SonarQube Widget Plugin (up to v8.4.2)

SonarQube is an open source platform for continuous inspection of code quality. It supports languages: Java (including Android), C/C++, Objective-C, C#, PHP, Flex, Groovy,JavaScript, Python, PL/SQL, COBOL, Swift, etc. It also offers reports on duplicated code, coding standards, unit tests, code coverage, code complexity,potential bugs, comments and design and architecture. It records metrics history and provides evolution graphs ("time machine") and differential views. It provides fully automated analysis: integrates with MavenAntGradle and continuous integration tools (Atlassian BambooJenkinsHudson, etc.). It integrates with EclipseVisual Studio and IntelliJ IDEA development environments through the SonarLint plugins and external tools: JIRAMantisLDAP, etc. and is expandable with the use of plugins.

The Checkmarx CxSAST SonarQube plugin enables adding a CxSAST widget to any SonarQube Global Dashboard or Project Dashboard. The widget displays current and trending security vulnerability information for a code project.

CxSAST SonarQube widget plugin is not yet supported for SonarQube v6.2 and above.