Where the SonarCloud analysis happens?

gianfaProm · June 14, 2023, 8:01pm

Hi, I would like to make sure I understand where the Azure DevOps based SonarCloud analysis takes place.

According to what I understand from what is written here, the analysis happens in the pipeline build environment, through the scanner offered by the extension, so the real computation is in charge of the azure project owner, and only the results finally get sent to SonarCloud. Do I understand this correctly?

Moreover, if the above is true, no code is sent to SonarCloud, is it right?

Thanks in advance

Colin · June 15, 2023, 1:02pm

Hey there.

The bulk of the code analysis itself happens on the Azure DevOps build agent, the results of which (including the code that was analyzed) are sent to SonarCloud.

system · June 22, 2023, 1:03pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
SonarQube and Azure DevOps SonarQube Server / Community Build	6	36	October 23, 2024
Does sonar cloud store any code? SonarQube Cloud security	6	3530	November 9, 2020
(Research) Information request VSTS scanner timing SonarQube Server / Community Build sonarqube , scanner , azuredevops-services	1	412	May 21, 2019
SonarCloud with BitBucket Repos and Azure Pipelines SonarQube Cloud bitbucketcloud	8	1616	June 19, 2020
Analyze .NET code when build server doesn't have access to SonarQube SonarQube Server / Community Build csharp , scanner , azuredevops-services	1	340	April 29, 2021

Where the SonarCloud analysis happens?

Related topics