Project Summary
SonarQube is an open source software quality management tool, dedicated to continuously analyze and measure source code quality. Using SonarQube throughout the whole development project life cycle drastically improves visibility for every stakeholder. This gained visibility allows to manage risks, reduce maintenance costs and improve agility by implementing a real quality first approach. Teams can now seamlessly embrace quality with fun.
Badges
In a Nutshell, SonarQube...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with stable Y-O-Y commits -
...
took an estimated 80 years of effort (COCOMO model)
starting with its first commit in September, 2010
ending with its most recent commit 3 months ago
GNU Lesser General Public License v3.0 only
Permitted
Commercial Use
Modify
Distribute
Place Warranty
Use Patent Claims
Forbidden
Sub-License
Hold Liable
Required
Distribute Original
Disclose Source
Include Copyright
State Changes
Include License
Include Install Instructions
These details are provided for information only. No information here is legal advice and should not be used as such.
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Vulnerability Exposure Index
Did You Know...
-
...
in 2016, 47% of companies did not have formal process in place to track OS code
-
...
check out hot projects on the Open Hub
-
...
there are over 3,000 projects on the Open Hub with security vulnerabilities reported against them
-
...
anyone with an Open Hub account can update a project's tags
30 Day SummaryJul 25 2021 — Aug 24 2021
|
12 Month SummaryAug 24 2020 — Aug 24 2021
|
