Skip to main content

Posts

Showing posts from September, 2024

Implementing SonarQube: A Simple Proof of Concept using Docker

Let's walk through a basic setup of SonarQube using Docker, analyzing a simple Java backend and static front-end page. Start SonarQube Server : bash docker run -d --name sonarqube -p 9000 :9000 sonarqube:latest Create a sample project : index.html (Front-end) App.java (Backend) Install SonarScanner : Download and extract SonarScanner from the official website. Create a sonar-project.properties file : Text sonar.projectKey=my_project sonar.sources=. Run the analysis : bash path/to/sonar-scanner View the results in the SonarQube dashboard at http://localhost:9000. This simple setup demonstrates how easily teams can start benefiting from static code analysis.   Let's look at a sample code with a simple java app, along with simple Jenkins pipeline and GitHub Actions workflow for a proof of concept (POC) demonstrating SonarQube integration.    Index File  Java App File  Jenkins File ...