Ansible code not detected in SonarQube 2025.1

pw_bil · February 20, 2025, 6:56am

Hi there,

I recently upgraded to SonarQube Enterprise 2025.1 which supports Ansible by default. However, when running an analysis on a repository hosting an Ansible playbook, the engine only detects YAML and nothing related to Ansible. I tried to update the source code to explicitly include a vulnerability covered by the 17 available rules for Ansible, but it does not get spotted.
I have checked the doc to see if there was specific requirements or settings for the Ansible language but could not find anything.

Any idea on what I might be missing here or on how to debug this issue ?

Thanks a lot.

Kind regards

Pierre

ganncamp · February 21, 2025, 1:03pm

Hi Pierre,

Welcome to the community!

I’ll start with the dumb question: are the appropriate rules enabled in your quality profile?

And can you share your analysis log?

The analysis / scanner log is what’s output from the analysis command. Hopefully, the log you provide - redacted as necessary - will include that command as well.

This guide will help you find them.

Thx,
Ann

Topic		Replies	Views
The "BUILT-IN Sonar way" YAML Quality Profile in does not have any Rules SonarQube Server / Community Build sonarqube , plugin , yaml	1	793	March 6, 2023
[NEW RELEASE] Ansible Plugin 1.0.0 Plugin Development	4	1535	October 5, 2018
Ansible analysis now available on SonarQube Cloud Sonar Updates iac , sonarqube-cloud	0	309	November 4, 2024
[NEW RELEASE] Ansible Plugin 2.5.0 Plugin Development	8	3335	January 23, 2022
[NEW RELEASE] Ansible Plugin 2.3.0 Plugin Development	6	1014	January 22, 2020

Ansible code not detected in SonarQube 2025.1

Related topics