About

This plugin is intended to integrate existing mojos (versions, later on enforcer) as violations into SonarQube(only for maven3).

The first check is with the versions plugin to make software aging transparent.

presentation about this plugin here

• (German) http://lkwg82.github.io/projects/2013.04.08-is24-sonar-maven-checks/
• (English)   http://lkwg82.github.io/projects/2013.04.08-is24-sonar-maven-checks_en/

Download & Change Log

2013-06-06

• adjusted category name to 'MojoBridge' 75b3f2defadbd8dd3988e1a4af28763f52320980
• only show violation of current submodule in case of multi module project 37703531008ca41388bb1d43ac73c4a5e10695fe 
• alpha and beta versions will be excluded per default 5a7768ab107ac766bab46d64342970e128aefa8d
• renamed from sonar-maven-checks to sonar-mojo-bridge c6b16461cff9ff93918f3237569fd6af617b8545 

2013-05-21

• rename plugin from sonar-maven-checks to sonar-mojo-bridge

2013-05-12

• added enforcer:enforce with rule DependencyConvergence

2013-05-05

• bugfix: default values of quality profiles were not used [SONARPLUGINS-2846]
• bugfix: removed warning of line < 1  [SONARPLUGINS-2846]

2013-04-08  added white-/blacklisting for updates of artifacts to be notified of

2013-03-31 added line detection to show correct line in pom.xml

as long as not official SonarQubeplugin, please download latest from https://github.com/SonarCommunity/sonar-maven-checks/tree/master/releases

Screenshots

Description / Features

This plugin enables the analysis of maven projects in SonarQube with some well-known maven mojos (only maven 3).

The following mojos are integrated with their inherited rules:

• versions:display-dependency-updates
  • maven:Old Dependency
• versions:display-plugin-updates
  • maven:Missing Plugin Version
  • maven:Old Plugin
  • maven:INCOMPATIBLE MAVEN VERSION
  • maven:NO MINIMUM MAVEN VERSION
• enforcer:enforce 
  • with rule DependencyConvergence
    

Roadmap

• try to get membership as official SonarQubeplugin, according to http://docs.codehaus.org/display/SONAR/Plugin+Hosting (on hold, not accepted due to use of maven plugins inside plugin, see full discussion http://sonar.markmail.org/message/5xw7huebckrsopp7?q=list:org%2Ecodehaus%2Esonar%2Edev+maven-checks)
• keep compatible with latest SonarQube versions
• accept user feedback ;)

Installation

1. Copy the jar into /extensions/plugins/ directory
2. Restart SonarQube Web server

Usage

only maven projects with the sonar maven plugin

activate the rules in the quality profile (activated by default) and run the analysis

Contribution

Everybody with an interest in developing new integration of mojos into this plugin and into SonarQubeis invited to contribute.

Project Setup

clone repositoriy and dont forget to add lombok for your ide (http://projectlombok.org/download.html)

General Advice

If you start developing, you should respect the guidelines:

- http://docs.codehaus.org/display/SONAR/Developer+guide

Please get in contact with me before starting contributing.

Issues