Skip to content

Sonar

Jump to bottom
springside edited this page May 9, 2012 · 41 revisions

##Overview Sonar -- an open platform to manage code quality. 是SCM, CI, Issue Tracker和Wiki外,另一个必不可少的项目管理软件.

什么maven site, 什么Jenkins插件,和它比都弱爆了。

Configuration

每次升级Sonar版本,总要做的几样配置,Sonar backup只能备份所有profile的rule和alert,以及Global Settings。

  • DashBoard: 在首页点击edit filter, 删除Versions,Links,BuildDates,加入Major violations,Minor violations,Coverage,。其他如Skip UnitTest,Duplication可以根据需要添加。
    另外,对于Multi-Module的项目,可以新建一个Share的Filter, 选择显示subproject。
  • Widgets: 在任一项目页点击Configure widgets, 删除LCOM4, Complexity和Descritpion。再把Events移到右边。再添加TimeLine(加入如Coverage,Rules compliance的Metrics)
  • 调整分值: 直接加大2倍:在General Settings->General中,INFO=0;MINOR=3;MAJOR=9;CRITICAL=15;BLOCKER=30
  • 在UpdateCenter安装SCM插件, 能方便看出谁造成的violation
  • 在UpdateCenter安装TagList插件, 统计代码中遗留的//TODO等标签。

SpringSide Profile

SpringSide的Profile在Soanr 3.0 的Sonar way with Findbugs规则上进行修改。 规则已导出到support/sonar目录里。

###Checkstyle changes

  • Enable "JavaNCSS", classMaximum from 1500 to 500, fileMaximum from 2000 to 600-- 排除注释后的每个方法/类的最大代码行数。methodMaximum保持50的默认值。
  • Enable "Nested For Depth", max from 1 to 3 -- if/else/for/while等嵌入代码的层数。
  • Enalbe "Parameter Number", max from 7 to 5
  • Change "Magic Number" from Minor to Info
  • Change "Redundant Throws" allow uncheked=true
  • Disable "Final Class"

可选修改:

  • Enable "Declaration Order", from Info to Minor
  • Enalbe "One Statement Per Line"
  • Disable "Hide Utility Class Constructor"
  • Disable "Visibility Modifier"

###PMD changes

  • Disable "Avoid Throwing Raw Exception Types"
  • Disable "Signature Declare Throws Exception"

可选修改:

  • Enable "Add Empty String"
  • Enalbe "Assignment In Operand"
  • Enable "Avoid Multiple Unary Operators"
  • Enable "Boolean Get Method Name"
  • Enable "Misplaced Null Check"
  • Enalbe "Package case"
  • Enable "Use Proper Class Loader"

###FindBugs changes

  • Disable "Bad practice - Method invoked that should be only be invoked inside a doPrivileged block"
  • Disable "Correctness - Field not initialized in constructor"

可选修改:

  • Disable "Malicious code vulnerability - May expose internal representation by incorporating reference to mutable object"
  • Disable "Malicious code vulnerability - May expose internal representation by returning reference to mutable object"

###Sonar Rules changes

  • Enable "Avoid commented-out lines of code"

###告警阀值

  • Rules compliance : 95% warning, 90% error
  • Coverage : 70% warning, 50% error

返回参考手册

Clone this wiki locally