Skip to main content

SonarQube

View SonarQube code quality metrics

Metadata

Packages

- @backstage-community/plugin-sonarqube
- @backstage-community/plugin-sonarqube-backend

Overview

The SonarQube plugin integrates code quality metrics into Portal, helping teams maintain high code standards by displaying analysis results directly in the portal. This plugin provides comprehensive visibility into code quality, security vulnerabilities, code coverage, and technical debt, enabling developers to proactively address issues and improve code health.

Key Features

  • Code quality metrics dashboard — displays comprehensive code quality metrics including maintainability rating, reliability rating, and security rating.
  • Code coverage statistics — shows test coverage percentages and highlights uncovered code areas.
  • Technical debt tracking — displays estimated time to fix code issues and debt ratio for prioritizing improvements.
  • Security vulnerability detection — identifies security hotspots, vulnerabilities, and potential security risks in the codebase.
  • Code smell identification — highlights maintainability issues and code smells that could impact long-term code health.
  • Bug and issue tracking — displays open bugs, their severity levels, and detailed issue information.
  • Quality gate status — shows whether code passes or fails defined quality gate criteria.
  • Entity mapping — links Backstage components to SonarQube projects via annotations (sonarqube.org/project-key).
  • Historical trend analysis — tracks quality metrics over time to identify improvements or regressions.
  • IDP benefit — centralizes code quality visibility, promotes quality-driven development, and enables self-service access to quality metrics.

References