTX
Java Code Quality Improvements - DevWeek
byZoltan Iszlai
 
PPTX
Sonar qube to impove code quality
byMani Sarkar
 
PDF
Sonar use case (4).pdf
byOpsTree solutions
 
PPTX
Java Code Quality Tools
byAnju ML
 
PPTX
postgres.pptx
byssuserf111e7
 
PPTX
mydevops.pptx
byssuserf111e7
 
PDF
Code Quality Lightning Talk
byJonathan Gregory
 
PPTX
Maven.pptx
bypiyushkumar613397
 
PPTX
Blackboard DevCon 2012 - Ensuring Code Quality
byNoriaki Tatsumi
 
PDF
Control source code quality using the SonarQube platform
byPVS-Studio
 
PPTX
postdev.pptx
byssuserf111e7
 
PPT
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
PPTX
Code checkup
byDoug Mair
 
PPTX
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
PPTX
Sonar Review
byKate Semizhon
 
What is SonarQube in DevOps.docx
byDevOps University
 
Test driven development with sonarQube
byNanthakumar Suvethan
 
Static code analysis
byChristoforus Surjoputro
 
Code Review with Sonar
byMax Kleiner
 
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
Java Code Quality Improvements - DevWeek
byZoltan Iszlai
 
Sonar qube to impove code quality
byMani Sarkar
 
Sonar use case (4).pdf
byOpsTree solutions
 
Java Code Quality Tools
byAnju ML
 
postgres.pptx
byssuserf111e7
 
mydevops.pptx
byssuserf111e7
 
Code Quality Lightning Talk
byJonathan Gregory
 
Maven.pptx
bypiyushkumar613397
 
Blackboard DevCon 2012 - Ensuring Code Quality
byNoriaki Tatsumi
 
Control source code quality using the SonarQube platform
byPVS-Studio
 
postdev.pptx
byssuserf111e7
 
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
Code checkup
byDoug Mair
 
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
Sonar Review
byKate Semizhon
 

More from Kalkey

PPTX
Jenkins advance topic
byKalkey
 
PPTX
Jenkins introduction
byKalkey
 
PPTX
Docker introduction (1)
byKalkey
 
PPTX
Introduction of tomcat
byKalkey
 
PPT
Docker swarm
byKalkey
 
PPTX
Docker advance topic (2)
byKalkey
 
PPTX
Terraform day 2
byKalkey
 
PPTX
Nexus
byKalkey
 
PPTX
Shell programming 1.ppt
byKalkey
 
PPTX
Linux day 2.ppt
byKalkey
 
PPTX
Ansible day 1.ppt
byKalkey
 
PPTX
Debasihish da final.ppt
byKalkey
 
PPTX
Cloud computing 1
byKalkey
 
PPTX
Terraform day 1
byKalkey
 
PPTX
Terraform day 3
byKalkey
 
PPTX
Linux day 3ppt
byKalkey
 
PPTX
Adnible day 2.ppt
byKalkey
 
PPTX
Shell programming 2
byKalkey
 
PPTX
Intro
byKalkey
 
PPTX
Ansible day 3
byKalkey
 
Jenkins advance topic
byKalkey
 
Jenkins introduction
byKalkey
 
Docker introduction (1)
byKalkey
 
Introduction of tomcat
byKalkey
 
Docker swarm
byKalkey
 
Docker advance topic (2)
byKalkey
 
Terraform day 2
byKalkey
 
Nexus
byKalkey
 
Shell programming 1.ppt
byKalkey
 
Linux day 2.ppt
byKalkey
 
Ansible day 1.ppt
byKalkey
 
Debasihish da final.ppt
byKalkey
 
Cloud computing 1
byKalkey
 
Terraform day 1
byKalkey
 
Terraform day 3
byKalkey
 
Linux day 3ppt
byKalkey
 
Adnible day 2.ppt
byKalkey
 
Shell programming 2
byKalkey
 
Intro
byKalkey
 
Ansible day 3
byKalkey
 

Recently uploaded

PDF
Agentic AI and AI Agents 20251121.pdf - by Ms. Oceana Wong
byagenticroom
 
PDF
Deep Research and Analysis - by Ms. Oceana Wong
byagenticroom
 
PPTX
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 
PPTX
Plant Breeding: Its History and Contribution
bySatyam Sharma
 
PDF
The invasion of Alexander of Macedonia in India
byPrachiSontakke5
 
PPTX
Finals - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
PPTX
What are New Features in Purchase _Odoo 18
byCeline George
 
PDF
“Step-by-Step Fabrication of Bipolar Junction Transistors (BJTs)”
byGS Virdi
 
PDF
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
PPTX
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
PPTX
Quarter 3 lesson 2 of English Grade 8.pptx
byMamGamino
 
PPTX
SEMESTER 5 UNIT- 1 Difference of Children and adults.pptx
bysachin7989
 
PPTX
DEPED MEMORANDUM 089, 2025 PMES guidelines pptx
byRoseBubuli
 
PPTX
Photography Pillar 1 The Subject PowerPoint
bymjb77ny
 
PPTX
Elderly in India: The Changing Scenario.pptx
byMonika
 
PPTX
Time Series Analysis - Weighted (Unequal) Moving Average Method
bySundar B N
 
PDF
*Unit-II A (Elements of Communication & Communication Style Matrix)
bySayyadTarannum
 
PPTX
Time Series Analysis - Least Square Method Fitting a Linear Trend Equation
bySundar B N
 
PPTX
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 
PPTX
Chapter 3. Pharmaceutical Aids (pharmaceutics)
bySharibJamal
 
Agentic AI and AI Agents 20251121.pdf - by Ms. Oceana Wong
byagenticroom
 
Deep Research and Analysis - by Ms. Oceana Wong
byagenticroom
 
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 
Plant Breeding: Its History and Contribution
bySatyam Sharma
 
The invasion of Alexander of Macedonia in India
byPrachiSontakke5
 
Finals - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
What are New Features in Purchase _Odoo 18
byCeline George
 
“Step-by-Step Fabrication of Bipolar Junction Transistors (BJTs)”
byGS Virdi
 
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
Quarter 3 lesson 2 of English Grade 8.pptx
byMamGamino
 
SEMESTER 5 UNIT- 1 Difference of Children and adults.pptx
bysachin7989
 
DEPED MEMORANDUM 089, 2025 PMES guidelines pptx
byRoseBubuli
 
Photography Pillar 1 The Subject PowerPoint
bymjb77ny
 
Elderly in India: The Changing Scenario.pptx
byMonika
 
Time Series Analysis - Weighted (Unequal) Moving Average Method
bySundar B N
 
*Unit-II A (Elements of Communication & Communication Style Matrix)
bySayyadTarannum
 
Time Series Analysis - Least Square Method Fitting a Linear Trend Equation
bySundar B N
 
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 
Chapter 3. Pharmaceutical Aids (pharmaceutics)
bySharibJamal
 

Sonarqube

  • 1.
  • 2.
    SONARQUBE – WHATIS IT? • SonarQube is an open source Web Application • Takes in input a set of source code files and a set of analyses results (produced by external tools). • Stores both sources and results in a database. • Makes available the gathered information via a dynamic website where the results are shown in the context of the code itself. @2020 copyright KalKey training
  • 3.
    WHAT IS STATICCODE ANALYSIS ? • Static code analysis is a collection of algorithms and techniques used to analyze source code in order to automatically find potential errors or poor coding practices. • Static code analysis, also commonly called "white-box" testing, • The tasks solved by static code analysis software can be divided into 3 categories: 1. Detecting errors in programs 2. Recommendations on code formatting 3. Metrics computation @2020 copyright KalKey training
  • 4.
  • 5.
  • 6.
    HOW DOES ITWORK? • SonarQube takes project code as the input, analyzes it using pre-defined coding rules and publishes web based results giving overview of technical quality of code. • SonarQube can analyze source code in 20+ different languages. Input can be the project source code or compiled code depending on the language. @2020 copyright KalKey training
  • 7.
    TYPE OF ANALYSIS •Static analysis of source code  Language supported All (Java files, COBOL programs, etc.) • Static analysis of compiled code  Language supported Certain languages (.class files in Java, .dll files in C#, etc.) • Dynamic analysis of code  Language supported Certain languages (execution of unit tests in Java, C#, etc.) Note: Analysis is carried out using pre-defined rules based on industry coding standards /best practices. Rules for a particular language are available as plug-in for most of the languages. @2020 copyright KalKey training
  • 8.
    QUALITY PROFILE • Eachlanguage plugin comes with a predefined, built-in profile (called “Sonar way”) having set of pre- defined rules and it will be used as default profile during analysis for projects. • New quality profiles can be created to configure rules as per project requirements, but it’s optional. • SonarQube allows inheritance in quality profiles thereby allowing to inherit rules provided by plugin in the default profile. @2020 copyright KalKey training