Nexus FrontierTech, profile picture
Uploaded byNexus FrontierTech
PDF, PPTX1,153 views

Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa

Sonar is a software quality management platform that enables developers to access and track code analysis data ranging from styling errors and potential bugs to code defects, duplications, lack of test coverage, and excess complexity. It supports over 20 programming languages. Some key features include over 600 coding rules, standard software metrics, the ability to drill down to source code details, a time machine feature to analyze technical debt and code smells over time, security measures, an extensible plugin system, and integrations with tools like Jenkins. Sonar also covers 7 axes of code quality and has an architecture that allows for analysis of code in a continuous integration workflow.

Embed presentation

Download as PDF, PPTX
TechTalk #5: Nghia Luong
Outline 1. What is Sonar? (demo) 2. Features 3. Covering 7 Axes of Code Quality 4. Architecture 5. Community and Ecosystem 6. Q&A
1. What is Sonar? ● Is a software quality management platform → Java. ● Enabling developers to access and track code analysis data ranging ○ styling errors ○ potential bugs ○ code defects ○ code duplications ○ lack of test coverage ○ excess complexity ● Support more than 20 languages.
2. Features ● Overview of all projects (demo) ● Coding rules: ○ 600+ rules are incorporated, can be fully parameterized. ○ implement your own. ● Standard software metrics: Lines of code, Documented API, Cyclomatic complexity, Test coverage, Duplicated code.
2. Features ● Drill down to source code ● Time Machine (Technical Debt, Code Smell … -> SQALE), Motion Chart. Motion Chart Technical Debt
2. Features ● Security measures ● Extensible plugin system ○ Additional languages. ○ Additional metrics: Useless code, Build stability ... ○ Visualization/Reporting: ■ PDF Report. ■ Timeline: Google Timeline Chart. ○ Integration: ■ Jenkins and Bamboo. ○ IDE: Eclipse
3. Covering 7 Axes of Code Quality Aka Developers' Seven Deadly Sins
4. Architecture Sonar Architecture
5. Architecture Sonar with CI Architecture
6. Community and Ecosytem ● Issues: http://jira.codehaus.org/browse/SONAR ● Open Source: https://github.com/SonarSource/sonarqube ● Contribute: http://www.sonarqube.org/development/
Q&A

More Related Content

PDF
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
PPTX
SonarQube: Continuous Code Inspection
byMichael Jesse
 
PPTX
Sonarqube
byKalkey
 
PPTX
Track code quality with SonarQube
byDmytro Patserkovskyi
 
PPTX
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
PPT
SonarQube Overview
byAhmed M. Gomaa
 
PDF
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
PPTX
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
SonarQube: Continuous Code Inspection
byMichael Jesse
 
Sonarqube
byKalkey
 
Track code quality with SonarQube
byDmytro Patserkovskyi
 
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
SonarQube Overview
byAhmed M. Gomaa
 
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 

What's hot

PDF
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
PDF
SonarQube
byGnanaseelan Jeb
 
PPTX
Sonar qube
bypenetration Tester
 
PPTX
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
PPTX
Managing code quality with SonarQube
byRadu Vunvulea
 
PDF
Sonarqube
byPeerapat Asoktummarungsri
 
PDF
Java Source Code Analysis using SonarQube
byAngelin R
 
PDF
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
PPTX
Sonarlint
bypenetration Tester
 
PPTX
SonarQube.pptx
byYASHWANTHGANESH1
 
PPTX
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
PDF
Sonar
byPeerapat Asoktummarungsri
 
PDF
Jenkins with SonarQube
bySomkiat Puisungnoen
 
PPTX
Sonarqube
byCDS
 
PPTX
Sonar Overview
bySamuel Langlois
 
PPTX
Test Strategy
byZbyszek Mockun
 
PPTX
Software Testing Fundamentals | Basics Of Software Testing
byKostCare
 
PPTX
Static Analysis with Sonarlint
byUT, San Antonio
 
PPTX
Guide to Agile testing
bySubrahmaniam S.R.V
 
PDF
How to go about testing in React?
byLisa Gagarina
 
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
SonarQube
byGnanaseelan Jeb
 
Sonar qube
bypenetration Tester
 
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
Managing code quality with SonarQube
byRadu Vunvulea
 
Sonarqube
byPeerapat Asoktummarungsri
 
Java Source Code Analysis using SonarQube
byAngelin R
 
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
Sonarlint
bypenetration Tester
 
SonarQube.pptx
byYASHWANTHGANESH1
 
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
Sonar
byPeerapat Asoktummarungsri
 
Jenkins with SonarQube
bySomkiat Puisungnoen
 
Sonarqube
byCDS
 
Sonar Overview
bySamuel Langlois
 
Test Strategy
byZbyszek Mockun
 
Software Testing Fundamentals | Basics Of Software Testing
byKostCare
 
Static Analysis with Sonarlint
byUT, San Antonio
 
Guide to Agile testing
bySubrahmaniam S.R.V
 
How to go about testing in React?
byLisa Gagarina
 

Viewers also liked

PPTX
DevOps and Continuous Delivery Reference Architectures (including Nexus and o...
bySonatype
 
PPT
Maven Introduction
bySandeep Chawla
 
PDF
Build Automation using Maven
byAnkit Gubrani
 
PPTX
Selenium Test Automation
byBabuDevanandam
 
PDF
Continuous integration and delivery for java based web applications
bySunil Dalal
 
PPT
Maven overview
byYukti Kaura
 
DevOps and Continuous Delivery Reference Architectures (including Nexus and o...
bySonatype
 
Maven Introduction
bySandeep Chawla
 
Build Automation using Maven
byAnkit Gubrani
 
Selenium Test Automation
byBabuDevanandam
 
Continuous integration and delivery for java based web applications
bySunil Dalal
 
Maven overview
byYukti Kaura
 

Similar to Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa

PPTX
Sonar
byprabakaranbrick
 
DOCX
What is SonarQube in DevOps.docx
byDevOps University
 
PPTX
Static-Code-Analysis-using-Sonar-Cloud new.pptx
byVideshRavi1
 
PPTX
Test driven development with sonarQube
byNanthakumar Suvethan
 
PPTX
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
PPTX
Tracking your Technical Debt with Sonarqube
byPuppet
 
PDF
Quality Metrics: The Dirty Word in the Room
byJosiah Renaudin
 
PPTX
Java Code Quality Tools
byAnju ML
 
PPTX
class32.pptx
bymali528753
 
PPTX
SonarQube-taking-control-of-the-code-quality-Webinar-presentation.pptx
byNaveenKS45
 
PPTX
mydevops.pptx
byssuserf111e7
 
PPTX
postgres.pptx
byssuserf111e7
 
PPT
Sonar En
byAleksey Trusov
 
PPTX
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
PDF
Code Quality Lightning Talk
byJonathan Gregory
 
PPT
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
PDF
Control source code quality using the SonarQube platform
byPVS-Studio
 
PPTX
Maven.pptx
bypiyushkumar613397
 
PPTX
Continuous Code Quality with the sonar ecosystem
byRoman Pickl
 
PDF
Continuous Code Quality with the Sonar Ecosystem @GeeCON 2017 in Prague
byRoman Pickl
 
Sonar
byprabakaranbrick
 
What is SonarQube in DevOps.docx
byDevOps University
 
Static-Code-Analysis-using-Sonar-Cloud new.pptx
byVideshRavi1
 
Test driven development with sonarQube
byNanthakumar Suvethan
 
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
Tracking your Technical Debt with Sonarqube
byPuppet
 
Quality Metrics: The Dirty Word in the Room
byJosiah Renaudin
 
Java Code Quality Tools
byAnju ML
 
class32.pptx
bymali528753
 
SonarQube-taking-control-of-the-code-quality-Webinar-presentation.pptx
byNaveenKS45
 
mydevops.pptx
byssuserf111e7
 
postgres.pptx
byssuserf111e7
 
Sonar En
byAleksey Trusov
 
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
Code Quality Lightning Talk
byJonathan Gregory
 
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
Control source code quality using the SonarQube platform
byPVS-Studio
 
Maven.pptx
bypiyushkumar613397
 
Continuous Code Quality with the sonar ecosystem
byRoman Pickl
 
Continuous Code Quality with the Sonar Ecosystem @GeeCON 2017 in Prague
byRoman Pickl
 

More from Nexus FrontierTech

PPTX
[VFS 2019] Building chatbot with RASA
byNexus FrontierTech
 
PPTX
[VFS 2019] Human Activity Recognition Approaches
byNexus FrontierTech
 
PDF
[AI series Talk #2] From PoC to Production - A Case Study
byNexus FrontierTech
 
PPTX
[VFS 2019] AI in Finance
byNexus FrontierTech
 
PPTX
[VFS 2019] Aimesoft Solutions
byNexus FrontierTech
 
PPTX
[Executive Lounge Talk] Digital Transformation Journey
byNexus FrontierTech
 
PDF
[VFS 2019] Phương pháp phát hiện bất thường bằng học máy
byNexus FrontierTech
 
PDF
[VFS 2019] OCR Techniques for Digital Transformation Evolution
byNexus FrontierTech
 
PPTX
[VFS 2019] Preventive Approach to Designing and Selling Healthy AI System
byNexus FrontierTech
 
PPTX
[VFS 2019] Vietnamese Speech-to-Text: Applications and Product
byNexus FrontierTech
 
PDF
[AI Series Talk #2] Moving AI from PoC Stage to Production
byNexus FrontierTech
 
PDF
[VFS 2019] How AI Will Innovate Recruitment
byNexus FrontierTech
 
PPTX
[VFS 2019] Datamart Introduction (brief)
byNexus FrontierTech
 
PDF
[VFS 2019] AI Ecosystem transition from zero to hero - case study by rubikAI
byNexus FrontierTech
 
PPTX
[VFS 2019] AI for Banks
byNexus FrontierTech
 
PDF
[VFS 2019] Data Strategy for Vietnamese Businesses to Levarage AI
byNexus FrontierTech
 
PDF
[VFS 2019] Project Management for AI-based Product - A Better Approach
byNexus FrontierTech
 
PDF
[VFS 2019] Digital Solution for Enterprises: 24/7 A.I English Speaking Coach
byNexus FrontierTech
 
PPTX
[VFS 2019] Enabling Young Generation for Future - AWS Vietnam User Group
byNexus FrontierTech
 
PDF
[VFS 2019] Introduction to GANs - Pixta Vietnam
byNexus FrontierTech
 
[VFS 2019] Building chatbot with RASA
byNexus FrontierTech
 
[VFS 2019] Human Activity Recognition Approaches
byNexus FrontierTech
 
[AI series Talk #2] From PoC to Production - A Case Study
byNexus FrontierTech
 
[VFS 2019] AI in Finance
byNexus FrontierTech
 
[VFS 2019] Aimesoft Solutions
byNexus FrontierTech
 
[Executive Lounge Talk] Digital Transformation Journey
byNexus FrontierTech
 
[VFS 2019] Phương pháp phát hiện bất thường bằng học máy
byNexus FrontierTech
 
[VFS 2019] OCR Techniques for Digital Transformation Evolution
byNexus FrontierTech
 
[VFS 2019] Preventive Approach to Designing and Selling Healthy AI System
byNexus FrontierTech
 
[VFS 2019] Vietnamese Speech-to-Text: Applications and Product
byNexus FrontierTech
 
[AI Series Talk #2] Moving AI from PoC Stage to Production
byNexus FrontierTech
 
[VFS 2019] How AI Will Innovate Recruitment
byNexus FrontierTech
 
[VFS 2019] Datamart Introduction (brief)
byNexus FrontierTech
 
[VFS 2019] AI Ecosystem transition from zero to hero - case study by rubikAI
byNexus FrontierTech
 
[VFS 2019] AI for Banks
byNexus FrontierTech
 
[VFS 2019] Data Strategy for Vietnamese Businesses to Levarage AI
byNexus FrontierTech
 
[VFS 2019] Project Management for AI-based Product - A Better Approach
byNexus FrontierTech
 
[VFS 2019] Digital Solution for Enterprises: 24/7 A.I English Speaking Coach
byNexus FrontierTech
 
[VFS 2019] Enabling Young Generation for Future - AWS Vietnam User Group
byNexus FrontierTech
 
[VFS 2019] Introduction to GANs - Pixta Vietnam
byNexus FrontierTech
 

Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa

  • 1.
  • 2.
    Outline 1. What isSonar? (demo) 2. Features 3. Covering 7 Axes of Code Quality 4. Architecture 5. Community and Ecosystem 6. Q&A
  • 3.
    1. What isSonar? ● Is a software quality management platform → Java. ● Enabling developers to access and track code analysis data ranging ○ styling errors ○ potential bugs ○ code defects ○ code duplications ○ lack of test coverage ○ excess complexity ● Support more than 20 languages.
  • 4.
    2. Features ● Overviewof all projects (demo) ● Coding rules: ○ 600+ rules are incorporated, can be fully parameterized. ○ implement your own. ● Standard software metrics: Lines of code, Documented API, Cyclomatic complexity, Test coverage, Duplicated code.
  • 5.
    2. Features ● Drilldown to source code ● Time Machine (Technical Debt, Code Smell … -> SQALE), Motion Chart. Motion Chart Technical Debt
  • 6.
    2. Features ● Securitymeasures ● Extensible plugin system ○ Additional languages. ○ Additional metrics: Useless code, Build stability ... ○ Visualization/Reporting: ■ PDF Report. ■ Timeline: Google Timeline Chart. ○ Integration: ■ Jenkins and Bamboo. ○ IDE: Eclipse
  • 7.
    3. Covering 7Axes of Code Quality Aka Developers' Seven Deadly Sins
  • 8.
  • 9.
  • 10.
    6. Community andEcosytem ● Issues: http://jira.codehaus.org/browse/SONAR ● Open Source: https://github.com/SonarSource/sonarqube ● Contribute: http://www.sonarqube.org/development/
  • 11.