Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
SonarQube SonarCloud - Continuous Inspection and Code Review
Rating: 4.3 out of 5(2,282 ratings)
11,890 students

SonarQube SonarCloud - Continuous Inspection and Code Review

Automated continuous inspection and code quality. SonarQube and SonarCloud to analyse 25+ languages in real time
Last updated 7/2020
English

What you'll learn

  • Using SonarQube for Continuous Code Quality and Inspection
  • Identifying Bugs, Vulnerabilities, Debt, Code Coverage and Code smells in Projects
  • Detect tricky issues, logic errors, resource leaks, null pointers during development cycle itself
  • Sonar Scanner Integration with build tools like Gradle, Maven and Ant
  • Sonar Scanner Integration with DevOps tools like Jenkins
  • Learn about Quality gates, Quality profiles, Rules, Rule Template, User Management

Course content

7 sections18 lectures1h 15m total length
  • Introduction1:14

    Welcome to SonarQube

  • Architecture Overview and SonarQube Components3:58

    Learn various components of SonarQube

    SonarQube Server

    SonarQube Scanner

    Database

    Learn about sub components of SonarQube Server - Compute Engine, Elastic Search, Webserver and Plugin

    Purpose of plugin

    Roles played by Sonar Scanner

  • Code Quality Introduction3:40

    Importance of Code Quality

    Different code quality analysis tools along with SonarQube

    Role played by code quality tool in continuous integration and development life cycle

    Seven axis of code quality - Potential bugs, coding rules, Tests, Duplication, Comments, Architecture and design, Complexity

  • SonarQube Server UI Overview6:00

    Overview of SonarQube Server UI

    Administration menu overview

    Project summary, Project dashboard, filters

    Overview, issues, code, measures and administration of individual projects

    Running a scanner, verify report, delete report

    Profile, quality gate setup for projects

Requirements

  • Introduction on development projects will be added advantage
  • Introduction to any build tool and a development environment will leverage the learning.

Description

SonarQube Continuous Inspection tool for Code Quality. This course provides details on installation, usage, Integration with other build tools, Configuration and administration of SonarQube as well as the hosted version SonarCloud

You will learn the following concepts

  • Installation of SonarQube

  • Configure and connect Sonar Scanner

  • Integrate Sonar Scanner with other build tools like Ant, Maven, Gradle, etc.,

  • Collaboration with other continuous delivery tools like Jenkins

  • Configuration of SonarQube

  • Project Administration

  • Bugs, Vulnerabilities, Code Smells, Debt, Code Coverage, Unit test statistics monitoring

  • Learn to read and understand Complexity (Cyclomatic Complexity and Cognitive complexity)

  • Identifying Duplicate lines, duplicate files and duplicate blocks within and across projects

  • Documentation Ratings

  • Quality Gates and Quality Profiles

  • Rules and Rule Template

  • Maintainability, Reliability and Security Ratings

  • Handling identified issues.

  • Integration with real time code analysis plugins like Sonar Lint with IDEs like Eclipse

  • Managing rules and creating custom rules with templates

  • User management - Users, Groups, Permissions and Permission Template

You will learn how to efficiently set up SonarQube, install and configure the Sonar Scanner, and integrate it seamlessly with popular build tools such as Ant, Maven, and Gradle. We will also explore how SonarQube fits into the broader DevOps ecosystem by integrating it with continuous integration and delivery tools like Jenkins.

Beyond setup, this course dives into project administration, where you'll learn how to monitor bugs, vulnerabilities, code smells, technical debt, code coverage, and unit test statistics. You'll develop the ability to interpret key code complexity metrics, including Cyclomatic Complexity and Cognitive Complexity. Additionally, you will discover how to detect duplicate code — lines, blocks, and files — both within and across projects.

We will cover Documentation Ratings, Quality Gates, Quality Profiles, Rules, and Rule Templates, along with methods to manage and customize them. You'll also understand how to maintain high Maintainability, Reliability, and Security Ratings, and how to handle identified issues effectively.

The course will also introduce you to real-time code analysis using SonarLint with popular IDEs like Eclipse, and teach you how to manage users, groups, permissions, and permission templates in SonarQube.

By the end of this course, you will be fully equipped to install, configure, administer, and integrate SonarQube into your software development lifecycle, ensuring better code quality, security, and maintainability across your projects.

Who this course is for:

  • Developers, Architects, Process engineers who wants to make continuous improvement in code quality
  • Those who are getting into a well defined project
  • Those who wants to improve their project code quality continuously