Compatibility Matrix

All SCM providers currently require the native executable to be installed on the server where the Sonar analysis will run. For example, for projects hosted on a Subversion repository and analysed on a Jenkins server, svn executable must be available on the Jenkins server (and its slaves if any).

Plugin	1.2	1.3	1.4	1.5
Subversion (1.6+ client)
Git
CVS
Mercurial
Bazaar
Perforce
Team Foundation Server
ClearCase
Accurev
Jazz RTC
MKS Integrity
Visual SourceSafe
CM Synergy
StarTeam

- supported

 - tested by users

- not tested

- not implemented

Features

This plugin collects SCM information on each source file to display in the source code viewer the last committer on lines.

Installation

1. Install the SCM Activity plugin through the Update Center or download it into the SONAR_HOME/extensions/plugins directory
2. Restart the Sonar server

Usage

Configuring the SCM Activity Plugin

1. Set the SCM URL of your project (see SCM URL Format): sonar.scm.url properties. For Git, SVN and Mercurial, the SCM provider is automatically discovered, so what's defined in this property is not taken into account.

2. At project level, go to Configuration > Settings > SCM Activity and specify User (sonar.scm.user.secured) and Password (sonar.scm.password.secured) if needed; if specified then developerConnection will be used, otherwise connection.
3. Launch a new quality analysis and the metrics will be fed.

 

Performance The first analysis of a project with version 1.4 will last longer than the subsequent analyses.

Forcing the Retrieval of Blame Information

In some cases, it is necessary to retrieve blame information on files that have not been changed (for example when a user has been renamed). To force this retrieval, here are the steps to follow:

1. Deactivate the SCM Activity plugin: sonar.scm.enabled = false
2. Run a Sonar analysis on your project
3. Reactivate the SCM Activity plugin: sonar.scm.enabled = true
4. Run a Sonar analysis on your project

 

Note that a property should be added in one of the upcoming versions to explicitly force this retrieval or not. See SONARPLUGINS-2359.

 

Known Issues and Limitations

Subversion "Server certificate verification failed: issuer is not trusted"

Add following to .subversion/servers:

CVS anonymous access not working "org.apache.maven.scm.ScmException: password is required."

Try to set empty password for repository in .cvspass. For example:

I use Git and the annotated sources sometimes display a wrong/old author name

The plugin uses 'git blame' command to find out the author of each line. Because a user can commit with different author name/email, it is advised to have a .mailmap file at the root of the repository. This file is used by 'git blame' to find out canonical name/email of each user.

See http://git-scm.com/docs/git-blame#_mapping_authors

Change Log

Release 1.5 (7 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-1984	When getting blame information fails, no other retrial is done during next Sonar analysis as long as the source is not updated
	SONARPLUGINS-2009	Metric "scm.hash" should be hidden
	SONARPLUGINS-1952	The mechanism used to determine what source files have been updated from one analysis to another is platform dependent
	SONARPLUGINS-1937	The SCM Activity plugin should be activated by default
	SONARPLUGINS-1936	The SCM Activity Plugin must not be executed when we're analyzing a past quality snapshot with help of 'sonar.projectDate' property
	SONARPLUGINS-1876	Make the "sonar.scm.url" parameter optional when using Git and Subversion
	SONARPLUGINS-1983	Typos in the description of the SCM URL property

Release 1.4 (15 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-1896	Always run the SCM Activity plugin with or without local changes.
	SONARPLUGINS-1872	Parallel execution of SCM commands
	SONARPLUGINS-1871	Stop using the changelog/revision to determine if the blame information should be updated on a source file
	SONARPLUGINS-1870	Optimisation of initialisation for project with a lot of changesets
	SONARPLUGINS-1766	Can't integrate SCM Activity into Jenkins with a non-Maven java build
	SONARPLUGINS-1561	Improve loading of changelog on big projects
	SONARPLUGINS-1122	Changelog extractor uses path to Sonar project configuration file
	SONARPLUGINS-1157	SCM Activity plugin fails detecting the revision with mercurial
	SONARPLUGINS-1308	SCM Activity Plugin doesn't work after having changed our SCM
	SONARPLUGINS-1283	CommandLineException: Missing/wrong number of arguments
	SONARPLUGINS-1291	Unable to retrieve TFS changelog
	SONARPLUGINS-1095	Upgrade to Maven SCM 1.7
	SONARPLUGINS-1092	Use API from Maven SCM to validate URL instead of own implementation
	SONARPLUGINS-1094	Scm Activity no longer works for ClearCase
	SONARPLUGINS-1144	Allow blank password for scm user

Release 1.3 (6 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-899	Upgrade to Maven SCM 1.5
	SONARPLUGINS-1067	Support Mercurial
	SONARPLUGINS-1085	The analysis must not fail on SCM blame errors
	SONARPLUGINS-1083	Improve message when SCM URL is badly formed
	SONARPLUGINS-1082	Server certificate verification failed
	SONARPLUGINS-1069	SCM Activity plugin sources documentation link points to invalid location

See Sonar 2.7 Upgrade Notes

Release 1.2 (16 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-861	Error parsing blame for git
	SONARPLUGINS-854	Poor performance
	SONARPLUGINS-413	Upgrade to Maven SCM 1.4
	SONARPLUGINS-348	Add commit count for past periods
	SONARPLUGINS-499	Use sonar-plugin packaging
	SONARPLUGINS-603	Plugin overwrites local auth credentials
	SONARPLUGINS-601	Support of non-java projects
	SONARPLUGINS-706	Use metrics from Sonar Core
	SONARPLUGINS-877	"Last commit" metric wrongly computed
	SONARPLUGINS-882	Group lines by revision
	SONARPLUGINS-1021	Disable Java implementations of CVS and SVN providers
	SONARPLUGINS-1026	Check local modifications only in source directories
	SONARPLUGINS-1025	Rename plugin properties
	SONARPLUGINS-1020	Override the SCM URL defined in Maven
	SONARPLUGINS-1063	Add the property sonar.scm.verbose
	SONARPLUGINS-1027	Add the property sonar.scm.ignoreLocalModifications

Release 1.1 (4 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-373	Support for TFS
	SONARPLUGINS-457	Add Perforce support to the SCM Activity Plugin
	SONARPLUGINS-455	Add support for blame command for Accurev
	SONARPLUGINS-454	Add support for blame command for ClearCase

Release 1.0 (6 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-398	CVS implementation does not work anymore
	SONARPLUGINS-374	Maven-scm-ext should be Java 1.4 compatible
	SONARPLUGINS-350	Scm Activity data should not be gathered when injecting historical data
	SONARPLUGINS-371	Add a config parameter to specify or override (pom) the SCM information
	SONARPLUGINS-368	ScmException while parsing generated java files
	SONARPLUGINS-366	Add violations to blame viewer

Release 0.2 (8 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-359	Add unit tests for SVN and Git
	SONARPLUGINS-358	Use pure Java implementation for CVS
	SONARPLUGINS-353	Support Bazaar SCM
	SONARPLUGINS-354	Using svn java instead of svn cli
	SONARPLUGINS-351	Enable to gather data from a secured SCM
	SONARPLUGINS-352	Source code data should not appear when plugin is not activated or is incorrectly configured
	SONARPLUGINS-331	Support Mercurial SCM
	SONARPLUGINS-330	Support CVS SCM

Release 0.1 (6 issues)
Type	Key	Summary	Priority
	SONARPLUGINS-335	Revision metric
	SONARPLUGINS-333	Show author of each line within source code
	SONARPLUGINS-334	Last commit metric
	SONARPLUGINS-329	Support Git SCM
	SONARPLUGINS-328	Support Subversion SCM
	SONARPLUGINS-322	Create a plugin to report activity in SCM