What is SonarQube?
SonarQube is an open-source quality management platform, dedicated to continuously analyze and measure technical quality, from project portfolio to method.
Basic of SonarQube
- SonarQube (formerly just “Sonar”) is a server-based system. Of course, you can install it on your local machine (the hardware requirements are minimal). But it is a central server with a database.
- SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality. Sonar does static code analysis, which provides a detailed report of bugs, code smells, vulnerabilities, code duplications.
- SonarQube also highlights the complex areas of code that are less covered by unit tests.
Basic Highlights
Release Quality Code: Catch tricky bugs to prevent undefined behaviour from impacting end-users.
Application Security: Fix vulnerabilities that compromise your app, and learn AppSec along the way with Security Hotspots.
Technical Debt: Make sure your codebase is clean and maintainable, to increase developer velocity!
#nodejs #typescript #javascript #sonarqube