All in oneSonarQube is an open platform to manage code quality. As such, it covers the 7 axes of code quality:Extend with pluginsCovering new languages, adding rules engines, computing advanced metrics can be done through a powerful extension mechanism. More than 50 plugins are already available.Languages coveredMore than 20 programming languages are coveredthrough plugins including Java, C#, C/C++, PL/SQL, Cobol, ABAP…
In 3 clicks
SonarQube has got a very efficient way of navigating, a balance between high-level view, dashboard, TimeMachine and defect hunting tools. This enables to quickly uncover projects and / or components that are in Technical Debt to establish action plans.Quality is central
SonarQube is a web-based application. Rules, alerts, thresholds, exclusions, settings… can be configured online. By leveraging its database, SonarQube not only allows to combine metrics altogether but also to mix them with historical measures.
The SonarQube platform offers numerous features to help you make your Continuous Inspection process a success. Here are the main ones:
At a Glance
Whether you want to manage code quality at the file, module, project or portfolio level, SonarQube’s numerous dashboards offer quick insight. Take a look at Nemo, our public instance of SonarQube to see what to expect.
For All Stakeholders
Many dashboards are available out of the box, and the possibilities for new ones are endless, whether you want to focus on measures or issues. Users can create fully customized private dashboards to show only the data most valuable to them. Watch screencasts
Seven Deadly Sins
The platform covers the Seven Axes of Quality, also known as Developers’ Seven Deadly Sins: Duplications, Coding standards, Lack of coverage, Potential bugs, Complexity, Documentation and Design.
Stop the Leak!
When dealing with broken plumbing, common sense says you should fix the leak before mopping the floor. That is why the platform provides the ability to track quality on new code: recently introduced issues, lack of test coverage on new code, etc. Once found, issues can easily be assigned for mop-up.
Source code can be checked before pushing changes to the SCM: either directly in Eclipse orIntelliJ IDEA or through a batch with the ability to get issues in preview mode. Both let you make sure that you are not introducing new quality issues. Watch screencasts
Zoom to the Source
Whatever you are looking at, a project, group of projects, and so on, you can break down any metric in a few clicks, and drill down to the source of the information: the source code!
Quality analyses can be easily integrated into anycontinuous integration server to fully automate the process. This lets you easily put in place a process of Continuous Inspection.
A complete mechanism for authentication and authorization is available out of the box, but it is also possible to delegate security to an external system such as LDAP, Active Directory, etc. or to use SSO.
Integration comes out of the box with standard ALM components such as Maven, Ant, SVN, Git, Mercurial, JIRA, Mantis, Google Analytics, Piwik, Fortify…