SonarQube is an open-source platform for continuous inspection of code quality. It can perform automatic reviews via static analysis of code to detect bugs, code smells and security risks. While SonarQube looks at the security of the code written by your developers, Meterian will take care of the security of the opensource components used in your application.
This type of integration is possible thanks to our dedicated plugin. Our plugin will introduce the Meterian way quality profile to you SonarQube instance. Our quality profile is made of a set of 4 new coding rules which will be used when filing issues according the Meterian analysis' findings.
The meterian rules
Read on to find out more on how to integrate insights from Meterian into the SonarQube reporting pages via our dedicated plugin.