Description:
Manage code quality
|
|
Type: Formula
|
Tracked Since: Dec 3, 2024
|
|
Links:
Homepage |
@SonarSource |
formulae.brew.sh
|
|
Category: Developer tools
|
|
Tags:
code-analysis
security
devops
static-analysis
quality
|
|
Install:
brew install sonarqube
|
About:
SonarQube is a self-managed, on-premise static application security testing (SAST) platform for continuous code quality and security analysis. It automatically scans source code across multiple languages to detect bugs, vulnerabilities, code smells, and security hotspots, providing detailed reports and metrics.
|
Key Features:
- Static Code Analysis (SAAT)
- Multi-language Support (Java, C#, JS, Python, etc.)
- Security Vulnerability Detection
- Integration with CI/CD Pipelines
- Quality Gate and Leak Period Concepts
|
Use Cases:
- Enforcing code quality standards in development teams
- Continuous security scanning in DevOps pipelines
|
Alternatives:
-
snyk
– Snyk is primarily a cloud-native, SaaS-focused DevSecOps platform with a stronger emphasis on open-source dependency scanning (SCA) and container security, whereas SonarQube is a self-hosted SAST-focused platform.
-
codacy
– Codacy is a cloud-based automated code review tool, offering a simpler SaaS model compared to SonarQube's more comprehensive, self-managed enterprise platform.
|
| Detected |
Version |
Rev |
Change |
Commit |
| Dec 3, 2024 10:13pm |
|
0 |
VERSION_BUMP |
a1800202 |
| Oct 3, 2024 12:53pm |
|
0 |
VERSION_BUMP |
c0cedaa0 |
| Sep 27, 2024 6:45pm |
|
0 |
VERSION_BUMP |
8647240f |
| Jan 19, 2024 3:47pm |
|
0 |
VERSION_BUMP |
ae3de842 |
| Sep 24, 2023 10:44pm |
|
0 |
VERSION_BUMP |
4381aaea |
| Sep 20, 2023 11:23pm |
|
0 |
VERSION_BUMP |
a9e6003f |
| Feb 13, 2023 5:52pm |
|
0 |
VERSION_BUMP |
f85776ca |
| Feb 7, 2023 1:59pm |
|
0 |
VERSION_BUMP |
24c4e35a |
| Feb 7, 2023 1:56pm |
|
0 |
VERSION_BUMP |
515f3f57 |
| Jan 8, 2023 10:09pm |
|
0 |
VERSION_BUMP |
35237e23 |
| Jan 8, 2023 10:09pm |
|
0 |
VERSION_BUMP |
b86fa6cc |
| Jan 8, 2023 11:45am |
|
0 |
VERSION_BUMP |
aaf5945f |
|