sonarlint

问题 I'm evaluating SonarQube 5.4 with SonarLint eclipse plugin. SonarQube as well as the plugin are set up and are running. But now I'm pretty confused how SonarLint is supposed to run in 'connected mode': SonarLint is connected with SonarQube and is bound to the corresponding project. But some issues are only shown in SonarQube. It was my understanding SonarLint should be able to identify issues like Malicious code vulnerability - May expose internal representation by incorporating reference to

问题 In my company, we are currently using SonarLint Eclipse (version 3.1) in connected mode to SonarQube server (version 5.6), with SonarJava (version 4.7.1). We have some plugins and some test plugins that we want to analyze from SonarLint Eclipse : 1.If the source code is in "src/java" , SonarLint works well and displays some issues detected according the rules defined from the SonarQube profile of our SonarQube server. 2.But if the source code is in "src/test/" , SonarLint does not display any

问题 We are currently in the process of evaluating the use of SonarQube/SonarLint for our .NET applications. We are pretty happy with what we've seen so far (and, btw, kudos for bringing SonarQube this far - I've used it a couple of years ago for my PhD project, and it has improved greatly since then!). However, one thing was a bit surprising: When I connected my SonarLint instance to our SonarQube server (which worked just fine) and started syncing the bound project, SonarLint started to download

问题 SonarLint produces an error: Package names should comply with a naming convention (squid:S00120) ... With the default regular expression ^[a-z]+(\.[a-z][a-z0-9]*)*$. However the JLS allows and even recommends using the underscore. Clause 6.1. Declarations says, i.a., If the domain name contains a hyphen, or any other special character not allowed in an identifier (§3.8), convert it into an underscore. Can I change the regular expression or must it be fixed in the product? 回答1: Consider using

问题 Currently in the Eclipse Marketplace SonarLint is only available in the latest version (2.5.1). For a compatibility reason I need to have version (2.2.1). How can i install an older version of my choice? 回答1: Instead of using Eclipse Marketplace, use menu in Help → Install New Software. Add sonarlint URL: http://eclipse.sonarlint.org/ and than uncheck "Show only the latest versions of available software". You will see all available version of sonarlint. If you already have it installed with

问题 It would appear that Sonarsource has discontinued development on the command line instance of the sonarlint tool. The link to the page on the sonarlint website now returns a 404 and there is no mention of the product on the sonarlint website. Does this mean that there will no longer be a command line version of sonarlint? The reason that I am asking this is that I would like to implement a build process that runs static analysis of the code for developers and also as part of the CI process on

问题 Sonar Lint 2.0, It's connected to my own Sonar Qube server with no issues reported by the plugin. The issue is that it is not in sync with my server rules. Found those mentioned in the doc for Java but they also seemed not to be all. I wonder if these java rule list are used only when it's not connected to any server only. Does it have a restriction of what rules to use or synchronize when using a remote server? What exactly we can do to make it synch if it is possible. Plateform: Java

问题 I use SonarLint in my Eclipse to analyze JAVA web project. How to exclude js files from SonarLint analysis? It is because when I open js file, SonarLint starts to slow down the Eclipse performance. Used version: SonarLint for Eclipse 1.0.0.20151015-1547-RELEASE Thanks 回答1: Go to Window->Preferences, SonarLint->Scanner Properties and add the properties: sonar.exclusions=**/*.js sonar.test.exclusions=**/*.js More information about this: http://docs.sonarqube.org/display/SONAR/Narrowing+the

问题 How exactly is sonarQube different from SonarLint ? SonarQube has a server associated with it and Sonar lint works more like a plugin. But what are their specific difference ? 回答1: SonarLint lives only in the IDE (IntelliJ, Eclipse and Visual Studio). Its purpose is to give instantaneous feedback as you type your code. For this, it concentrates on what code you are adding or updating. SonarQube is a central server that processes full analyses (triggered by the various SonarQube Scanners). Its

问题 I've just updated SonarLint plugin for Intellij Idea to version 2.3.2. Changelog says that since version 2.3 rule exclusion in connected mode should be available. Below is my configuration, seems to be corrected, yet, ignored rule still pops up. 回答1: Currently, the exclusions must be defined in the SonarQube server. That's why it's only supported in the connected mode. Sorry if change notes were not clear, I will update the title of https://jira.sonarsource.com/browse/SLI-72. Defining