Azure DevOps Extension for SonarQube Community Build
The Azure DevOps Extension for SonarQube Community Build makes it easy to integrate analysis into your Azure build pipeline. The extension allows the analysis of all languages supported by SonarQube Community Build. For more information, see Azure Pipelines integration overview.
Installation requirements
| Category | Requirement |
|---|---|
| Azure DevOps | The extension will work with:
|
| Azure pipeline agents | The extension will work with all of the hosted agents (Windows, Linux, and macOS):
The minimum agent version for @7 tasks of the Azure DevOps Extension for SonarQube Community Build is 3.218.0 (see also here). |
| Allowed websites | In order to download binaries and communicate with SonarQube Community Build, the following URLs should be whitelisted:
|
| If your instance of SonarQube Community Build is secured | If your SonarQube Community Build instance is configured with HTTPS and a self-signed certificate, you must add the self-signed certificate to the trusted CA certificates of the SonarScanner. In addition, if mutual TLS is used, you must define the access to the client certificate at the SonarScanner level. |
Installing the extension
- Sign in to your Azure DevOps Services organization or Azure DevOps Server collection with the dedicated technical account you created in Setting up integration at the global level.
- From the Visual Studio Marketplace, install the Azure DevOps Extension for SonarQube by selecting the Get it free button.
If upgrading from a previous version of the extension
Smooth migration
The v7 extension embeds the latest version of SonarScanner for .NET and SonarScanner CLI. However, to allow a smooth migration, you can set up your Azure build pipeline to use a previous version of one of these scanners and thus, continue using a previous SonarQube tasks version until you’re ready to upgrade. See Using a specific version of SonarScanner for .NET or CLI.
In that case, the SonarSource binaries site (binaries.sonarsource.com) must be whitelisted.
Prepare analysis configuration task: new scanner mode values
Allowable values for the scannerMode required property of the Prepare Analysis Configuration task have changed with the v7 extension. Please use the following in your @7 tasks:
dotnetfor the .NET modeclifor the CLI modeotherfor the Maven / Gradle mode
Deprecation notices
@6 tasks are deprecated in v7.0 extension and will be dropped in a subsequent release.
Previous versions
As new scanner versions are released, previous requirements and/or planned deprecations will be listed here.
Azure DevOps v6.2.x extension for SonarQube
The current versions of the SonarScanner for .NET and SonarScanner CLI scanners are embedded and depending on your configuration, some additional setup may be required.
If you want to specify the exact .NET or CLI scanner version, use the the msBuildVersion and cliVersion properties. Please check the Using the Prepare Analysis Configuration task on the Azure DevOps integration page for details.
When specifying a particular scanner version, internet access is required by the pipelines calling the .NET or CLI scanners:
- Access to github.com is required to download the SonarScanner for .NET. The GitHub URL and its HTTP redirect,
objects.githubusercontent.com, should be whitelisted. - Access to binaries.sonarsource.com is required to download the SonarScanner CLI. The Sonar binaries should be whitelisted.
For users running on-premise or using self-hosted agents, the minimum agent version for SonarQube v6 tasks is 3.218.0.
in v6.0.1
- Version @5 tasks were deprecated in v6.0.1 and will be dropped in a subsequent release.
Azure DevOps v5.x.x extension for SonarQube
- Version @5 tasks were deprecated in v6.0.1 and will be dropped in a subsequent release.
- For users running on-premise or using self-hosted agents, the minimum agent version for SonarQube version @5 tasks is 2.114.0.
Was this page helpful?
© 2008-2025 SonarSource SA. All rights reserved. SONAR, SONARSOURCE, SONARQUBE, and CLEAN AS YOU CODE are trademarks of SonarSource SA.
