circle-exclamation
We've updated our static IP addresses. GitHub Enterprise users should update their allowlists.
chevron-right
search
Start FreeLogin

Quickstart guide

A checklist for administrators completing the initial set up of SonarQube Cloud.

By completing this guide you will:

  1. Set up your SonarQube Cloud account

    1. Set up your Organization

    2. Upgrade to Enterprise

      1. SSO via SAML

  2. Onboard projects

  3. Configure CI analysis

  4. Integrate with SonarQube for IDE

  5. Review quality gates

    1. Review pull/merge request analysis for failed quality gates.

    2. Configure pull request decoration on your DevOps platform

hashtag
Set up your SonarQube Cloud account

We use an organization-based structure that mirrors the structure on your chosen DevOps platforms.

Create an organization based on:

Consider upgrading to Enterprise so you can begin Setting up SSO.

hashtag
Onboard your projects

Import repositories from your DevOps platform to create projects:

hashtag
Configure your CI analysis

Set up analysis for your imported projects:

Now that you can review the main branch’s analysis on any of your imported projects.

hashtag
Connect with SonarQube for IDE

Have your developers install SonarQube for IDE to leverage the power of SonarQube in their IDE.

hashtag
Review your quality gates

The purpose of Quality gates is to tell you whether your code is good enough to be pushed to the next step:

  • For the main branch and other long-lived branches, the quality gate answers the question: "Can I release my code today?"

  • For pull requests (and short-lived branches), the quality gate answers the question: "Can I merge this pull request?"

By setting up Pull request analysis, you ensure pull requests are analyzed when they are opened and every time a change is pushed to the pull request branch. You can also configure pull request decoration to allow your developers to view the analysis from SonarQube Cloud directly on the PRs they submit.

By keeping an eye on the quality gates, the decision makers can quickly judge the status of code and decide what to do next.

hashtag
Develop with Sonar

Now that you have seen the benefits of using SonarQube Cloud with your DevOPs platforms, managers and tech leads can check out the security reports and portfolios features to begin monitoring the security and releasability of projects.

PreviousIntegration with DevOps platformsNextGetting started with SonarQube Cloud

Last updated

Was this helpful?