Here's the list of plugins hosted on the SonarSource plugin forge.
Tempted to write your own plugin and share it? Want to contribute your plugin back to the community? Just follow the instructions on the Hosting on the Forge page.
A language plugin provides the ability to run analysis on a specific language. More than 20 languages are currently supported. Available language plugins are:
- included: Checkstyle, FindBugs, JaCoCo, PMD
- optional: Clirr, Clover, Cobertura, Emma, fb-contrib, Sonargraph, Quality Index, SIG Maintainability Model, Toxicity Chart
- optional: ToadCodeXpert
Developer Cockpit ($) - Enables each developer to identify their individual contributions to a project, and fosters best practices in code quality self-management.
Issues Report - Run local analyses on your source code. (Compatible with all languages).
Branding - Adds your own logo to the SonarQube UI.
Build Breaker - Makes the build fail if pre-defined alert thresholds are hit.
Fortify - Imports reports from Fortify: Fortify Security Rating, number of issues, and vulnerability issues. Vulnerability issues are recorded as SonarQube issues.
Google Calendar - Posts an event when a project is analysed by SonarQube.
Maven Report - Adds a link to the Maven site to reference the project's SonarQube dashboard.
SCM Activity - Collects and reports information on commits using SCM data.
Authentication & Authorization
LDAP - Enables the delegation of SonarQube authentication and authorization to LDAP and Microsoft Active Directory.
OpenID - Enables user authentication and Single Sign-On via an OpenID provider.
PAM - Enables the delegation of SonarQube authentication to the underlying PAM subsystem.
Portfolio Management (Views) ($) - Enables aggregation of projects. Projects can be grouped into applications, applications into teams, teams into departments, etc.
PDF Report - Generates PDF report from project analysis. Note that report is not configurable and cannot be sent by email and the plugin is limited to Java Maven projects.
Report ($) - Reports information by sending customizable PDF reports by email. Information can come from project or/and global measures.
Technical Debt Evaluation (SQALE) ($) - Adds an implementation of the SQALE Methodology to compute technical debt, which supports the evaluation of a software application’s source code in the most objective, accurate, reproducible and automated way possible.
Abacus - Estimates the complexity of each file in order to help you use the "abacus methodology".
Artifact Size - Reports on the size of the artifact generated by a project.
Build Stability - Reports on stability of project build using data from your Continuous Integration engine.
JMeter - Displays JMeter test results in SonarQube.
Mantis - Retrieves and reports the number of project issues from Mantis.
Security Rules - Allows a more prominent reporting of security-related issues to help you keep them under control.
Taglist - Generates a report on various tags found in the code, like
Trac - Retrieves and reports the number of project issues from a Trac instance.
Useless Code Tracker Plugin - Reports on the number of lines that can be reduced in an application.
Violation Density - Computes a new metric named violation density. This is kind of "opposite" for rules compliance metric.
Visualization / Reporting
Doxygen - Generates the documentation of the application using Doxygen and Graphviz.
Motion Chart - Displays projects measures using the super sexy Google Motion Chart Gadget.
SCM Stats - Generates reports based on SCM change log information.
Timeline - Displays the history of multiple metrics using a Google Timeline Chart to replay the past.
Widget Lab - Adds new ways to look at existing data through new widgets.
Language packs are plugins that change the language of the user interface. They rely on the browser language. Default English pack is embedded in SonarQube. Additional language packs are: Chinese, French, Greek, Italian, Japanese, Portuguese, Spanish