Get started with automatic analysis in SonarQube Cloud
20 minutes to complete
Overview
You will learn how to use automatic analysis in SonarQube Cloud to receive immediate code quality and security feedback directly from your repositories. This course demonstrates how to start analyzing code in minutes without the need to configure complex CI/CD pipelines or build scripts.
Learning objectives
- Explain the definition of automatic analysis and how it differs from CI-based analysis
- Identify supported DevOps platforms and programming languages
- Determine if a specific project is eligible for automatic analysis
- Activate automatic analysis for both new and existing projects
- Configure analysis settings using the .sonarcloud.properties file
- Recognize key limitations of automatic analysis to decide when to transition to CI-based analysis
Key topics
- Benefits of automatic analysis such as reduced onboarding friction and continuous feedback on pull requests
- Workflow differences between automatic and CI-based analysis methods
- Platform support for GitHub and Azure DevOps
- Language-specific requirements and constraints for Java, .NET, and C/C++
- Eligibility criteria including supported language thresholds and file size limits
- Organization-level and project-level activation procedures
- Scope customization via the SonarQube Cloud UI or properties files
- Limitations regarding code coverage, monorepos, and analysis logs
Target audience
- Developers
- DevOps engineers
- Engineering leaders
Prerequisites
- A SonarQube Cloud account
- A GitHub or Azure DevOps organization with at least one repository containing code in a supported language
- Create Projects permission in your SonarQube Cloud organization
- For Azure DevOps users: a Personal Access Token (PAT) with Code (Read & write) and Analytics (Read) permissions