Hi,
Our organisation is currently using SonarQube to scan code repos hosted in cloud Git repos (BitBucket cloud). Someone suggested that this is not a valid “supported” use case for SonarQube, and we should not be using Community edition for cloud-hosted repos. Please can anyone confirm/deny this?
Must-share information:
Using v6.0 of SonarQube
Want to run analysis scans against code (Java predominantly) held in BitBucket cloud repos
We have this up and running, but just wanted to check it’s a “supported” usage
You’re more than 2 LTSs behind. SonarQube 6.0 is way, waaay past EOL. You should upgrade immediately. Your upgrade path is:
6.0 → 6.7.7 → 7.9.4 → 8.5 (last step optional)
To be clear, even in the most recent, commercial edition, there’s no direct ALM integration with Bitbucket Cloud; I’m told it’s an entirely different API from BB Server & we just haven’t gotten there yet.
However, that shouldn’t keep you from setting up your CI/CD engine to check out your BB Cloud repo and performing the normal build and analysis. In short, this should work just fine.
