What do you think?
Rate this book
Sonar In Action
Software quality is about a lot more than slinging good code. As a developer you use numerous tools, techniques, frameworks, and processes as you write, organize, build, test, refactor, and continuously improve your applications. Sonar, a free and open source quality platform, makes it radically easier to track, manage, and enhance the overall quality of your code. It leverages respected tools like Findbugs, PMD, and Checkstyle, and implements well-established best practices to provide a full-featured, robust platform for code quality measurement, review, and remediation. Originally Java-only, Sonar now works with many other languages.
Sonar in Action shows developers how to use the Sonar platform to help them continuously improve their source code. The book presents Sonar's core Seven Axes of Quality: design /architecture, duplications, comments, unit tests, complexity, potential bugs, coding rules. You'll find simple, easy to follow discussion and examples as you learn to integrate Sonar into your development process. Once you've used Sonar to identify problems in your code, you'll learn how to leverage Sonar's review functionality and IDE integration to make fixing those issues a smooth and transparent process. Sonar boasts an active community with many high-quality contributed plug-ins. If you're up for it, you'll learn how to extend Sonar by writing your own plug-ins.
Sonar in Action shows developers how to use the Sonar platform to help them continuously improve their source code. The book presents Sonar's core Seven Axes of Quality: design /architecture, duplications, comments, unit tests, complexity, potential bugs, coding rules. You'll find simple, easy to follow discussion and examples as you learn to integrate Sonar into your development process. Once you've used Sonar to identify problems in your code, you'll learn how to leverage Sonar's review functionality and IDE integration to make fixing those issues a smooth and transparent process. Sonar boasts an active community with many high-quality contributed plug-ins. If you're up for it, you'll learn how to extend Sonar by writing your own plug-ins.
- GenresTechnologyProgramming
392 pages, Paperback
First published April 28, 2013
9 people are currently reading
31 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 7 of 7 reviews
May 25, 2015
I rate it moderately high, because it seems to fulfill the mission it has aimed for. But ...
I don't think I've learned / gained much by learning this book. Why? Well, you can call it SonarQube's lost manual, but ... does SQ need a manual? This piece of software is really straightforward & you can learn majority of stuff in this book just by trying SQ out. Most likely it will take you less time than reading.
Why did I read the book then? I've expected much more information about low-level customization of SQ, about adapting it to different tech stacks, application paradigms, development workflows. About integration with various different applications to actually get as much benefit from interconnected tooling as possible. But in this area book is lacking - yes, there's a chapter about Continuous Inspection, there's even a chapter about coding custom rules or few paragraphs about integrating with JIRA, but ... all these really lack depth.
If you're new to SQ or you want to try SQ as an additional to your dev stack -> this book may be quite a reasonable way to get familiar with SQ, but you won't miss much if you just check the software by yourself.
I don't think I've learned / gained much by learning this book. Why? Well, you can call it SonarQube's lost manual, but ... does SQ need a manual? This piece of software is really straightforward & you can learn majority of stuff in this book just by trying SQ out. Most likely it will take you less time than reading.
Why did I read the book then? I've expected much more information about low-level customization of SQ, about adapting it to different tech stacks, application paradigms, development workflows. About integration with various different applications to actually get as much benefit from interconnected tooling as possible. But in this area book is lacking - yes, there's a chapter about Continuous Inspection, there's even a chapter about coding custom rules or few paragraphs about integrating with JIRA, but ... all these really lack depth.
If you're new to SQ or you want to try SQ as an additional to your dev stack -> this book may be quite a reasonable way to get familiar with SQ, but you won't miss much if you just check the software by yourself.
July 21, 2015
This book is awesome. The authors, that are also project contributors, describe just EVERYTHING about SonarQube. The book is very easy to read and has a lot of useful information. It will also be a great reference book for those who work with SonarQube.
August 26, 2019
You might think of SonarQube as a self-training tool that you can use out of the box. This book however explores the full potential of this tool to manage the quality of the code that your teams develop and maintain. With an excellent logical structure and detailed examples, this guide will unlock a 360 degree view of how this tool can impact your technical base line.
May 7, 2017
nice introduction and user manual for SonarQube, but unfortunately a lot of features are not available int the last version of Sonarqube (6.3)
January 16, 2014
My initial interest in this book stemmed from the fact that we had just installed SonarQube and were beginning to collect some project data but had yet to really use any of the information. I hoped that I would learn some effective ways to set up projects in SonarQube, interpret the data, and then put that information to good use and I have not been disappointed.
The first thing that you notice is that the authors are passionate about the topic - not only about SonarQube itself, but also the art of writing quality code and understanding how best to analyze and test it. Having both been coders they are able to provide information not only on how to do something but why you should do it and provide meaningful examples to back it up. Their style is very approachable, almost as if they are speaking to you and trying to walk you through the topic. I found it took me longer to get through the book than I expected as I tended to sit with it while I was actually working in SonarQube, evaluating projects, and improving code. Every chapter seemed to hold a nugget that I needed to apply or tell someone else about.
The book is not intended as an administrative manual (although it does have administration and configuration points), but instead a resource that discusses common software design, development, and testing problems and provides you with the information you need to both understand the challenges you face as well as how to apply SonarQube components. I loved the fact that the authors did not just walk me through an endless list of plugins and simply describe what those components do, but provided you with the information you need to understand the problems all software teams face and then discuss ways that SonarQube may help you. Essentially, they are teaching you how to fish. When I was done I felt like I had a much better understanding of what many of the components were telling me and how to take action on that information.
There were some areas in the book where some of the screenshots were not up to date or some of the component description was a little dated, but in fairness they tended to mention areas where they know or expected there would be changes.
The end result is that I found this to be an informative, well written book that will help me and our engineering department (both software and test engineers) to collectively design, write, and deploy better code and automation tests. Our software engineers, test engineers, leads, and managers will all benefit from a more well thought out SonarQube setup and a better understanding of what the various components meant and how best to apply them. Our team is excited about what we can do with SonarQube, we just need to finish applying what was learned in the book and then I need to spend some time showing them what I learned.
The first thing that you notice is that the authors are passionate about the topic - not only about SonarQube itself, but also the art of writing quality code and understanding how best to analyze and test it. Having both been coders they are able to provide information not only on how to do something but why you should do it and provide meaningful examples to back it up. Their style is very approachable, almost as if they are speaking to you and trying to walk you through the topic. I found it took me longer to get through the book than I expected as I tended to sit with it while I was actually working in SonarQube, evaluating projects, and improving code. Every chapter seemed to hold a nugget that I needed to apply or tell someone else about.
The book is not intended as an administrative manual (although it does have administration and configuration points), but instead a resource that discusses common software design, development, and testing problems and provides you with the information you need to both understand the challenges you face as well as how to apply SonarQube components. I loved the fact that the authors did not just walk me through an endless list of plugins and simply describe what those components do, but provided you with the information you need to understand the problems all software teams face and then discuss ways that SonarQube may help you. Essentially, they are teaching you how to fish. When I was done I felt like I had a much better understanding of what many of the components were telling me and how to take action on that information.
There were some areas in the book where some of the screenshots were not up to date or some of the component description was a little dated, but in fairness they tended to mention areas where they know or expected there would be changes.
The end result is that I found this to be an informative, well written book that will help me and our engineering department (both software and test engineers) to collectively design, write, and deploy better code and automation tests. Our software engineers, test engineers, leads, and managers will all benefit from a more well thought out SonarQube setup and a better understanding of what the various components meant and how best to apply them. Our team is excited about what we can do with SonarQube, we just need to finish applying what was learned in the book and then I need to spend some time showing them what I learned.
March 9, 2014
Anyone interested in improving the quality of their software project(s) should utilize SonarQube. This book definitely helps in understanding the---almost overwhelming amount of---metrics SonarQube provides. Following along with this book, you'll be able to get your projects setup and under analysis to complement your current code review processes.
After reading this book, I have a much better understanding of the software as well as some handy hints. I definitely feel that I'll be able to get our application back on the quality track without creating a seemingly insurmountable challenge given the initial analysis results.
After reading this book, I have a much better understanding of the software as well as some handy hints. I definitely feel that I'll be able to get our application back on the quality track without creating a seemingly insurmountable challenge given the initial analysis results.
March 23, 2014
Good overview of the functionality presented in SonarQube. Explains well the Complexity metrics and different approaches to doing continuous inspection.
Displaying 1 - 7 of 7 reviews