{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 相关推荐>> 的问题《Is there a way to run sonar on projects without us》','https://www.manongdao.com/q-1333832.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
In a recent sonar test, we found over 30k total violations in our projects. I was told to spend some time to look over all of the blocker/critical violations and fix them accordingly. I was told by my mentor that to run sonar on the projects again, I would have to first commit the changes I made. And because I am an intern they don't want to do that. Is there any another method besides committing the changes and run sonar?
I am using Intellij and the projects are mavenized, if that helps with anything.
Sonar internally uses plugin like PMD, Checkstyle etc. You can install PMD or checkstyle plugin for eclipse and it will show all the potential violations. It will be useful for you to see how far you have fixed the problems before you checkin
You could install hudson + sonar locally in your machine and run it every time that you want to, no need to commit code.
You will need to expend quite some time setting up stuff, but there is a lot of good documentation to do so.
You can use SonarLint. You can configure it with your IDE, and give it access to your SonarQube or SonarCloud, and configure each project to use the Quality Profiles used in your Sonar instance. So your IDE will show code smells, etc. while you code.
Running SonarQube server with docker may help.
Install sonarqube server
Run server
Resume container when stopped
Install SonarScanner
Download and install SonarScanner from scanner here.
Basic Configuration
Create a file named
sonar-project.propertiesinsider your project directory with following contents.Run Analysis
Access Results
open http://localhost:9000 in browser.
login with default username & password (admin, admin).
References
Unbelievable solutions for something a simple script or plugin should be capable of. If Git commit can do it, why can't another? I found Sonar(Lint) plugin which works well with IJ. Maybe it was late into the game but it is available now.
Yep, set up a local Sonar server by following the instructions at http://docs.sonarqube.org/display/SONAR/Installing
Once you've done that you can view all your projects at localhost:9000 by doing mvn sonar:sonar. It's not necessary to install a build server, so long as your projects are maven-enabled you should be able to just do mvn sonar:sonar whilst a local sonar server is running.
You can also install the eclipse plugin (if you use eclipse) which will allow you to do realtime code analysis - so you can see when you've managed to solve a violation. Violations are highlighted directly in the code as well which helps considerably.
http://docs.sonarqube.org/display/SONAR/SonarQube+in+Eclipse