SonarQube for Continuous Inspection and Code Review
Ends soon! Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.
SonarQube for Continuous Inspection and Code Review
Included with
Recommended experience
Recommended experience
What you'll learn
Analyze code quality using SonarQube to identify bugs, code smells, and security vulnerabilities across multiple languages.
Integrate SonarQube into CI/CD pipelines to automate static code analysis and enforce quality gates during builds.
Configure custom quality profiles, rules, and dashboards in SonarQube to align with team coding standards and practices.
Apply clean code principles and static analysis techniques to improve maintainability, readability, and long-term software quality.
Skills you'll gain
Details to know
See how employees at top companies are mastering in-demand skills
There are 4 modules in this course
This course equips you with core skills in static code analysis and code quality management using SonarQube. Through practical use of SonarQube, you'll learn to analyze, monitor, and enhance code quality across projects in modern DevOps pipelines.
From setting up the SonarQube environment to enforcing Clean Code practices and integrating with CI/CD tools like GitHub Actions, this course equips you with the skills to maintain robust, maintainable codebases. By the end of this course, you will be able to: • Explain the importance of code quality and continuous inspection in software development • Configure and run static code analysis using SonarQube and SonarScanner • Customize quality profiles and enforce quality gates for various programming languages • Integrate SonarQube into CI/CD workflows using tools like GitHub and Maven • Use SonarQube dashboards and metrics to track and improve team code quality This course is ideal for freshers, software developers, and DevOps engineers who are responsible for maintaining code quality and integrating quality checks into CI/CD workflows. Prior experience with Git, build tools (like Maven), and a basic understanding of programming language such as Java will help you get the most out of this course. Join us to discover how SonarQube helps deliver cleaner, more maintainable code and strengthens quality control across your development lifecycle.
This module introduces the core concepts of static code analysis and the importance of code quality in modern development. Learners will explore SonarQube’s key features, understand the principles of Clean Code, and examine how SonarQube fits into quality-focused development workflows.
What's included
13 videos9 readings4 assignments2 discussion prompts
13 videos•Total 60 minutes
- Course Introduction•5 minutes
- Introduction to SonarQube•4 minutes
- History and Key Features of SonarQube•5 minutes
- Understanding Code Quality Dimensions•5 minutes
- Sonar and Code Quality•5 minutes
- Introduction to Clean Code•6 minutes
- Clean as You Code•4 minutes
- Clean as You Code - Applications•3 minutes
- Code Analysis Based on Clean Code•5 minutes
- Instance Components of SonarQube•4 minutes
- SonarQube Web Interface•6 minutes
- Ways to Perform Code Analysis•5 minutes
- Dashboard Overview After Code Analysis•4 minutes
9 readings•Total 83 minutes
- Welcome to SonarQube for Continuous Inspection and Code Review•10 minutes
- Evolution of Static Code Analysis Tools•10 minutes
- Importance of Code Quality in Modern Software Development•10 minutes
- How to use Discussion Prompt•3 minutes
- Dynamic Code Analysis and Its Role in Software Quality•10 minutes
- How “Clean as You Code” Aligns with Agile Practices•10 minutes
- Static Code Analysis and Its Role in Software Quality•10 minutes
- Client-Server Interaction in SonarQube•10 minutes
- Summary: Fundamentals of SonarQube and Code Quality•10 minutes
4 assignments•Total 48 minutes
- Knowledge Check: Fundamentals of SonarQube and Code Quality•30 minutes
- Practice Quiz: Introduction to SonarQube and Code Quality•6 minutes
- Practice Quiz: Clean Code and Clean as You Code•6 minutes
- Practice Quiz: SonarQube Architecture and Interface•6 minutes
2 discussion prompts•Total 6 minutes
- Introduce Yourself•3 minutes
- Evolution of Static Code Analysis Tools•3 minutes
This module focuses on the practical setup of SonarQube and its integration with databases and scanners. Learners will install and configure SonarQube, connect it with PostgreSQL, and perform code analysis using tools like SonarScanner and Maven.
What's included
12 videos6 readings4 assignments2 discussion prompts
12 videos•Total 55 minutes
- SonarQube Installation•4 minutes
- PostgreSQL Installation and Configuration•3 minutes
- Creating Database and Table in PostgreSQL•5 minutes
- Setting up PostgreSQL for SonarQube•4 minutes
- Code Analysis using SonarScanner•5 minutes
- Maven Installation and Sample POM Creation•3 minutes
- Project Analysis using Maven•5 minutes
- Sample Code Analysis on a Java Project•5 minutes
- Managing Quality Gates•4 minutes
- Examples of Quality Profiles (Java and other languages)•6 minutes
- Creating Quality Profiles and Adding Rules•5 minutes
- Sample Code Analysis with Custom Quality Profiles•6 minutes
6 readings•Total 60 minutes
- Database Integration Best Practices for SonarQube•10 minutes
- Prerequisites for Installing SonarQube Community Edition•10 minutes
- Role of Build Tools (e.g., Maven) in Static Analysis•10 minutes
- Rule Management and Customization Strategy in SonarQube•10 minutes
- How GitHub Actions Enhance Automated Code Quality Checks•10 minutes
- Summary: Setting Up SonarQube and Running Code Analysis•10 minutes
4 assignments•Total 48 minutes
- Knowledge Check: Setting Up SonarQube and Running Code Analysis•30 minutes
- Practice Quiz: Installing and Configuring SonarQube•6 minutes
- Practice Quiz: Performing Code Analysis using Scanners•6 minutes
- Practice Quiz: Quality Profiles and Gates•6 minutes
2 discussion prompts•Total 6 minutes
- Deployment Challenges•3 minutes
- Creating Effective Quality Gates•3 minutes
This module covers advanced use cases such as integrating SonarQube with Git and GitHub Actions for automated code analysis. Learners will also manage user roles and permissions, ensuring secure and collaborative project environments.
What's included
7 videos5 readings3 assignments1 discussion prompt
7 videos•Total 36 minutes
- Introduction to Git•5 minutes
- Adding a Project to Git Repository•7 minutes
- Setting up GitHub Actions for SonarQube•4 minutes
- Automating Code Analysis with GitHub Actions and SonarQube•7 minutes
- Permission Template in SonarQube•4 minutes
- Global Permission•4 minutes
- Managing Users, Groups, and Project Roles in SonarQube•4 minutes
5 readings•Total 50 minutes
- CI/CD Integration with Static Code Analysis•10 minutes
- How GitHub Actions Enhance Automated Code Quality Checks•10 minutes
- Role-Based Access Control (RBAC) in SonarQube•10 minutes
- User Authentication and Authorization•10 minutes
- Summary: Advanced Integration and Project Management•10 minutes
3 assignments•Total 42 minutes
- Knowledge Check: Git Integration and Project Management•30 minutes
- Practice Quiz: Integrating Git and GitHub Actions•6 minutes
- Practice Quiz: User and Role Management in SonarQube•6 minutes
1 discussion prompt•Total 3 minutes
- Benefits of GitHub Actions with SonarQube•3 minutes
The final module consolidates your learning through a practice project and graded assessment. You’ll apply the skills and concepts acquired throughout the course to real-world scenarios, demonstrating your ability to implement code quality analysis in real-world CI/CD pipelines.
What's included
1 video1 reading2 assignments1 discussion prompt
1 video•Total 2 minutes
- Course Summary•2 minutes
1 reading•Total 60 minutes
- Practice Project: Implementing Continuous Code Quality Inspection for a Fintech Platform Using SonarQube•60 minutes
2 assignments•Total 75 minutes
- End Course Knowledge Check: SonarQube for Continuous Inspection and Code Review•45 minutes
- Implementing Scalable Code Quality Management with SonarQube in a Regulated Healthcare Project•30 minutes
1 discussion prompt•Total 3 minutes
- Describe Your Learning Journey•3 minutes
Explore more from Software Development
- Status: Preview
Course
- Status: Free Trial
Course
- Status: Preview
Course
Why people choose Coursera for their career
Frequently asked questions
SonarQube is a static code analysis tool used to detect bugs, code smells, and security vulnerabilities in your codebase.
SonarQube supports many programming languages including Java, JavaScript, Python, C#, C++, TypeScript, and more.
Learner should have a basic knowledge of at least one programming language (e.g., Java, Python, JavaScript, etc.) and fundamental software development concepts like version control, debugging, and build tools.
More questions
Financial aid available,
¹ Some assignments in this course are AI-graded. For these assignments, your data will be used in accordance with Coursera's Privacy Notice.