1. About

1.1. Rationale

SonarQube is an automatic code review tool to detect bugs, vulnerabilities, and code smells in your code. It can integrate with your existing workflow to enable continuous code inspection across your project branches and pull requests. [sqdocs]

../_images/sonarqube-bigpicture.png

1.2. Integrations

  • Bitbucket

  • GitHub

  • Azure DevOps

  • GitLab

../_images/sonarqube-integrations-bitbucket-d.png

Figure 1.11. Atlassian Bitbucket integration [licde]

../_images/sonarqube-integrations-github-a.png

Figure 1.12. Github integration [licde]

../_images/sonarqube-integrations-azuredevops-a.png

Figure 1.13. Azure DevOps integration [licde]

../_images/sonarqube-integrations-gitlab-a.png

Figure 1.14. GitLab integration [licde]

1.3. References

sqdocs

https://docs.sonarqube.org/latest/

licde(1,2,3,4)

https://www.sonarqube.org/developer-edition/