Questions tagged [sonarqube]
SonarQube is the open source platform, to continuously inspect code quality of applications. It allows developers to detect bugs and vulnerabilities as well as to decrease code smells or bad practices, in more than 20 different languages.
sonarqube
11,987
questions
0
votes
0
answers
7
views
Memory issues Scanning Large Amounts of Files with SonarQube
With a repo containing 6k+ js files that need to be scanned, I am running into memory issues in SonarQube.
Output is:
....
INFO: 142/6456 files analyzed, current file: js/data/171100080201.js
INFO: ...
- 1,944
2
votes
1
answer
46
views
Sonarlint refactor this repetition that can lead to stack overflow regex expression [duplicate]
I have to write a java regular expression to find if a string has at least 6 digits in it. The digits may be separated by space, hyphen or other characters.
The java pattern that I wrote "^(?=.(?:...
- 29
0
votes
0
answers
12
views
Facing npm not found issue with sonarscanner latest
Recently we have updated sonarscanner image
During sonar app stage, facing this npm not found issue
npm: command not found
My sonar-app stage is like
sonar-app:
<<: *tpl_build_gcp
stage: ...
- 85
-3
votes
1
answer
61
views
What's the purpose using the assignments symbol in if statement? [duplicate]
Most responses indicate the symbol = is used as an assignment operator.
Indeed, this aligns with what I've learned while studying programming.
I encountered this issue when using SonarQube scanning ...
- 349
0
votes
0
answers
24
views
Error during SonarScanner execution in Jenkins
I’m trying to integrate sonar with jenkins, but the task execution are returning sonar scanner error.
Server version: sonarqube:7.9.2-community
Scanner version: 4.6.2
I’v tried jdk, 11, 15, 17 and 21.
...
0
votes
0
answers
22
views
Opensource SonarQube and heterogeneous source code (C++, C#, Java, Python)
I work on relatively large project which uses multiple programming languages - C++ 23, C# (.NET 8), Java 17, Python 3.
At the moment, SonarQube (opensource version) has separate project for each ...
- 945
1
vote
0
answers
14
views
Partial line coverage report with dotnet-coverage
I am working on a C# project and would like to find out which lines are "to cover" with unit tests.
I run the following commands to execute the tests and upload them to sonarqube
dotnet ...
- 11
0
votes
0
answers
20
views
Why is SonarQube ignoring coverage data by gcovr from C++ files?
I have a project that is structured like this:
- 3rdParty_Lib1
- 3rdParty_Lib2
- Project_Root
--- apps/
--- include/
------ project_headers/
------ boost_headers/
--- src/
------- module1/
------- ...
- 196
0
votes
0
answers
24
views
Sonar Error on iframe: Non-interactive elements should not be assigned mouse or keyboard event listeners
I have this code:
export function Frame({ url }: Readonly<FrameProps>) {
const [isLoading, setIsLoading] = useState<boolean>(true);
const handleLoadedIframe = () => {
...
- 87
0
votes
0
answers
14
views
Generate Sonarqube Report In Gitlab
I'm trying to download the result of our scan in gitlab job.
In the documentation, there are no information about this topics.
I need to start any script shell, gradle to do that.
Any help ?
- 303
0
votes
1
answer
19
views
+50
How to get sonarqube to stop flagging substitution variables as an adaptability issue?
When I am scanning my job code snippet in sonarqube it stating :
Define a constant instead of duplicating the literal '&v_jobname' 2 times.
Software qualities impacted:
Maintainability
Following ...
- 125
0
votes
0
answers
27
views
SonarQube Web-API - api/qualitygates/project_status?projectKey=dynamic-project is not working in sonarqube 10.6
I am using Sonarqube10.6 and I am trying to get these rating values- new_reliability_rating | new_security_rating | new_maintainability_rating | new_security_hotspots_reviewed in this analysis_ratings....
0
votes
0
answers
17
views
Sonar coverage exclusion not ignoring classes
Currently I have updated my application to springboot 3 and Java 21, unfortunately the configuration classes are not ignored anymore which affects the coverage percentage.
Build gradle:
import org....
-1
votes
0
answers
55
views
Sonarqube issue [closed]
issue arised when i ran a pipeline on azure dev ops -- which is auto triggered after i raise a PR.
i run all test cases on my local using npm test command and didnt faced any such issue,
What could be ...
- 11
0
votes
0
answers
9
views
No problems have been detected in the workspace: SonarLint
Operating system: Ubuntu 22
SonarLint plugin version: v4.7.0
Programming language: python 3.11
I am trying to use SonarLint for Python Django in VS Code. I am unable to see suggestions from SonarLint ...
