How often should I scan our main branch?

We started using sonarQube to analyze our projects pull requests recently. I was wondering how often you recommend scanning the main branch?

Our project is massive and has a ton of issues that SonarQube has flagged. So it will be impossible to fix them all on our main branch. Should we never rescan our main branch, or do it every day?


Welcome to the community!

I think most people consider per-commit to be ideal for main branch analysis. Failing that, I’d say at least daily.

Yeah, we get that. That’s why we recommend a Clean as You Code approach.