SonarQube is an open-source platform developed by SonarSource, which checks the quality of your code by running continuous checks for bug detection, code smells and security vulnerabilities. It supports over 20 programming languages.

We take the steps below, to run a health check on a Flask project:

Build the Flask project

  • Create and switch to a virtual environment
python3 -m venv venv
source venv/bin/activate
Enter fullscreen mode Exit fullscreen mode
  • Install requirements
pip3 install -r requirements.txt
Enter fullscreen mode Exit fullscreen mode
  • Run the project
python3 main.py
Enter fullscreen mode Exit fullscreen mode

Install SonarQube

  • Install SonarQube using Docker
docker run -d --name sonarqube -e SONAR_ES_BOOTSTRAP_CHECKS_DISABLE=true -p 9000:9000 sonarqube:latest
Enter fullscreen mode Exit fullscreen mode
  • Run SonarQube locally
http://localhost:9000/
Enter fullscreen mode Exit fullscreen mode

Default username and password is admin for both fields.

If asked to update password, kindly do so

image

Run an Analysis on SonarQube

  • We run an analysis manually, by clicking on the 'manually' option at the bottom of the page
    image

  • Fill the prompts and tell SonarQube to run your project locally
    image

  • Generate a token
    image

  • For our build, we select the 'Other' option, when asked what describes our build.
    We also have to download a scanner based on our operating system.
    image

  • We install SonarQube scanner following the prompts in this article.

wget https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-4.2.0.1873-linux.zip
unzip sonar-scanner-cli-4.2.0.1873-linux.zip
sudo mv sonar-scanner-4.2.0.1873-linux /opt/sonar-scanner
Enter fullscreen mode Exit fullscreen mode
  • Edit the sonar-scanner.properties file
Enter fullscreen mode Exit fullscreen mode

to contain

sonar.host.url=http://localhost:9000
sonar.sourceEncoding=UTF-8
Enter fullscreen mode Exit fullscreen mode
  • Create a file to automate the required environment variables configuration
sudo nano /etc/profile.d/sonar-scanner.sh
Enter fullscreen mode Exit fullscreen mode

to contain

#/bin/bash
export PATH="$PATH:/opt/sonar-scanner/bin"
Enter fullscreen mode Exit fullscreen mode
  • Add the sonar-scanner commands, to PATH variables
source /etc/profile.d/sonar-scanner.sh
Enter fullscreen mode Exit fullscreen mode
  • Verify that the PATH variable was changed as expected
env | grep PATH
Enter fullscreen mode Exit fullscreen mode

image

  • Verify SonarQube scanner was installed
sonar-scanner -v
Enter fullscreen mode Exit fullscreen mode

image

  • Next, run the command as marked in red ink in the picture below.

The command should be ran in the directory where you installed SonarQube

image

Expected result

image

SonarQube web page

image

Checkout my GitHub Repo to view my files.

# devops
Logo
CI/CD

CI/CD社区为您提供最前沿的新闻资讯和知识内容

更多推荐

Jenkins环境变量、参数及groovy脚本使用介绍。

这是系列中的第三篇文章 使用 Jenkins 将 Django 应用程序部署到 AWS EC2 实例。 Jenkins的温和指南。 在本文中,我们将介绍如何在 Jenkins 中使用变量和参数以及如何使用 groovy 脚本。我们将使用与以前相同的项目。您需要事先阅读过之前的文章。 1.如何在 JenkinsFile 中配置和使用变量。 在编写 JenkinsFile 管道脚本时,您可能需要注入和

avatar CI/CD

Rust 中的 OpenTelemetry 分布式跟踪指南

在本文中,我将分享我将 OpenTelemetry 分布式跟踪添加到 Rust 应用程序的经验。 我将尝试回答以下问题: 如何在 Rust 中检测 Opentelemetry? 如何在 Rust 应用程序中添加手动和自动检测? 如何使用tracing来调试Rust应用? 如何可视化跟踪和跨度? 如何在多线程环境中保存我们的 span 上下文? 在 Rust 中进行跟踪时,你必须知道哪些 crat

avatar CI/CD

Jenkins 管道,用于构建 Django 映像并将其推送到 dockerhub 和 GitHub webhook 集成。

这是系列文章的第四篇 使用 Jenkins 将 Django 应用程序部署到 AWS EC2 实例。詹金斯的温和指南。 在本文中,您将拼凑您所学的所有基础知识,并构建一个完整的 Jenkins 管道,该管道将构建 Django 映像并将其部署到 Dockerhub。您需要事先阅读过之前的文章 1.添加 init 阶段并加载script.groovy文件。 在您的 JenkinsFile 中,添加加

avatar CI/CD