Start FreeLog in
SonarCloud | Getting started with Enterprise | Viewing the enterprise reports | Viewing portfolios

Viewing portfolios

On this page

This feature is only available in the Enterprise plan.

A portfolio is a set of projects within your enterprise that enables an aggregate view of the project metrics and risks. More precisely, a portfolio consists of project branches: for each project, a single long-lived branch is added to the portfolio.

Portfolio metrics

Click a portfolio metric below to view its definition:

  • A metric is evaluated through a letter grade (A to E).
  • A risk level is associated with each metric (except the releasability):
    • High: if at least one project in the portfolio is rated E or D.
    • Medium: if at least one project in the portfolio is rated C or B.
    • Low: If all projects in the portfolio are rated A.
  • Each metric is calculated by SonarCloud for new code and for overall code. 
Releasability
  • The releasability rating is based on the proportion of projects in the portfolio that have passed their quality gate. The rating grid is as follows:
    A: > 80%
    B: > 60% and <= 80%
    C: > 40% and <= 60%
    D: > 20% and <= 40%
    E: <= 20%
  • At the project level: The state of the quality gate associated with the project can be passed or failed.  
Security
  • The average security rating of all projects in the portfolio.
  • At the project level: The security rating is related to issues that mark potential weaknesses to hackers. The rating grid is as follows:
    A: 0 vulnerability
    B: at least one minor vulnerability
    C: at least one major vulnerability
    D: at least one critical vulnerability
    E: at least one blocker vulnerability
Reliability
  • The average reliability rating of all projects in the portfolio.
  • At the project level: The reliability rating is related to issues that mark code where you will get behavior other than what was expected. The rating grid is as follows:
    A: 0 bugs
    B: at least one minor bug
    C: at least one major bug
    D: at least one critical bug
    E: at least one blocker bug
Maintainability
  • The average maintainability rating of all projects in the portfolio.
  • At the project level: The maintainability rating is related to issues that mark code that will be more difficult to update competently than it should. 
    The maintainability rating is based on the technical debt ratio value (the ratio between the cost to develop the software and the cost to fix it). The default rating grid is as follows (this grid can be changed):
    A: <= 0.05
    B: > 0.05 and <= 0.1
    C: > 0.1 and <= 0.20
    D: > 0.2 and <= 0.5
    E: > 0.5
Security review
  • The average security review rating of all projects in the portfolio.
  • At the project level: The security review rating is based on the percentage of reviewed security hotspots. Note that security hotspots are considered reviewed if they are marked as Acknowledged, Fixed, or Safe. The rating grid is as follows:
    A: >= 80%
    B: >= 70% and <80%
    C: >= 50% and <70%
    D: >= 30% and <50%
    E: < 30%

For more information about the portfolio metric calculation, see Managing portfolios.

Retrieving a portfolio

  1. In the top navigation bar of the SonarCloud interface, select My Portfolios > Your enterprise. The Portfolios page opens with a list of portfolios and their different rating values on overall code.
  2. Above the list, you can use the search box to search by portfolio name.
  3. In the list, select a portfolio name to open the portfolio.

Viewing a portfolio

  1. Retrieve and open the portfolio as explained above in Retrieving a portfolio
  2. On the Overview page, you can view the portfolio status summary.
  3. Select a project link to view the corresponding project branch(es) on the Portfolio Breakdown page.

Viewing a portfolio breakdown

  1. Retrieve and open the portfolio as explained above. 
  2. Go to Portfolio Breakdown. The page lists the projects defined in the portfolio and to which you have the Browse permission. They are ordered according to the Releasability column. 
  3. You can switch between New code and Overall code views.
  • Administering portfolios
    This page is directed at the portfolio admin and users authorized by the admin. It explains how to manage the portfolio permissions, add projects to a portfolio, delete a portfolio.
  • Managing the enterprise-related permissions in Managing your enterprise
    This section is directed at the enterprise admin and explains how to grant the Create Portfolios permission.

Was this page helpful?

© 2008-2024 SonarSource SA. All rights reserved. SONAR, SONARSOURCE, SONARQUBE, and CLEAN AS YOU CODE are trademarks of SonarSource SA.

Creative Commons License