SonarQube is the leading open-source platform for continuous code quality inspection, designed to perform automatic static code analysis. With the ability to support over 30 programming languages, SonarQube helps detect bugs, security vulnerabilities, and other issues during software development.
Similar to Kong Gateway, we will use Helm Chart to install SonarQube. We will configure Database, Storage and necessary components in the values.yaml file. After successful installation, we will proceed to create ALB Ingress Controller to be able to access SonarQube’s management interface.
Web Server: Provides web interface for developers and managers to view code quality reports, system configuration and project management. Supports browsing quality snapshots and performing configuration changes.
Compute Engine: Responsible for processing analysis reports from SonarScanners, calculating metrics and storing results in database. This is the “engine” that performs converting raw analysis data into quality snapshots.
Search Server: Powered by Elasticsearch, provides fast search capability in UI for issues, measures and other analysis information.
SonarQube Database: Database stores all important system information such as configuration, quality metrics, analysis results and user permissions. Database supports PostgreSQL (recommended), Microsoft SQL Server, Oracle.