Skip to content

CI/CD with Jenkins – Part 6: SonarQube integration with Jenkins Pipeline for code analysis

In this tutorial, we are going to configure the declarative pipeline with SonarQube.

Create repositories and upload project code to Gitlab

Create two repositories in GitLab, one is for backend code, another is for frontend code. upload code to each repository.

For Project code, you can download from Here.

image 20200421220716107

Click new button to create a Pipeline Job in Jenkins

image 20200422004331123

Scroll down to pipeline section and choose pipeline script from SCM,
select Git fo SCM, and select credentials if your repository is private.
enter Jenkinsfile in the Script Path.

image 20200422011056077

Create a Jenkinsfile under the root folder of the project, the content of Jenkins file is listed below. In this Jenkinsfile, we define some variables:
1. git_auth is for communicating between Jenkins and Gitlab.
2. ${branch} is a variable that you can choose the branch of the Project in Jenkins.

//gitlab authorization
def git_auth = "7df0eb32-eb59-42cf-853a-58249fcede3b"
node {
stage('check out code') {
checkout([$class: 'GitSCM', branches: [[name: '*/${branch}']],
doGenerateSubmoduleConfigurations: false, extensions: [], submoduleCfg: [],
userRemoteConfigs: [[credentialsId: "${git_auth}", url:

Scroll up to general settings, tick ‘This project is parameterized’ and add String Parameter.

image 20200422012201051 1

After saving the job, we can build with Parameters to see the result.

image 20200422202659692 1

Wait for a while, we can see the task is successfully finished.

image 20200422202744056

Analyze code with SonarQube

We have already learned about how to run a basic pipelie task, now we are moving a little bit futher – adding another stage to analyze code in Jenkins.

Select the task we created and configure.

add Choice Parameters, because we want to analyze multiple times.

image 20200422203548069

Create file

# must be unique in a given SonarQube instance
# this is the name and version displayed in the SonarQube UI. Was mandatory prior to SonarQube 6.1.

# Path is relative to the file. Replace "\" by "/" on Windows.
# This property is optional if sonar.modules is set.

# Encoding of the source code. Default is default system encoding

Updating the Jenkinsfile

//git authorization ID
def git_auth = "7df0eb32-eb59-42cf-853a-58249fcede3b"
//git URL
def git_url = "git@"
//image version
def tag = "latest"
//Harbor URL
def harbor_url = ""
//image project name
def harbor_project = "tensquare"
//Harbor login credentials
def harbor_auth = "833d1a75-f3db-4aec-9cc4-75a77e423163"

node {
    stage('check out code') {
        checkout([$class: 'GitSCM', branches: [[name: '*/${branch}']],
            doGenerateSubmoduleConfigurations: false, extensions: [], submoduleCfg: [],
            userRemoteConfigs: [[credentialsId: "${git_auth}", url:'git@']]])
    stage('code check') {
        def scannerHome = tool 'sonarqube-scanner'
        withSonarQubeEnv('sonarqube') {
        sh """
            cd ${project_name}

Build the task, we can select which module you want to analyze and build in this time.

image 20200422212045856

Login the SonarQube portal to check analysis result.

image 20200422212136875

build the rest of the project and check the code analysis result.

image 20200422212944643


In this part, we know how to create a basic pipeline job, how to build task with parameters.

Leave a Reply