Sonarqube Notes – 17 Sept – 2023
Limited Time Offer!
For Less Than the Cost of a Starbucks Coffee, Access All DevOpsSchool Videos on YouTube Unlimitedly.
Master DevOps, SRE, DevSecOps Skills!
What is SonarQube?
---------------------------------
Quality mgmt tool
Quality
Code Quality
Test Quality -> Code Coverage - POSTPONING
Dev by SonarSource
in JAVA
Release
Community
Pro
Enter
https://www.sonarsource.com/products/sonarqube/downloads/
SDLC
--------------------------------------------------------
PLAN -> Code -> Code Ana --> Build -> UT -> Pack -> Arhive -Dep@Qa -> AT -> CC
---- ------
GIT
==============================================
Code Quality
WHY? - 70% of bugs (Correction Waste)
How?
Peer code review ( Gerrit)
-------- Github with PR
Static Code Review
---------------------------------------------------------
by Code
Code would review Code
Rule would review Code
1 Rule would review 1 Code Standard
100 Rule would review 100 Code Standard
Tool would review Code
What is Static Code review tool?
https://en.wikipedia.org/wiki/List_of_tools_for_static_code_analysis
How it works???
--------------------------------
YOU -> Sonar Server(WEB) --> DB
-------------
RDBMS
Server DONE
------------------------
https://www.sonarsource.com/products/sonarqube/downloads/
Rules
WEB SITE
DB
-----------------------
Scanner DONE
https://docs.sonarsource.com/sonarqube/latest/analyzing-source-code/scanners/sonarscanner/
Code
https://github.com/devopsschool-demo-labs-projects/java-sonarqube-helloworld-src/tree/master
C:\tools\sonarqube\sonar-scanner\bin\sonar-scanner.bat
Config file
-----------------------------
project config file - sonar-project.properties
https://www.devopsschool.com/tutorial/sonarqube/sonarqube-properties.html
scanner config file - sonar-scanner.properties
server config file - sonar.properties
Any tools - W RULE
------------------------------
What is THIS?
Why this?
How it works? Arch
How to install?
How to get started first project?
How to get started Advance project?
Config - Troubel - Use case