How exactly is sonarQube different from SonarLint ? SonarQube has a server associated with it and Sonar lint works more like a plugin. But what are their specific difference ?
SonarLint is YOUR Code Quality & Code Security tool. SonarQube is YOUR TEAM's Code Quality & Code Security tool. You and your team align to collectively own code quality and accelerate delivery. Imagine everyone on your team being on the same code quality page!
Difference between SonarLint and SonarQubeSonarLint gives instant feedback as you type your code. Sonarqube give a vision of the quality of your complete project code base. SonarLint concentrates on what you are writing run time while coding. SonarQube analyzes all the source code for all files in frequent interval.
SonarLint is an IDE extension that helps you detect and fix quality issues as you write code. Like a spell checker, SonarLint squiggles flaws so that they can be fixed before committing code.
SonarQube is the central server holding the results of analysis. SonarQube Scanner / sonar-scanner - performs analysis and sends the results to SonarQube. It is a generic, CLI scanner, and you must provide explicit configurations that list the locations of your source files, test files, class files, ...
SonarLint lives only in the IDE (IntelliJ, Eclipse and Visual Studio). Its purpose is to give instantaneous feedback as you type your code. For this, it concentrates on what code you are adding or updating.
SonarQube is a central server that processes full analyses (triggered by the various SonarQube Scanners). Its purpose is to give a 360° vision of the quality of your code base. For this, it analyzes all the source lines of your project on a regular basis.
Both SonarLint and SonarQube rely on the same static source code analyzers - most of them being written using SonarSource technology.
It should be added that SonarQube also performs scans with 3rd party analyzers (findBugs, checkstyle, PMD) whereas SonarLint does not include those. I think the reason is a prioritization on performance and findBugs relying on java byte-code.
Thereby your findings in SonarQube and SonarLint can vary, if the underlying quality profile uses 3rd-party scanners.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With