Sonar cube has been used for Static code analysis and Has been built to Jenkins Pipeline, It allowed to identify huge amount vulnerabilities and helped us to improve our code quality to a great instant.

J'ai utilisé Sonarqube que ce soit avec l'invite de commande de faire une analyse du code avant de le pousser. et aussi la création du pipeline de compilation.

Its very good tool for scanning code and improving code quality by using this tool now we are able to improve code quality which reduces the review time and issues on production.

Really good

We can't live anymore without Sonarqube. When we started using it 5 years ago, the teams adoption was very fast.