SonarQube: static analysis with multi-level visual reporting

SonarQube is a open source platform to maintain high code quality through static code analysis and visual reporting. It is a very robust platform with dedicated features like a continuous inspection engine to ensure that a project has the highest standard of code quality. While it is essentially a static code analysis solution like Coverity or Klockwork, SonarQube provides much more information like code complexity report and numerous metrics to visualize the results of analysis. To get a feel of the capabilities of SonarQube take a look at the public instance of SonarQube, Nemo. Feature highlights:

  • Dashboard to manage code quality at the file, module, project or portfolio level. Users can create fully customized private dashboards to track measures or issues.
  • Covers quality issues related to duplications, coding standards, lack of coverage, potential bugs, complexity, documentation and design.
  • Supports 20+ programming languages including including Java, C#, C/C++, Cobol, PL/SQL, ABAP, Javascript, PHP, Web, XML.
  • Can be extended via web APIs or plugins. 60+ plugins available.
  • Track progress over time using tables, timelines, dynamic charts, etc.
  • Track quality on new code: recently introduced issues, lack of test coverage on new code, etc.
  • Pre-commit analysis using plugins for different IDEs.
  • Break down any metric in a few clicks, and drill down to the source of the information: the source code!
  • Quality analysis can be easily integrated into any continuous integration server to fully automate the process. Results in continuous inspection.
  • Integrate with components such as Maven, Ant, SVN, Git, Mercurial, JIRA, Mantis, Google Analytics, Piwik, Fortify…
  • Supports Linux based operating systems and Windows.
  • Open source and free.

Webpage: SonarQube

Leave a Reply

Your email address will not be published. Required fields are marked *