Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Here's the list of This page lists all the plugins hosted on the SonarSource plugin our forge.

Tempted to write your own plugin and share it? Want to contribute your plugin back to the community? Just follow the instructions on the Hosting on the Forge page.

 

Languages

A language plugin provides the ability to run analysis on a specific language. More than 20 languages are currently supported. Available language plugins are:

.NET: VB.NET ($) + C#

ABAP ($)
Section
Column
Panel
bgColorwhite
titleBGColoreee9e9
titleLanguages
Section
Column
width25%

ABAP*

Android

C/C++

 ($)
C++ (Community)Cobol ($)
Delphi / Pascal
Drools

*

C#

COBOL*

JavaScript
Natural ($)
Pacbase ($)
Column
width25%

Erlang

Flex / ActionScript

Groovy

Java

  • included: Checkstyle, FindBugs, JaCoCo, PMD
  • optional:Clirr, Clover, Cobertura, Emma, fb-contrib, Sonargraph, Quality Index, SIG Maintainability Model, Toxicity Chart

    JavaScript

    Column
    width25%

    Objective-C*

    PHP

    PL/I

     ($)

    *

    PL/SQL

     ($)Python
    Visual Basic 6 ($)

    *

    Python

    Column
    width25%

    RPG*

    VB.NET*

    Visual Basic 6*

    Web

    XML

    Section
    Column
    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleDeveloper Tools

    Developer Cockpit

    ($)

    * - Enables each developer to identify their individual contributions to a project, and fosters best practices in code quality self-management.

    Eclipse - See defects gathered by SonarQube directly in Eclipse and fix them on the spot. (Limited language compatibility).

    IntelliJ - See defects gathered by SonarQube directly in IntelliJ and fix them on the spot. (Limited language compatibility).

    Issue Assign - Automatically assigns new issues raised in the current analysis to the SCM author responsible.

    Issues Report - Run local analyses on your source code. (Compatible with all languages).

    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleIntegration

    Branding - Adds your own logo to the SonarQube UI.

    Build Breaker - Makes the build fail if

    pre-defined alert thresholds are hit.Cutoff - Excludes files from analysis based on a date threshold, to analyze

    the

    work done on an existing code base and measure the quality of new code/changes only

    quality gate fails.

    Fortify - Imports reports from Fortify: Fortify Security Rating, number of issues, and vulnerability issues. Vulnerability issues are recorded as SonarQube issues.

    Google Analytics - Adds the Google Analytics tracking script to the SonarQube web application.

    Google Calendar - Posts an event when a project is analysed by SonarQube.

    Governance

    Technical Debt Evaluation (SQALE) ($)

    Hudson - Enables launching SonarQube analysis from the Hudson CI engine.

    Jenkins - Enables launching SonarQube analysis from the Jenkins CI engine.

    JIRA Issues - Retrieves and reports the number of project issues from JIRA. Enables the creation of JIRA issues from the issues view of the component viewer.

    Maven Report - Adds a link to the Maven site to reference the project's SonarQube dashboard.

    Piwik - Submits usage of a SonarQube instance to a Piwik server.

    Oracle Forms PL/SQL Extractor - Extracts PL/SQL source code from Oracle Forms to feed SonarQube.

    Redmine - Retrieves and reports the number of project issues from Redmine. Enables the creation of Redmine issues from the issues view of the component viewer.

    SCM Activity - Collects and reports information on commits using SCM data.

    Switch Off Violations - Excludes some violations in a fine-grained way.

    Authentication & Authorization

    Crowd - Enables delegation of SonarQube authentication to Atlassian Crowd.

    LDAP - Enables the delegation of SonarQube authentication and authorization to LDAP and Microsoft Active Directory.

    OpenID - Enables user authentication and Single Sign-On via an OpenID provider.

    PAM - Enables the delegation of SonarQube authentication to the underlying PAM subsystem.

    Column
    width50%

    SonarQube Android Application - Provides access to your SonarQube instances from your Android devices.

    Issue Assign - Automatically assign new issues to the developer responsible.

    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleVisualization / Reporting

    Doxygen - Generates the documentation of the application using Doxygen and Graphviz.

    Motion Chart - Displays projects measures using the super sexy Google Motion Chart Gadget.

    SCM Stats - Generates reports based on SCM change log information.

    Tab Metrics - Adds a new tab to the component viewer containing information about all metrics for the file.

    Timeline - Displays the history of multiple metrics using a Google Timeline Chart to replay the past.

    Widget Lab - Adds new ways to look at existing data through new widgets.

    Column
    width50%
    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleGovernance

    Portfolio Management (Views)* - Enables aggregation of projects. Projects can be grouped into applications, applications into teams, teams into departments, etc.

    PDF Report - Generates PDF report from project analysis. Note that report is not configurable and cannot be sent by email and the plugin is limited to Java Maven projects.

    Report* - Reports information by sending customizable PDF reports by email. Information can come from project or/and global measures.

    Technical Debt Evaluation (SQALE)* - Adds an implementation of the SQALE Methodology to compute technical debt, which supports the evaluation of a software application’s source code in the most objective, accurate, reproducible and automated way possible.

    Report ($) - Provides a way to report information by sending a PDF report via email.

    Total Quality - Provides an overall measure of the quality of a project, linking code quality, design, architecture, and unit testing.

    Portfolio Management (Views) ($) - Enables aggregation of projects. Projects can be grouped into applications, applications into teams, teams into departments...

    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleAuthentication & Authorization

    Crowd - Enables delegation of SonarQube authentication to Atlassian Crowd.

    LDAP - Enables the delegation of SonarQube authentication and authorization to LDAP and Microsoft Active Directory.

    OpenID - Enables user authentication and Single Sign-On via an OpenID provider.

    PAM - Enables the delegation of SonarQube authentication to the underlying PAM subsystem.

    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleAdditional Metrics

    Abacus - Estimates the complexity of each file in order to help you use the "abacus methodology".

    Artifact Size - Reports on the size of the artifact generated by a project.

    Build Stability - Reports on stability of project build using data from your Continuous Integration engine.

    GreenPepper - Collects and reports tests results of executable specifications provided by GreenPepper.

    JIRA Issues - Retrieves and reports the number of project issues from JIRA. Enables the creation of JIRA issues from the issues view of the component viewer.

    Generic Test Coverage - Imports coverage data for any combination of languages.

    JMeter - Displays JMeter test results in SonarQube.

    Mantis - Retrieves and reports the number of project issues from Mantis.

    Security Rules - Allows a more prominent reporting of security-related issues to help you keep them under control.

    Taglist - Generates a report on various tags found in the code, like @todo or //FIXME tags

    Pitest - Integration with PIT, which is a mutation testing tool for Java.

    Thucydides - Reports on Thucydides (acceptance tests tool) metrics.

    Trac - Retrieves and reports the number of project issues from a Trac instance.

    Useless Code Tracker

    Plugin

    - Reports on the number of lines that can be reduced in an application.

    Violation Density - Computes a new metric named violation density. This is kind of "opposite" for rules compliance metric.

    Visualization / Reporting

    Doxygen - Generates the documentation of the application using Doxygen and Graphviz.

    Motion Chart - Displays projects measures using the super sexy Google Motion Chart Gadget.

    PDF Report - Generates a PDF report with the results of projects analysis.

    SCM Stats - Generates reports based on SCM change log information.

    Tab Metrics - Adds a new tab to the component viewer containing information about all metrics for the file.

    Timeline - Displays the history of multiple metrics using a Google Timeline Chart to replay the past.

    Widget Lab - Adds new ways to look at existing data through new widgets.

    Panel
    bgColorwhite
    titleBGColoreee9e9
    titleLocalization
    Language packs are plugins that change the language of the user interface. They rely on the browser language. Default English pack is embedded in SonarQube. Additional language packs are: Chinese, French, German, Greek, Italian, Japanese, Portuguese, Spanish

    External Tools Integration

    • SonarQube OpenSocial Gadgets - A suite of gadgets developed for GateIn that should also work in any other standard gadget container (JIRA4, Shindig)
    • SonarQube gadgets in JIRA4 - Developed by Marvelution, it enables the display of several SonarQube gadgets in JIRA, along with a Project tab panel.
    • SonarQube gadgets in JIRA4 - Developed by Ross Rowe, a set of gadgets that integrate SonarQube information within a JIRA 4 dashboard.
    • SecureCI - An open-source continuous integration solution that is packaged as a virtual machine and can be run with the VMware Player. It integrates many tools like SonarQube, Maven, Nexus, Hudson and Subversion.
    • Structure101 - Tracks metrics for software architecture.

    External Plugins

    • AnthillPro - Supports configuring and launching SonarQube analysis from AnthillPro.
    • BambooBamboo Plugin - Supports configuring and launching SonarQube analysis from Bamboo, the Atlassian CI engine.
    • Memtracker - Tracks peak memory usage during functional test execution.
    • City Model - Displays your source code as a 3D city using SonarQube metrics.
    • PMD Model - Provides information about violations detected by PMD, such as the number of violations by category or the level of implication of PMD in your quality profile.
    • Findbugs Model - Provides information about violations detected by Findbugs, such as the number of violations by category or the level of implication of Findbugs in your quality profile.
    • Checkstyle Model - Provides information about violations detected by Checkstyle, such as the number of violations by category or the level of implication of Checkstyle in your quality profile.
    • ABC Metric - Calculates a new size metric based on ABC (Assignment, Branches, Conditions) in Java projects.
    • Logo Plugin - Includes a widget to show your project logo or any other image in your dashboard.
    • Scertify™ Refactoring Assessment - Detects the portions of an application that can be refactored, gives valuable information on refactoring strategies, and costs.
    • Benchmark Plugin - Shows statistical information (average, minimum, maximum, distribution) to compare your project's metrics and retrieve its rank and percentile inside your SonarQube instance.
    • Formula Plugin - Shows values of new metrics created by a formula with the combination of others.
    • OWASP Plugin - Provides information about the OWASP Top 10 Web Application Security Risks and gives you an overall security risk factor for your project. 
    • FxCop Model - Provides FxCop information for your C# .NET project, such as number of violations by category (design, naming, performance,...) or the level of implication of FxCop in your quality profile.
    • Gendarme Model - Provides Gendarme information for your C# .NET project, such as number of violations by category (correctness, security, exceptions, concurrency, ...) or the level of implication of Gendarme in your quality profile.
    • StyleCop Model - Provides StyleCop information for your C# .NET project, such as number of violations by category (maintainability, naming, ordering, readability, ...) or the level of implication of StyleCop in your quality profile.
    • Database Metrics - Provides a new language to analyze relational database models, with its own set of rules and metrics. Supports MySQL and Oracle.
    • ODT Report - Generates metrics reports from a fully customizable ODT (OpenDocument) template.
    • Dev Team - Provides information about all the members (commiters) of your development team (size metrics, coverage, duplications, compliance index, contribution, ...)

    Deprecated Plugins

    • C - Provides support for C projects. Note that this plugin is still available for download (latest version is 1.8) and usage but will no longer be supported or evolve. It is now replaced by the C/C++ plugin.
    • Technical Debt - Computes technical debt
    .

    *: Commercial plugin

     

    Tempted to write your own plugin and share it on the forge? Want to contribute your plugin back to the community? Just follow the instructions on the Hosting on the Forge page.

    Other plugins