As you might already know, using Sonar one can measure code coverage by Unit Tests (UTs) on a maven project. Even better, in multi-module projects, coverage is aggregated at parent-module’s level. That’s great!
I have done several demos to clients on Sonar. Last week, I did a Brown Bag @ Cigital on Sonar. As I was preparing the Virtual Machine which I created for Sonar, I noticed the OWASP Plug-in. I downloaded the trial version and ran analysis on a few projects.
In the recent months, I've been involved in developing a language plugin for sonar that displays different metrics for a specified language. I am writing this post as there is not much content available for this topic even when sonar is a widely popular tool.
I’m continuing the “Through the eyes of sonar” series with all these immutable objects you use all the times. Immutable objects are simply objects whose state (the object’s data) cannot change after construction.
Chapters 1, 2, and 8 have been updated. Chapter 10, “Let Sonar drive code reviews” has been added. Kindle and ePub versions are once again available for this MEAP.
The authors have updated chapters 1, 2, and 8 to address the comments from an internal review. They have also released chapter 10, which shows how to use Sonar in a code review—one of the most loved/hated, revered/maligned duties of a coding team that (almost) never gets done.
Please let us know what you think about the revised chapters and chapter 10 in the Author Online forum. We look forward to hearing from you!
Sonar is a code analyser performing quality checks on various languages. It is composed of different code analysers: CheckStyle, PMD, FindBugs and Squid. Each of them provides its own set of rules and Sonar integrates those various reports in a unified web interface.
Last week, I blogged about "Continuous Quality Using Sonar". It requires just 5 simple steps if you have Hudson running as your CI(Continuous Integration) server to install and use Sonar. Yes, 5 simple steps is all you need to get a neat and intuitive dashboard from Sonar. So, lets see what those 5 simple steps are.
The Sonar team is proud to announce the release of Sonar 3.3. This new version includes new features that we believe are worth stopping your daily work for a couple of minutes to check out: support of multi-language project, overall code coverage, enhanced resource exclusion feature, improving user experience…
This article aims to show you how to quickly fix the most common java security code violations. It assumes that you are familiar with the concept of code rules and violations and how Sonar reports on them. However, if you haven’t heard these terms...