Jonathan Gregory, profile picture
Uploaded byJonathan Gregory
PDF, PPTX864 views

Code Quality Lightning Talk

SonarQube is an open source tool that can be used to automate code quality metrics through continuous inspection of codebases to identify issues, aggregate metrics across projects, and provide dashboards and reports. It supports multiple languages including C# and JavaScript, and can be integrated into continuous integration pipelines through plugins. Using SonarQube allows teams to focus QA efforts by prioritizing the most important issues, track improvements over time, and gain insights into code quality trends across an organization.

Technology
In this document
Powered by AI

Overview of Code Quality Metrics and SonarQube for automating assessments presented by Jon Gregory.

Definition of SonarQube and its key features, including dashboards, multi-language support, and CI integration.

Discussion on the advantages of SonarQube, such as code aggregation, review automation, training insights, and efficiency in refactoring.

A demo illustrating the functionalities of SonarQube in practice.

Instructions on downloading and installing SonarQube and Sonar-Runner for project analysis.

Guide on setting up a sonar-project.properties file for analyzing a specific project with SonarQube.

Useful links for further information on SonarQube, including official documentation and setup guides.

Embed presentation

Download as PDF, PPTX
Code Quality Metrics Continuous Inspection with SonarQube
Jon Gregory – Technical Architect @ MMT Digital Developer for 15+ Years - worked on all versions of .NET. A hands on Technical Architect at a Digital Agency using Web Forms, MVC and Kentico CMS. Code Quality Metrics with SonarQube A lighting talk on how SonarQube can be used to automate Code Quality Metrics Introduction
What is SonarQube ?
Seven Axis of Code Quality Continuous Inspection Features o Dashboards, Charts & Drill Down Issue Analysis. o Historical views via Timelines, Motion Charts & Differential Views. o Multi Language support, C# and JavaScript analysed in same project. o Plugins community driven extension library o Command Line Driven allows integration into CI / ALM processes.
Why Should I Use SonarQube ?
Aggregation o Provides an aggregated view of all of the code in an organisation by project. o Issues are grouped by severity and importance Review o Automate the review of the coding basics so can concentrate on the complex. o Identify training needs o Provide improvement metrics to management. Benefits Efficiency o Target refactoring effort to areas which will benefit most. o Problem areas highlighted and can be planned into sprint as tasks / bugs / chores o Incentive to write cleaner code o Demonstrates Return on Investment of Refactoring o Consistency in applying standards
Demo
How Can I Use SonarQube ?
SonarQube o Download and Unzip SonarQube o Run binwindows-x86- 64InstallNTService.bat o Navigate to http://localhost:9000 Getting Started Sonar-Runner o Download and Unzip Sonar-Runner o Add sonar-runnerbin to path o Add the sonar properties file to the same folder as the .sln file. o Run ‘sonar-runner’ from command line for each project Two Components
Analysing a Project – Lisa Quinlan-Rahman, Head of Digital sonar-project.properties Add a sonar-project.properties file to the same level as the .sln file # must be unique in a given SonarQube instance sonar.projectKey=com.organisation.project # this is the name displayed in the SonarQube UI sonar.projectName=ExampleProjectName sonar.projectVersion=trunk # Path is relative to the sonar-project.properties file. Replace "" by "/" on Windows. sonar.sources=. sonar.exclusions=**obj**,**Package**,**packages**,**globalize**,**node_modules**,**CMS** sonar.cs.opencover.reportsPaths=results.xml
Useful Links – Lisa Quinlan-Rahman, Head of Digital http://www.sonarqube.org/ Demo Site http://nemo.sonarqube.org/ C# Plugin http://docs.sonarqube.org/display/PLUG/C%23+Plugin SonarQube for .NET users setup complete setup guide https://github.com/SonarSource/sonar-.net- documentation/releases/download/1.1.0/SonarQube-Setup-Guide-For-Net-Users-V-1-1-0.pdf

More Related Content

PDF
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
PDF
SonarQube
byGnanaseelan Jeb
 
PPTX
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
PDF
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
PPTX
Track code quality with SonarQube
byDmytro Patserkovskyi
 
PDF
Sonarqube
byPeerapat Asoktummarungsri
 
PPTX
Static Analysis with Sonarlint
byUT, San Antonio
 
PDF
Java Source Code Analysis using SonarQube
byAngelin R
 
Continuous Inspection of Code Quality: SonarQube
byEmre Dündar
 
SonarQube
byGnanaseelan Jeb
 
Track code quality with SonarQube - short version
byDmytro Patserkovskyi
 
Tech Talk #5 : Code Analysis SonarQube - Lương Trọng Nghĩa
byNexus FrontierTech
 
Track code quality with SonarQube
byDmytro Patserkovskyi
 
Sonarqube
byPeerapat Asoktummarungsri
 
Static Analysis with Sonarlint
byUT, San Antonio
 
Java Source Code Analysis using SonarQube
byAngelin R
 

What's hot

PDF
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
PPTX
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
PPTX
SonarQube: Continuous Code Inspection
byMichael Jesse
 
PDF
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
PPTX
Sonarqube
byKalkey
 
PDF
Sonar
byPeerapat Asoktummarungsri
 
PPTX
Sonar
byprabakaranbrick
 
PPTX
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
PPTX
Sonar Overview
bySamuel Langlois
 
PPTX
Static code analysis with sonar qube
byHayi Nukman
 
PPTX
Tracking your Technical Debt with Sonarqube
byPuppet
 
PPTX
Beyond the basics of SonarQube: improve your Java(Script) code even further
byJohan Janssen
 
PDF
Jenkins with SonarQube
bySomkiat Puisungnoen
 
PDF
Static code analysis
byPrancer Io
 
PDF
Sonarqube + Docker
byEstefanía Fernández Muñoz
 
PDF
Art of unit testing: how to do it right
byDmytro Patserkovskyi
 
PPTX
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
PDF
Software Engineering Culture - Improve Code Quality
byDmytro Patserkovskyi
 
PDF
ITAKE Unconference - Holding down your technical debt with Sonarqube
byPatroklos Papapetrou (Pat)
 
PPTX
Sonar Review
byKate Semizhon
 
SonarQube - Should I Stay or Should I Go ?
byGeeks Anonymes
 
SonarQube - The leading platform for Continuous Code Quality
byLarry Nung
 
SonarQube: Continuous Code Inspection
byMichael Jesse
 
Tracking and improving software quality with SonarQube
byPatroklos Papapetrou (Pat)
 
Sonarqube
byKalkey
 
Sonar
byPeerapat Asoktummarungsri
 
Sonar
byprabakaranbrick
 
Sonar Tool - JAVA code analysis
byPrashant Gupta
 
Sonar Overview
bySamuel Langlois
 
Static code analysis with sonar qube
byHayi Nukman
 
Tracking your Technical Debt with Sonarqube
byPuppet
 
Beyond the basics of SonarQube: improve your Java(Script) code even further
byJohan Janssen
 
Jenkins with SonarQube
bySomkiat Puisungnoen
 
Static code analysis
byPrancer Io
 
Sonarqube + Docker
byEstefanía Fernández Muñoz
 
Art of unit testing: how to do it right
byDmytro Patserkovskyi
 
A year of SonarQube and TFS/VSTS
byMatteo Emili
 
Software Engineering Culture - Improve Code Quality
byDmytro Patserkovskyi
 
ITAKE Unconference - Holding down your technical debt with Sonarqube
byPatroklos Papapetrou (Pat)
 
Sonar Review
byKate Semizhon
 

Viewers also liked

PPTX
Introducing DevOps
byNishanth K Hydru
 
PDF
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
PPSX
DevOps
byMatthew Jones
 
PDF
Introducción a TOGAF para el desarrollo de Enterprise Architecture
bynetmind
 
PPT
Introduction to Cloud Computing
byCloudSyntrix
 
PPTX
DevOps and Continuous Delivery Reference Architectures - Volume 2
bySonatype
 
PPTX
Sonar qube to impove code quality
byMani Sarkar
 
PPTX
Cloud Computing by AGDMOUN Khalid
byخالد اكدمون
 
PDF
Gerencia de procesos- Arquitectura Empresarial
byMarta Silvia Tabares
 
PPTX
Introduction of Cloud computing
byRkrishna Mishra
 
KEY
Introduction to Cloud Computing - CCGRID 2009
byJames Broberg
 
PPT
Introduction To Cloud Computing
byLiming Liu
 
PPT
SonarQube Overview
byAhmed M. Gomaa
 
PPTX
Togaf
byCarlos
 
ODP
1 Introducción a la Arquitectura Empresarial
byMatersys
 
PPT
Cloud Computing Integration Introduction
bytoryharis
 
PPTX
Conceptos togaf
byCarlos
 
PDF
Introduction to Cloud Computing
byAhmed Soliman
 
Introducing DevOps
byNishanth K Hydru
 
The story of SonarQube told to a DevOps Engineer
byManu Pk
 
DevOps
byMatthew Jones
 
Introducción a TOGAF para el desarrollo de Enterprise Architecture
bynetmind
 
Introduction to Cloud Computing
byCloudSyntrix
 
DevOps and Continuous Delivery Reference Architectures - Volume 2
bySonatype
 
Sonar qube to impove code quality
byMani Sarkar
 
Cloud Computing by AGDMOUN Khalid
byخالد اكدمون
 
Gerencia de procesos- Arquitectura Empresarial
byMarta Silvia Tabares
 
Introduction of Cloud computing
byRkrishna Mishra
 
Introduction to Cloud Computing - CCGRID 2009
byJames Broberg
 
Introduction To Cloud Computing
byLiming Liu
 
SonarQube Overview
byAhmed M. Gomaa
 
Togaf
byCarlos
 
1 Introducción a la Arquitectura Empresarial
byMatersys
 
Cloud Computing Integration Introduction
bytoryharis
 
Conceptos togaf
byCarlos
 
Introduction to Cloud Computing
byAhmed Soliman
 

Similar to Code Quality Lightning Talk

PPTX
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
PPTX
Sonar qube
bypenetration Tester
 
PPTX
Static-Code-Analysis-using-Sonar-Cloud new.pptx
byVideshRavi1
 
PPTX
SonarQube.pptx
byYASHWANTHGANESH1
 
PPTX
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
PPTX
SonarQube presentation.pptx
byVranceaAdrian
 
PPTX
postgres.pptx
byssuserf111e7
 
DOCX
What is SonarQube in DevOps.docx
byDevOps University
 
PPTX
postdev.pptx
byssuserf111e7
 
PPTX
mydevops.pptx
byssuserf111e7
 
PDF
Control source code quality using the SonarQube platform
byPVS-Studio
 
PPTX
Test driven development with sonarQube
byNanthakumar Suvethan
 
PPT
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
PDF
Quality Metrics: The Dirty Word in the Room
byJosiah Renaudin
 
PPTX
Code checkup
byDoug Mair
 
PPT
Sonar En
byAleksey Trusov
 
PPTX
Continuous Code Quality with the sonar ecosystem
byRoman Pickl
 
PPTX
class32.pptx
bymali528753
 
PPTX
SonarQube-taking-control-of-the-code-quality-Webinar-presentation.pptx
byNaveenKS45
 
PDF
Continuous Code Quality with the Sonar Ecosystem @GeeCON 2017 in Prague
byRoman Pickl
 
mastering-code-quality-an-in-depth-guide-to-sonarqube.pptx
byPawanKumarJaiswal6
 
Sonar qube
bypenetration Tester
 
Static-Code-Analysis-using-Sonar-Cloud new.pptx
byVideshRavi1
 
SonarQube.pptx
byYASHWANTHGANESH1
 
SonarQube Presentation.pptx
bySatwik Bhupathi Raju
 
SonarQube presentation.pptx
byVranceaAdrian
 
postgres.pptx
byssuserf111e7
 
What is SonarQube in DevOps.docx
byDevOps University
 
postdev.pptx
byssuserf111e7
 
mydevops.pptx
byssuserf111e7
 
Control source code quality using the SonarQube platform
byPVS-Studio
 
Test driven development with sonarQube
byNanthakumar Suvethan
 
CiklumJavaSat15112011:Alexey Trusov-Code quality management
byCiklum Ukraine
 
Quality Metrics: The Dirty Word in the Room
byJosiah Renaudin
 
Code checkup
byDoug Mair
 
Sonar En
byAleksey Trusov
 
Continuous Code Quality with the sonar ecosystem
byRoman Pickl
 
class32.pptx
bymali528753
 
SonarQube-taking-control-of-the-code-quality-Webinar-presentation.pptx
byNaveenKS45
 
Continuous Code Quality with the Sonar Ecosystem @GeeCON 2017 in Prague
byRoman Pickl
 

Recently uploaded

PPTX
How Design Systems and AI Agents Accelerate Product Delivery Sixt
byBoyan Dimitrov
 
PDF
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
PDF
Oracle MySQL HeatWave - Complete - Version 3
byLuca Bonesini
 
PDF
Linux Professional Institute LPIC-1 Exam.pdf
byLinuxCert Guru
 
PDF
Supervised Machine Learning Approaches for Log-Based Anomaly Detection: A Cas...
byMohammed BEKKOUCHE
 
PDF
Running Non-Cloud-Native Databases in Cloud-Native Environments_ Challenges a...
byAlkin Tezuysal
 
PPTX
oop pillor polymorphism Code Presentation
byhifzamahmood8
 
PPTX
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
PDF
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
PDF
OutSystsems User Group Brabant November 2025
bymail496323
 
PDF
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
PDF
Mutation Testing for Industrial Robotic Systems (FMAS 2025)
bySylvain Hallé
 
PDF
IDSECCONF2025 - Nosa Shandy - Discovering and Disclosing Privacy Vulnerabilit...
byidsecconf
 
PPTX
Redcentric Data Centres: vision, mission and values
byRedcentric
 
PPTX
Explaining ourselves – people, computers and AI
byAlan Dix
 
PPTX
Understanding the digital experience of FE teaching staff in 2024/25
byJisc
 
PPTX
The power of Slack and MuleSoft | Bangalore MuleSoft Meetup #60
byshyamraj55
 
PPTX
Support, Monitoring, Continuous Improvement & Scaling Agentic Automation [3/3]
byUiPathCommunity
 
PDF
How to Spot a Fraudulent Shopping Website
byAshwini Singh
 
PDF
UnityNet AI Induced Harm & Youth Protection Position Statement 2025-11-15
byLHelferty
 
How Design Systems and AI Agents Accelerate Product Delivery Sixt
byBoyan Dimitrov
 
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
Oracle MySQL HeatWave - Complete - Version 3
byLuca Bonesini
 
Linux Professional Institute LPIC-1 Exam.pdf
byLinuxCert Guru
 
Supervised Machine Learning Approaches for Log-Based Anomaly Detection: A Cas...
byMohammed BEKKOUCHE
 
Running Non-Cloud-Native Databases in Cloud-Native Environments_ Challenges a...
byAlkin Tezuysal
 
oop pillor polymorphism Code Presentation
byhifzamahmood8
 
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
OutSystsems User Group Brabant November 2025
bymail496323
 
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
Mutation Testing for Industrial Robotic Systems (FMAS 2025)
bySylvain Hallé
 
IDSECCONF2025 - Nosa Shandy - Discovering and Disclosing Privacy Vulnerabilit...
byidsecconf
 
Redcentric Data Centres: vision, mission and values
byRedcentric
 
Explaining ourselves – people, computers and AI
byAlan Dix
 
Understanding the digital experience of FE teaching staff in 2024/25
byJisc
 
The power of Slack and MuleSoft | Bangalore MuleSoft Meetup #60
byshyamraj55
 
Support, Monitoring, Continuous Improvement & Scaling Agentic Automation [3/3]
byUiPathCommunity
 
How to Spot a Fraudulent Shopping Website
byAshwini Singh
 
UnityNet AI Induced Harm & Youth Protection Position Statement 2025-11-15
byLHelferty
 

Code Quality Lightning Talk

  • 1.
    Code Quality Metrics ContinuousInspection with SonarQube
  • 2.
    Jon Gregory –Technical Architect @ MMT Digital Developer for 15+ Years - worked on all versions of .NET. A hands on Technical Architect at a Digital Agency using Web Forms, MVC and Kentico CMS. Code Quality Metrics with SonarQube A lighting talk on how SonarQube can be used to automate Code Quality Metrics Introduction
  • 3.
  • 4.
    Seven Axis ofCode Quality Continuous Inspection Features o Dashboards, Charts & Drill Down Issue Analysis. o Historical views via Timelines, Motion Charts & Differential Views. o Multi Language support, C# and JavaScript analysed in same project. o Plugins community driven extension library o Command Line Driven allows integration into CI / ALM processes.
  • 5.
    Why Should IUse SonarQube ?
  • 6.
    Aggregation o Provides anaggregated view of all of the code in an organisation by project. o Issues are grouped by severity and importance Review o Automate the review of the coding basics so can concentrate on the complex. o Identify training needs o Provide improvement metrics to management. Benefits Efficiency o Target refactoring effort to areas which will benefit most. o Problem areas highlighted and can be planned into sprint as tasks / bugs / chores o Incentive to write cleaner code o Demonstrates Return on Investment of Refactoring o Consistency in applying standards
  • 7.
  • 8.
    How Can IUse SonarQube ?
  • 9.
    SonarQube o Download andUnzip SonarQube o Run binwindows-x86- 64InstallNTService.bat o Navigate to http://localhost:9000 Getting Started Sonar-Runner o Download and Unzip Sonar-Runner o Add sonar-runnerbin to path o Add the sonar properties file to the same folder as the .sln file. o Run ‘sonar-runner’ from command line for each project Two Components
  • 10.
    Analysing a Project –Lisa Quinlan-Rahman, Head of Digital sonar-project.properties Add a sonar-project.properties file to the same level as the .sln file # must be unique in a given SonarQube instance sonar.projectKey=com.organisation.project # this is the name displayed in the SonarQube UI sonar.projectName=ExampleProjectName sonar.projectVersion=trunk # Path is relative to the sonar-project.properties file. Replace "" by "/" on Windows. sonar.sources=. sonar.exclusions=**obj**,**Package**,**packages**,**globalize**,**node_modules**,**CMS** sonar.cs.opencover.reportsPaths=results.xml
  • 11.
    Useful Links – LisaQuinlan-Rahman, Head of Digital http://www.sonarqube.org/ Demo Site http://nemo.sonarqube.org/ C# Plugin http://docs.sonarqube.org/display/PLUG/C%23+Plugin SonarQube for .NET users setup complete setup guide https://github.com/SonarSource/sonar-.net- documentation/releases/download/1.1.0/SonarQube-Setup-Guide-For-Net-Users-V-1-1-0.pdf