PHP
Language-specific properties
Discover and update the PHP-specific properties in Administration > General Settings > Languages > PHP
Analyze php.ini Files
The PHP analyzer can analyze php.ini
files with some specific rules (if these rules are activated in your quality profile). php.ini
files must be part of the project you are analyzing, meaning the php.ini
files have to be inside the directories listed in sonar.sources
. Rules targeting php.ini
files can be quickly identified through the php-ini tag set on them.
Custom Rules
Overview
The PHP analyzer parses the source code, creates an Abstract Syntax Tree (AST), and then walks through the entire tree. A coding rule is a visitor that is able to visit nodes from this AST.
As soon as the coding rule visits a node, it can navigate its children and log issues if necessary.
Example plugin
To get started a sample plugin can be found here: php-custom-rules-plugin.
Writing a plugin
Custom rules for PHP can be added by writing a SonarQube Plugin and using PHP analyzer APIs. Here are the steps to follow:
Create SonarQube plugin
- create a standard SonarQube plugin project
- attach this plugin to the SonarQube PHP analyzer through the
pom.xml
(Gradle Kotlin:build.gradle.kts
) - implement the following extension points:
- Plugin
- RulesDefinition and PHPCustomRuleRepository, which can be implemented by a single class, to declare your custom rules
- declare the RulesDefinition as an extension in the Plugin extension point.
Implement a rule
- create a class that will hold the implementation of the rule, it should:
- extend
PHPVisitorCheck
orPHPSubscriptionCheck
- define the rule name, key, tags, etc. with Java annotations.
- extend
- declare this class in the
RulesDefinition
.
Implementation details
Using PHPVisitorCheck
To explore a part of the AST, override a method from the PHPVisitorCheck. For example, if you want to explore "if statement" nodes, override PHPVisitorCheck#visitIfStatement method that will be called each time an ifStatementTree node is encountered in the AST.
When overriding a visit method, you must call the super method in order to allow the visitor to visit the children of the node.
Using PHPSubscriptionCheck
To explore a part of the AST, override PHPSubscriptionCheck#nodesToVisit
by returning the list of the Tree#Kind
of node you want to visit. For example, if you want to explore "if statement" nodes the method will return a list containing the element Tree#Kind#IF_STATEMENT
.
Create Issues
From the check, the issue can be created by calling CheckContext#newIssue
method.
Testing Checks
To test custom checks you can use the method PHPCheckVerifier#verify
. You should end each line with an issue with a comment in the following form:
Comment syntax is described here.
Related Pages
Was this page helpful?