https://github.com/sonarsource/sonar-scanner-jenkins
SonarQube Scanner for Jenkins
https://github.com/sonarsource/sonar-scanner-jenkins
jenkins jenkins-plugin sonarqube
Last synced: 3 months ago
JSON representation
SonarQube Scanner for Jenkins
- Host: GitHub
- URL: https://github.com/sonarsource/sonar-scanner-jenkins
- Owner: SonarSource
- License: lgpl-3.0
- Created: 2011-02-18T09:54:38.000Z (over 14 years ago)
- Default Branch: master
- Last Pushed: 2025-05-30T12:20:32.000Z (4 months ago)
- Last Synced: 2025-06-08T11:51:22.061Z (4 months ago)
- Topics: jenkins, jenkins-plugin, sonarqube
- Language: Java
- Homepage: http://redirect.sonarsource.com/plugins/jenkins.html
- Size: 1.98 MB
- Stars: 183
- Watchers: 38
- Forks: 278
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
- Contributing: contributing.md
- License: LICENSE.txt
- Codeowners: .github/CODEOWNERS
- Security: SECURITY.md
Awesome Lists containing this project
README
SonarQube Scanner for Jenkins
=============================
[](https://next.sonarqube.com/sonarqube/dashboard?id=org.jenkins-ci.plugins%3Asonar)
[](https://plugins.jenkins.io/sonar)
[](https://plugins.jenkins.io/sonar)
This plugin allows easy integration in Jenkins projects of SonarQube ([Server](https://www.sonarsource.com/products/sonarqube/), [Cloud](https://www.sonarsource.com/products/sonarcloud/)) and [SonarQube Community Build](https://www.sonarsource.com/open-source-editions/sonarqube-community-edition/).
SonarQube [Server](https://www.sonarsource.com/products/sonarqube/), [Cloud](https://www.sonarsource.com/products/sonarcloud/) and [SonarQube Community Build](https://www.sonarsource.com/open-source-editions/sonarqube-community-edition/) are widely used static analysis solutions for continuous code quality and security inspection.
They help developers detect coding issues in 30+ languages, frameworks, and IaC platforms, including Java, JavaScript, TypeScript, C#, Python, C, C++, and [many more](https://www.sonarsource.com/knowledge/languages/).
* [Issue tracking](https://sonarsource.atlassian.net/jira/software/c/projects/SONARJNKNS/issues)
Documentation and changelog:
* [SonarQube Server](https://docs.sonarsource.com/sonarqube-server/latest/analyzing-source-code/scanners/jenkins-extension-sonarqube/)
* [SonarQube Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-setup/ci-based-analysis/sonarcloud-extension-for-jenkins/)
* [SonarQube Community Build](https://docs.sonarsource.com/sonarqube-community-build/analyzing-source-code/scanners/jenkins-extension-sonarqube/)
If you want to make changes, please clone the [Git repository](https://github.com/SonarSource/sonar-scanner-jenkins).
With this plugin, you can configure SonarQube instances and run a Sonar Scanner analysis in several ways:
* By injecting the SonarQube configuration as environment variables and using them in any job step (such as Maven, Ant, Gradle, ...)
* Using the SonarQube Scanner build step
* Using SonarScanner for MSBuild analysis steps
'SonarQube Scanner' and 'SonarScanner for MSBuild' are managed as installable tools. List of available versions is retrieved
automatically by Jenkins from a json file hosted on the update site:
* https://updates.jenkins.io/updates/hudson.plugins.sonar.SonarRunnerInstaller.json
* https://updates.jenkins.io/updates/hudson.plugins.sonar.MsBuildSonarQubeRunnerInstaller.json
The files are automatically updated when a new version of SonarScanner or SonarScanner for MSBuild is published,
thanks to crawlers written in groovy:
* https://github.com/jenkins-infra/crawler/blob/master/sonarqubescanner.groovy
* https://github.com/jenkins-infra/crawler/blob/master/sonarqubescannermsbuild.groovy
License
-------
Copyright 2007-2025 SonarSource.
Licensed under the [GNU Lesser General Public License, Version 3.0](http://www.gnu.org/licenses/lgpl.txt)