Static Code Analysis

SonarQube is a Code Quality Assurance tool that collects and analyzes source code, and provides reports for the code quality of your project. It provides detailed reports on coding standards, unit tests, code coverage, bugs, and security vulnerabilities.

SonarQube Report

If you choose tool integration while creating a build pipeline, SonarQube report is displayed here. To view the report:

1. Click SonarQube Report in the build page.

1. A comprehensive report is displayed here.

1. Click on the numbers corresponding to bugs, vulnerabilities, etc. to be redirected to your SonarQube account for a more detailed report.

1. Click Quality Gate Status, to know the test cases status in SonarQube.

1. Click Lines of Code to see the code in SonarQube.