Questions tagged [sonarqube-scan]
SonarQube Scanners run the analyzers on code. Use this tag for questions related to any of the scanners: SonarQube Scanner for CLI, Maven, Gradle, Jenkins, etc.
sonarqube-scan
1,504
questions
0
votes
0
answers
12
views
Facing npm not found issue with sonarscanner latest
Recently we have updated sonarscanner image
During sonar app stage, facing this npm not found issue
npm: command not found
My sonar-app stage is like
sonar-app:
<<: *tpl_build_gcp
stage: ...
0
votes
0
answers
20
views
Why is SonarQube ignoring coverage data by gcovr from C++ files?
I have a project that is structured like this:
- 3rdParty_Lib1
- 3rdParty_Lib2
- Project_Root
--- apps/
--- include/
------ project_headers/
------ boost_headers/
--- src/
------- module1/
------- ...
1
vote
1
answer
20
views
+50
How to get sonarqube to stop flagging substitution variables as an adaptability issue?
When I am scanning my job code snippet in sonarqube it stating :
Define a constant instead of duplicating the literal '&v_jobname' 2 times.
Software qualities impacted:
Maintainability
Following ...
0
votes
0
answers
27
views
SonarQube Web-API - api/qualitygates/project_status?projectKey=dynamic-project is not working in sonarqube 10.6
I am using Sonarqube10.6 and I am trying to get these rating values- new_reliability_rating | new_security_rating | new_maintainability_rating | new_security_hotspots_reviewed in this analysis_ratings....
0
votes
0
answers
17
views
Sonar coverage exclusion not ignoring classes
Currently I have updated my application to springboot 3 and Java 21, unfortunately the configuration classes are not ignored anymore which affects the coverage percentage.
Build gradle:
import org....
1
vote
0
answers
55
views
How can I add code coverage in a DTO class?
I'm newbie in testing and received a notification from SonarCloud telling me that my DTO do not have any coverage, as it's just a class (a set of classes) I use for deserializing json I'm completely ...
-1
votes
1
answer
25
views
`sonarqube-scanner@^4.0.0` doesn’t return non-zero exit code in case of Quality Gate failure
SonarQube: Developer Edition v10.5.1 (90531)
sonarqube-scanner version: 4.0.0 or 4.0.1
Used npm package: https://www.npmjs.com/package/sonarqube-scanner
Node.js 20.14
When we run it as
npx sonarqube-...
0
votes
1
answer
191
views
SonarQubePublish@6 fails when running from another stage than SonarQubePrepare, saying: "Variables are missing"
I am working on a Dev Azure pipeline which is runnig couple of stages which have tasks for preparing sonar report. The important parts of stages which I want to focus on look like:
...
0
votes
0
answers
57
views
Files being indexed twice in SonarCloud scan
I’m learning how to integrate SonarCloud with Github Actions in a personal project. The Github repository that I am using can be accessed by clicking here.
The solution I am developing was created ...
0
votes
1
answer
63
views
Azure Devops Pipeline, show link do Sonar report on the summary page of Pipeline Run
I have a Azure Devos Pipeline, which in one of the stages is running Sonar report. After runnig the Pipeline summary page looks like:
I would like to include the Sonar report link on this first page ...
0
votes
1
answer
32
views
Bitbucket pipeline conditional execution when tests fail
Having a Bitbucket pipeline that executes 2 steps:
Runs Python tests and saves report artifacts in an XML file
Runs SonarQube scanner with the above report file.
If every test is ok, the SonarQube ...
0
votes
0
answers
20
views
What will be the next Sonarqube LTS version?
I cannot find information about the next Sonarqube LTS version.
SonarQube LTA release happens approximately every 18 months. The more frequent releases of SonarQube, where the product progressively ...
0
votes
0
answers
30
views
hudson.plugins.sonar.SonarRunnerInstallation fails to install Sonar
I'm using the SonarQube Scanner plugin from Jenkins to install sonarqube scanner in a server throught a pipeline. The pipeline pull sonarscanner from an Artifactory, and it get sonarscanner well. The ...
0
votes
2
answers
127
views
SonarQube 10.4.1 upgraded and I am using Java 11. How to set up my pipelines?
Project's specific JDK
In some situations, you might have to analyze a project built with a different version of Java than the one executing the analysis. The most common case is to run the analysis ...
0
votes
2
answers
61
views
Sonar-scanner token automation + I can't parse data into the index sonarqube server running in localhost:9000
Here is the github action forkflow :
- name: Start SonarQube container
run: |
docker run -d --name sonarqube -p 9000:9000 sonarqube:lts
- name: Wait for SonarQube to be ready
run: |
...