Keeping SonarCloud analysis private!

Bill1 · October 18, 2023, 3:09pm

I am a newbie and non technical but commissioned to carry to some research. Please be kind!

My organisation uses github for code and wishes to use SonarCloud. We want to keep the analysis private

How, in non technical language but as much detail as possible!, do we achieve that? Is it a SonarCloud configuration or is it in github?

Help!

Colin · October 18, 2023, 4:45pm

Hey there.

I think the documentation on Payment and Visibility will help you understand.

In summary: on paid plans, the analysis results of private repos are private by default.

Bill1 · October 19, 2023, 9:46am

Thanks Colin. I think that page and another page ( (Managing Permissions | SonarCloud Docs) have given me the answer.

On a free plan the code and analysis are public in Sonarcloud.

On a paid plan with Github linked to Sonarcloud, Sonarcloud inherits the permissions for Github. So by default:

if the Github repo is public, the code and analysis in Sonarcloud are also public; and
if the Github repo is private the code and analysis in Sonarcloud are also private

In Project>Administration > Permissions under Project Visibility, you can then make:

Is that all correct?

Colin · October 19, 2023, 11:42am

Yes, that’s perfectly correct!

Bill1 · October 19, 2023, 12:23pm

Many Thanks Colin