Introduction

This section explains how to set up GitHub and SonarQube Server for their integration at the global level. You need the global Administer System permission in SonarQube Server to perform this setup.

This setup consists of:

• Server base URL You must configure your SonarQube Server base URL in SonarQube Server, otherwise, integration features will not work correctly.

• Setting up a GitHub App You need to use a GitHub App to connect SonarQube Server with a GitHub instance.

• Setting up user provisioning and authentication: see GitHub.

• Setting up the report of security alerts Starting in Developer Edition, SonarQube Server can provide feedback about security issues inside the GitHub interface itself as code scanning alerts under the Security tab.

• Setting parameters for GitHub Actions You can define at the global level the parameters used in GitHub Actions workflows to connect to SonarQube Server (Server URL and token).