[NEW RELEASE] SonarSolidity Plugin

Hello everyone,

I am glad to announce that a SonarQube analyzer for Solidity is now available! :slight_smile:
SonarSolidity has rules that support Solidity’s best practices and track security vulnerabilities and code smell issues.
Also, SonarSolidity supports the import of reports from Solium linter version 1.0.0 .
You shall find the release here .

I would like to invite any Solidity developer to take advantage of SonarSolidity’s value.
Feedback is very much appreciated, as well as contributions.

Cheers,
Stelios

6 Likes

How can I submit my contracts do Sonar?
I remember when I used Sonar with Maven and it was simple as “mvn sonar:sonar”. But I have no idea how to do in a project based on Javascript and Solidity.
Thanks in advance

Hi Fabiano,

The scanner CLI should be used on such projects: https://docs.sonarqube.org/display/SCAN/Analyzing+with+SonarQube+Scanner

++

1 Like