Provides information about security standards (OWASP, CWE, ASVS and ISO5055) including risk factor and security vulnerabilities and categories
Generate your project report in PDF, Excel or from a customizable Open Document (ODT)
Get ratings for all your rule tags in SonarQube
Provide a list of static code analyzers (for PHP language) to highlight code structures that may have a negative ecological impact: energy and resources over-consumption, "fatware", shortening terminals' lifespan, etc.
Provide a list of static code analyzers (for Java language) to highlight code structures that may have a negative ecological impact: energy and resources over-consumption, "fatware", shortening terminals' lifespan, etc.
Provides a user-friendly interface to manage your plugins
Enables analysis for Properties files in SonarQube
db* CODECOP for SonarQube is a plugin for SonarQube. The plugin analyses SQL and PL/SQL code and calculates various metrics and checks the code for compliance of the Trivadis PL/SQL & SQL Coding Guidelines Version 4.2.
Allows the use of Azure Active Directory as an authentication source for SonarQube.
CNES plugin that allows users to download a bundle of project reports in multiple formats.
Rules to check SQL statements in MyBatis Mapper XML files.
Delegate authentication using the OpenID Connect protocol
Sonar Hadolint Plugin allows users to import results from Hadolint into SonarQube. To do this, it creates a Dockerfile language with highlightings & metrics, and a Quality Profile with Hadolint & Shellcheck rules.
Provides integration with Quboo to use Gamification techniques to fix your legacy code.
Automated Code Analysis and review tool for Mule projects
Provides a new bunch of metrics for your SonarQube instance
Open Source initiative for Apple Swift language support in SonarQube.
SonarQube Traditional Chinese Language Pack (not compatible with the "Chinese Pack" which uses Simplified Chinese)
Analyzer for WebDriver (Selenium or Appium) tests.
This plugin is able to generate several metrics to provide additional information into your SonarQube analysis.
Import i-Code CNES results for Fortran(77 & 90) and Shell
Brings features from quality tools like CPD, Findbugs and PMD to Message Broker, improving code quality and helping to improve runtime performance and throughput.
Enterprise features for SonarQube including Application Portfolio Management, PDF Reporting, Rules Remediation Cost Customization, Backup & Restore of a Project. Governance is now included in Enterprise Edition.
Sonar plugin to analyze messageflows of IBM Integration Bus projects.
This plugin is not maintained anymore. Please switch to our Swift plugin both for Swift or Objective-C
Pushes preview analysis results as pull request comments on GitHub (integration scripting required)
SonarQube plugin to run the JDeveloper 11g or 12c code auditing tool (ojaudit) in the background and report all violations found by the Oracle JDeveloper auditing framework to SonarQube.
Enables developers to identify their individual contributions to a project and fosters best practices in code quality self-management
This plugin has been integrated into SonarQube Governance plugin in Enterprise Edition.
Provides the ability to collect information about stability of build
Add the Google Analytics tracking script to the SonarQube web application.
Display how a set of metrics evolves over time (requires an internet access).
Connects SonarQube to Atlassian JIRA in various ways. This plugin is deprecated and no longer working.
Enable user authentication and Single Sign-On through an OpenID provider
Generates the documentation of the application using Doxygen and Graphviz
This website is open-source and it is located at https://github.com/sonarplugins/sonarplugins.github.io
Feel free to change the info and create a pull request to update any plugin information or to add new plugins to the index.
The format is quite simple, just create a new file with a date in the _posts folder,
for instance "2023-04-21-mypluginkey.markdown" and fill it with the plugin information:
--- title: My Plugin layout: plugin homepage: https://mypluginhomepage organization: my organization organization_url: my organization url download_url: https://myplugindownloadurl download_version: X.Y.Z download_description: release notes for the version download_date: YYYY-MM-DD license: GNU LGPL 3 ... developers: list of developers that contribute to the plugin sonarqube_version: 8.9-9.9-10.x category: choose a category description: plugin description details: additional details seo: name: My Plugin headline: My Plugin - SonarQube Plugin type: ItemPage ---
Once the pull request is merged the data will be updated on the website.
Take a look at the samples here.
Plugins available at SonarSource update center are refreshed automatically.
sonarplugins.com is just a website where you can find SonarQube™ plugins to extend your SonarQube™ installation with awesome features.
We don't have any responsibility about the plugins listed here.
This is just a plugin compilation site.
This is not an Official Marketplace for SonarQube™.
If you have developed a SonarQube™ plugin (either free or commercial) and you want to make it public in this list, feel free to contribute!