Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

Now you can download a PDF Report from Overview Panel.

The SonarQube Evidence Report is an invaluable resource for development and security teams, providing comprehensive insights into the quality and security of the codebase. This report, available for download in PDF format, offers a detailed analysis of various metrics and trends, helping teams to make informed decisions and prioritize remediation efforts.

  1. Ratings Overview:

    • Reliability Rating: Assesses the robustness of the code, indicating the likelihood of experiencing bugs.

    • Security Rating: Measures the security of the codebase, highlighting vulnerabilities that could be exploited.

    • Coverage Rating: Shows the extent of code covered by tests, ensuring that critical parts of the application are tested.

    • Duplications: Identifies duplicate code segments, which can lead to maintenance challenges and potential inconsistencies.

  2. Historical Graphs:

    • Vulnerabilities: Tracks the number of security vulnerabilities over time, providing insights into how the codebase's security posture has evolved.

    • Bugs: Displays the historical trend of bugs detected in the code, helping to monitor improvements or deteriorations in code quality.

    • Code Smells: Shows the accumulation or resolution of code smells, which are indicators of potential maintainability issues.

  3. Security Hotspots:

    • Priority Levels: Categorizes security hotspots based on their priority, helping teams to focus on the most critical issues first.

    • Quantity: Lists the total number of security hotspots detected in the codebase.

    • Status: Provides the current status of each security hotspot, whether it's open, fixed, or under review.

This report serves several crucial purposes:

  • Comprehensive Quality and Security Assessment: By offering detailed ratings and historical trends, the report helps teams to understand the current state of their codebase and track improvements over time.

  • Informed Decision-Making: The insights provided enable teams to make data-driven decisions about where to focus their efforts, whether it's improving test coverage, reducing code duplications, or addressing critical security vulnerabilities.

  • Prioritization of Remediation Efforts: With detailed information on security hotspots, including their priority and status, teams can efficiently allocate resources to resolve the most pressing issues first.

  • Continuous Improvement: The historical graphs and ongoing metrics allow teams to monitor their progress and continually refine their processes to enhance the overall quality and security of their software.

By leveraging the SonarQube Evidence Report, organizations can ensure they maintain a high-quality, secure, and reliable codebase, ultimately leading to more robust and trustworthy software applications.

  • PDF download button:

image-20240723-105830.png
  • PDF Report:

image-20240723-110011.png

image-20240723-110123.png

image-20240723-110146.png

  • No labels