How sonarqube can be configured to scan the Oracle BML files (BigMachines Extensible Language)

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)
    Sonar Version: Version 9.6.1 (build 59531)

  • what are you trying to achieve
    I have a requirement to configure CI/CD work flow for Oracle BML script files (file extension ‘.bml’) for which the code quality analysis is required to be configured.
    There are no existing languages supported for bml script in sonar, though it is similar to Javascript but not exactly the same coding format followed.
    As the coding syntax for Javascript and bml varies, if we configure the sonar project to use Javascript language to scan the bml files, the files are not parsed properly to scan and it shows the parsing error such as "Unexpected token, expected “(” for any array declaration or loops etc from the sonar scanner execution step in jenkins job.

  • what have you tried so far to achieve this
    I have configured Javascript language for sonar project to scan the bml files, but getting file parsing error due to the default ‘js-vulnerability rules’ validations on the files and it does not consider those files for scanning even though I have created new quality profile with custom rules configured.

Any suggestions, to achieve sonarqube configuration that will scan for the BML files?

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

You’ll need to declare a new language if the syntax (and be able to parse it, and calculate metrics…) is not the same as vanilla javascript. See the documetnation on supporting a new language

:warning: Make sure you upgrade to SonarQube v9.9 LTS soon, not only to benefit from our Best LTS Ever™, but because soon we will systematically ask users to upgrade when they ask questions about earlier versions of SonarQube, which are now considered unsupported. :smiley: