This project is analysed on SonarQube Cloud!
It is very easy to analyze a C, C++ and Objective-C project with SonarQube Cloud and GitHub Actions using compilation database:
-
Create a
sonar-project.propertiesfile to store your configuration -
In your
.github/workflows/build.ymlfile:-
Generate the compilation database file (set
CMAKE_EXPORT_COMPILE_COMMANDStoON) -
Run the SonarQube scan using the SonarSource/sonarqube-scan-action action with the property
sonar.cfamily.compile-commandsset to your compilation database file
-
-
Ensure that your token is stored as a secret in your repository (
SONARCLOUD_TOKENin this example project). You can request new tokens using Account/Security page.
You can take a look at the sonar-project.properties and build.yml to see it in practice.
A build of the code repository on a Linux platform using CMake build system.
To build the code run:
mkdir build && cd build cmake .. make
An example of a flawed C++ code. The code repository can be analyzed automatically, but it can also be compiled with different build systems using different CI pipelines on Linux, macOS, and Windows.
The code repository is forked into other repositories in this collection to add a specific build system, platform, and CI. The downstream repositories are analyzed either with SonarQube Server or SonarQube Cloud.
You can find examples for:
Using the following build systems:
Running on the following CI services:
-
Additionally, generic examples demonstrate integration with other CIs and manual-configuration examples should help you if you are running locally.
Configured for analysis on:
You can find also a few examples demonstrating:
See examples-structure.adoc for a description of the structure of this GitHub organization and the relations between its different repositories.