SonarQube

SonarQube

SonarQube like SAST

SonarQube

Motivation

  • open source
  • good comments

How to use SonarQube

1. Generating token

Instructions

2. comand line

mvn clean verify sonar:sonar \
  -Dsonar.projectKey=<nombproject> \
  -Dsonar.host.url=<ip> \
  -Dsonar.login=<token>

3. Reference how to use SonarQube

Instructions

4. Jenkins

Instructions

pipeline with jenkins

fig 1