1. Home
  2. Software Engineering
  3. SonarQube Fundamentals

  • SonarQube Fundamentals

  • Group Training

    Learn to automate code quality testing to detect bugs and security vulnerabilities and build pipelines for continuous code inspection with SonarQube!

    Training code
    CGASONQBCE
    Spoken Language
    English
    Language Materials
    English
    Dayparts
    4
    Price
    €1.300,00
    excl. VAT No extra costs.

    Book SonarQube Fundamentals now

    In group training, we use several learning methods to help you obtain the knowledge, give you helpful insights and get you inspired. Check the Spoken language and Language materials on the left for language info.

    This course currently isn't planned. Please fill in your contact details below and we'll get in touch with you within two working days.

    Name*
    Email Address*
    Phone number*
     

    What is SonarQube Fundamentals

    SonarQube is a code quality testing tool developed by SonarSource for performing automatic reviews to detect bugs and security vulnerabilities. It can be integrated easily into existing workflows and build pipelines for continuous code inspection. By the end of this course you will know how to set up a SonarQube server and how to use Quality Gate.
    Introduction

    • Overview of SonarQube features and architecture
    • What is SonarCube?
    • Why use SonarQube?
    • SonarQube installation and configuration in Linux?
    • How Sonar Works?
    • What is Static Code Analysis?

    Getting Started

    • Installing and configuring the server
    • Navigating the SonarQube server UI
    • Setting up SonarScanner with build tools (Gradle, Maven, Ant, etc.)

    Integrating with DevOps Tools

    • Installing SonarQube
    • Installing and configuring Jenkins plugins
    • Importing Azure DevOps repositories into SonarQube
    • Setting up projects with GitHub Repositories

    Running Code Tests and Analysis

    • Defining analysis parameters
    • Executing tests and generating data
    • Working with third- party analyzers

    Improving and Maintaining Code Quality

    • Analyzing project history
    • Defining rules with Quality Profiles
    • Enhancing global security features
    • Adding coding rules with SonarQube APIs
    • Best practices and tips

    Troubleshooting
    Summary and Next Steps

     
     

    Who should attend SonarQube Fundamentals

    IT professionals who wish to use SonarQube to run code reviews that are fully- integrated into development tool chains, such as Jenkins, GitHub, Azure DevOps.
    Project managers, Developers, Architects, QA, Support Engineers, DevOps, DevSecOps, Infosec, Process engineers.

    Prerequisites

    To make the most of this course, you will need to have:

    • Basic knowledge on CI/CD processes.
    • Working knowledge with Java.

    Objectives

    After completing this course, you will be able to:
    Set up the necessary development environment to start running automatic code reviews.

    • Integrate SonarQube with continuous integration tools, such as Jenkins, Azure DevOps.
    • Run continuous code inspections to eliminate bugs and security vulnerabilities.
    • Collect and analyze data to drive improvements for code cleanup and maintenance.
     
    Incompany

    Learn to automate code quality testing to detect bugs and security vulnerabilities and build pipelines for continuous code inspection with SonarQube!

    Training code
    CGASONQBCE
    Spoken Language
    English
    Language Materials
    English
    Dayparts
    4
    Price
    €1.300,00
    excl. VAT No extra costs.

    With an Incompany training you have several advantages:

    - You choose the location
    - You experience the training with your colleagues, so it is always in line with your practice
    - The trainer can tailor explanations, examples and assignments to your organization
    - In consultation exercises can be adapted to organization-specific questions

    Request more information or a quote.

     

    What is SonarQube Fundamentals

    SonarQube is a code quality testing tool developed by SonarSource for performing automatic reviews to detect bugs and security vulnerabilities. It can be integrated easily into existing workflows and build pipelines for continuous code inspection. By the end of this course you will know how to set up a SonarQube server and how to use Quality Gate.
    Introduction

    • Overview of SonarQube features and architecture
    • What is SonarCube?
    • Why use SonarQube?
    • SonarQube installation and configuration in Linux?
    • How Sonar Works?
    • What is Static Code Analysis?

    Getting Started

    • Installing and configuring the server
    • Navigating the SonarQube server UI
    • Setting up SonarScanner with build tools (Gradle, Maven, Ant, etc.)

    Integrating with DevOps Tools

    • Installing SonarQube
    • Installing and configuring Jenkins plugins
    • Importing Azure DevOps repositories into SonarQube
    • Setting up projects with GitHub Repositories

    Running Code Tests and Analysis

    • Defining analysis parameters
    • Executing tests and generating data
    • Working with third- party analyzers

    Improving and Maintaining Code Quality

    • Analyzing project history
    • Defining rules with Quality Profiles
    • Enhancing global security features
    • Adding coding rules with SonarQube APIs
    • Best practices and tips

    Troubleshooting
    Summary and Next Steps

     
     

    Who should attend SonarQube Fundamentals

    IT professionals who wish to use SonarQube to run code reviews that are fully- integrated into development tool chains, such as Jenkins, GitHub, Azure DevOps.
    Project managers, Developers, Architects, QA, Support Engineers, DevOps, DevSecOps, Infosec, Process engineers.

    Prerequisites

    To make the most of this course, you will need to have:

    • Basic knowledge on CI/CD processes.
    • Working knowledge with Java.

    Objectives

    After completing this course, you will be able to:
    Set up the necessary development environment to start running automatic code reviews.

    • Integrate SonarQube with continuous integration tools, such as Jenkins, Azure DevOps.
    • Run continuous code inspections to eliminate bugs and security vulnerabilities.
    • Collect and analyze data to drive improvements for code cleanup and maintenance.
     

  • Related

    Fields of Expertise
    Software Engineering
     

  • e-CF competences with this course

     

    At Capgemini Academy we believe in transparency and clarity in the training landscape. That is why, in the table below, we show you to which e-CF competence this training or certification contributes. For more information about how to use the e-Competence Framework read more here. If you want to know how you can apply the e-CF within your organization, read more on this page.

    e-Competence Level12345
    B.1.Application Development     
    A.6.Application Design     
    B.6.ICT System Engineering