🎁 New User? Get 20% off your first purchase with code NEWUSER20 Register Now →
Menu

Categories

DevOps Intermediate

What is SonarQube?

A platform for continuous code quality inspection that detects bugs, vulnerabilities, and code smells through static analysis.

SonarQube analyzes source code for quality issues across 30+ programming languages. It identifies bugs, security vulnerabilities, code smells (maintainability issues), duplications, and test coverage gaps.

Quality Gates define pass/fail criteria for builds. Integration with CI/CD pipelines blocks deployments that do not meet quality standards. SonarCloud offers a hosted version for open-source projects.

Related Terms

Artifact Repository
A centralized storage system for build artifacts like compiled binaries, packages, and container images used in CI/CD pipelines.
Kubernetes
An open-source container orchestration platform that automates deploying, scaling, and managing containerized applications.
Canary Deployment
A deployment strategy that gradually rolls out changes to a small subset of users before deploying to the entire infrastructure.
YAML
A human-readable data serialization language commonly used for configuration files in DevOps tools and applications.
GitHub Actions
A CI/CD platform integrated into GitHub that automates build, test, and deployment workflows using YAML configuration.
Monitoring
The practice of collecting, analyzing, and alerting on system metrics and logs to ensure application health and performance.
 View All DevOps Terms →