This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP SonarQube Project"
(→Main) |
m (→Main) (Tag: Visual edit) |
||
(60 intermediate revisions by 7 users not shown) | |||
Line 4: | Line 4: | ||
{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |- | {| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |- | ||
− | | valign="top" | + | | valign="top" style="border-right: 1px dotted gray;padding-right:25px;" | |
+ | The OWASP SonarQube project aims to provide open source SAST using the existing open source solutions. SonarQube is one of the world’s most popular continuous code quality tools and it's actively used by many developers and companies. | ||
− | + | This project aims to enable more security functionalities to SonarQube and use it as an SAST. This project will use open source sonar plugins, rules, as well as other open source plugins especially FindSecBugs and its security rules. FindSecBugs enables the taint analysis. | |
− | + | '''Docker:''' https://hub.docker.com/r/owasp/sonarqube/ | |
− | |||
− | |||
− | |||
− | + | '''GitHub:''' https://github.com/OWASP/sonarqube | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
==Licensing== | ==Licensing== | ||
− | OWASP SonarQube Project is free to use. It is licensed under the [ | + | OWASP SonarQube Project is free to use. It is licensed under the [http://www.gnu.org/licenses/lgpl-3.0.txt LGPL v3] |
+ | | valign="top" style="padding-left:25px;width:200px;" | | ||
− | + | == Project Leader == | |
− | + | [mailto:[email protected] Vinod Anandan] | |
− | + | == Email List == | |
− | [ | + | [https://lists.owasp.org/mailman/listinfo/owasp_sonarqube Sign Up!] |
− | [ | + | [http://lists.owasp.org/pipermail/owasp_sonarqube/ Archives] |
− | == | + | == Repository == |
+ | Here are the repositories for the open source plugins related to this project. | ||
+ | * [https://github.com/SonarSource/sonarqube SonarQube] | ||
+ | * [https://github.com/find-sec-bugs/find-sec-bugs FindSecBugs] | ||
+ | * [https://github.com/spotbugs/sonar-findbugs SonarFindBugs] | ||
+ | * [https://github.com/VinodAnandan/sonar-pitest SonarPitest] | ||
+ | * [https://github.com/SonarSource/sonar-java SonarJava] | ||
+ | * [https://github.com/SonarCommunity/sonar-javascript SonarJavaScript] | ||
+ | * [https://github.com/SonarCommunity/sonar-php SonarPHP] | ||
− | |||
− | |||
==Classifications== | ==Classifications== | ||
Line 46: | Line 45: | ||
{| width="200" cellpadding="2" | {| width="200" cellpadding="2" | ||
|- | |- | ||
− | | align="center" valign="top" width="50% | + | | rowspan="2" align="center" valign="top" width="50%" | [[File:New projects.png|100px|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects]] |
− | | align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=]] | + | | align="center" valign="top" width="50%" | [[File:Owasp-builders-small.png|link=]] |
|- | |- | ||
− | | align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=]] | + | | align="center" valign="top" width="50%" | [[File:Owasp-defenders-small.png|link=]] |
|- | |- | ||
− | | colspan="2" align="center" | + | | colspan="2" align="center" | [[File:Cc-button-y-sa-small.png|link=http://creativecommons.org/licenses/by-sa/3.0/]] |
|- | |- | ||
− | | colspan="2" align="center" | + | | colspan="2" align="center" | [[File:Project_Type_Files_CODE.jpg|link=]] |
|} | |} | ||
|} | |} | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
=FAQs= | =FAQs= | ||
− | |||
− | |||
− | |||
− | |||
; How to help ? | ; How to help ? | ||
− | |||
− | |||
− | |||
= Acknowledgements = | = Acknowledgements = | ||
Line 126: | Line 66: | ||
== Sponsors : == | == Sponsors : == | ||
− | |||
− | |||
=Project About= | =Project About= | ||
+ | |||
{{:Projects/OWASP_SonarQube_Page}} | {{:Projects/OWASP_SonarQube_Page}} | ||
+ | |||
+ | = Roadmap = | ||
+ | |||
+ | == 2019 Roadmap == | ||
+ | * Documentation | ||
+ | |||
__NOTOC__ <headertabs /> | __NOTOC__ <headertabs /> | ||
− | [[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Document]] | + | [[Category:OWASP Project]] |
+ | [[Category:OWASP_Builders]] | ||
+ | [[Category:OWASP_Defenders]] | ||
+ | [[Category:OWASP_Document]] |
Latest revision as of 23:20, 29 October 2018
The OWASP SonarQube project aims to provide open source SAST using the existing open source solutions. SonarQube is one of the world’s most popular continuous code quality tools and it's actively used by many developers and companies. This project aims to enable more security functionalities to SonarQube and use it as an SAST. This project will use open source sonar plugins, rules, as well as other open source plugins especially FindSecBugs and its security rules. FindSecBugs enables the taint analysis. Docker: https://hub.docker.com/r/owasp/sonarqube/ GitHub: https://github.com/OWASP/sonarqube LicensingOWASP SonarQube Project is free to use. It is licensed under the LGPL v3 |
Project LeaderEmail List
RepositoryHere are the repositories for the open source plugins related to this project.
Classifications |
- How to help ?
Sponsors :
PROJECT INFO What does this OWASP project offer you? |
RELEASE(S) INFO What releases are available for this project? | |||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
2019 Roadmap
- Documentation