DirectorySecurity advisories
Sign in

Directory

sonarqube logo

sonarqube

Last changed
Sign in for updates

Get notified of upcoming product changes, critical vulnerability notifications and patches and more.

Sign in
Versions
Overview
Provenance
Specifications
SBOM
Vulnerabilities
Advisories

Continuous inspection

SonarQube provides the capability to not only show the health of an application but also to highlight issues newly introduced. With a Quality Gate in place, you can achieve Clean Code and therefore improve code quality systematically.

Note: This image bundles JREs for provisioning to client machines (see https://sonarsource.atlassian.net/browse/SONAR-22167, https://sonarsource.atlassian.net/browse/SONAR-22034). These JREs must not be removed, as endpoints in SonarQube depend on them.

Download this Image

The image is available on cgr.dev:

docker pull cgr.dev/chainguard/sonarqube:latest

Trying out SonarQube locally

To try out SonarQube locally, you can run it in a Docker container:

docker run --rm -d --name sonarqube -e SONAR_ES_BOOTSTRAP_CHECKS_DISABLE=true -p 9000:9000 cgr.dev/chainguard/sonarqube:latest

Then access it from your browser via https://localhost:9000.

Installing with the SonarQube Helm chart

Instructions to deploy SonarQube as a Helm chart can be found on https://docs.sonarsource.com/sonarqube/latest/setup-and-upgrade/deploy-on-kubernetes/sonarqube/

Licenses

Chainguard Images contain software packages that are direct or transitive dependencies. The following licenses were found in the "latest" version of this image:

  • Apache-2.0

  • BSD-3-Clause

  • FTL

  • GPL-2.0-only

  • GPL-2.0-or-later

  • GPL-3.0-or-later

  • LGPL-2.1-or-later

View more

For a complete list of licenses, please refer to this Image's SBOM.

Software license agreement

Category
application
tools

Products

Chainguard Images

© 2024 Chainguard, Inc.