Static code Analysis with SoanrQube - up1/course-springboot-2024 GitHub Wiki

Install SonarQube

• SonarQube server
• Sonar scanner

Install SonarQube server

• Docker image

$sysctl -w vm.max_map_count=524288
$sysctl -w fs.file-max=131072
$ulimit -n 131072
$ulimit -u 8192

$docker container run -d -p 9000:9000 sonarqube:10.1.0-community

Config with java project

File sonar-project.properties

sonar.projectKey=demo
sonar.projectName=demo
sonar.projectVersion=1.0

sonar.sources=src
sonar.java.source=src/main/java
sonar.java.binaries=target/classes
sonar.language=java
sonar.sourceEncoding=UTF-8

sonar.junit.reportPaths=target/surefire-reports

Start scan with Apache Maven

mvnw sonar:sonar \
 -Dsonar.host.url=http://128.199.83.90:9000 \
 -Dsonar.login=admin \
 -Dsonar.password=password \
 -Dsonar.projectKey=somkiat \
 -Dsonar.projectName=somkiat \
 -Dsonar.java.binaries=target/classes