Implement a custom metric to use in Quality Gate checks

Hello everyone,

I’m using SonarQube v.7.9.1 and I wanted to ask if it’s possible to define a custom metric to use in my Quality Gates.

For example I’d like to check if:
Vulnerabilities / (Vulnerabilities + Bugs + Code Smells) * 100
is less than X%.

Is it possible to implement something like that inside a Quality Gate condition?

Thanks to everyone that will answer.

Hey there.

The answer is no.

Can you explain why such a metric would be useful (or more useful than the other metrics available?)

Colin

Hi Colin, thanks for your quick answer.

Such metric could be useful because it’s one of the 5 OWASP’s KPI for Web Application Security, called “Security to Quality Defect Ratio”.

You can see it at page 18 of this deck of slides: