OverOps Announces SonarQube Integration
June 02, 2020
Share this

OverOps announced a new integration with static analysis tool SonarQube.

The plugin allows mutual customers, including some of the largest banks in the United States, to leverage the combined power of static and runtime analysis to detect critical code issues before they get to production. As pressure to move fast increases, OverOps and SonarQube enable application teams to ensure the quality of their software, and release code with confidence, avoiding costly production outages.

"In today's software delivery landscape, quality and development velocity are frequently at odds, and the stakes for errors in production have never been higher," said Krish Subramanian, Chief Analyst, Rishidot Research. "Static and dynamic analysis are both essential to an effective shift left strategy and to preventing major outages. The combination of products like OverOps and SonarQube in a CI/CD environment is a powerful way to ensure both quality and speed simultaneously."

Static code analysis tools like SonarQube have emerged as a critical component in many organizations' shift left quality initiatives. By examining an application's source code against a given set of rules or coding standards before a program is run, SonarQube users are able to detect code vulnerabilities and code smells, ensuring adherence to commonly accepted coding guidelines. OverOps complements this approach by analyzing code as it executes to identify critical runtime errors and capture rich event data and variables from the point of failure. The new plugin feeds this data into the SonarQube platform, allowing users to enhance their existing quality gates and arm developers with the complete context needed to resolve these issues quickly.

"While traditional testing methods do a good job of catching many errors, they are restricted by their reliance on foresight. You can only detect what you build a test case for, missing out on all the runtime activity that happens in the background," said Chen Harel, co-founder and VP of Product at OverOps. "OverOps' integration with SonarQube ensures that all critical issues with the greatest potential for impact in production are caught and addressed long before they are able to reach your users."

When SonarQube users install the OverOps plugin, it automatically creates an OverOps event rule for Java code based on new, critical, resurfaced and unique runtime errors. When a quality gate fails a release based on these criteria, users can view the issues directly within their SonarQube dashboard and immediately gain insight into the severity of the issue. OverOps also provides a direct link to the event analysis containing the full context behind the error, including the stack trace, variable state, system state and more – without requiring foresight or code changes. With this rich data, developers can quickly reproduce the most critical runtime issues, resolve them and promote the code without significant impact to release schedules.

Share this

The Latest

August 04, 2020

Business leaders around the world are comfortable and optimistic about the broad scale shift toward remote work, according to the Riverbed Future of Work Global Survey 2020 that included 700 business decision makers, however findings also indicate the vast majority of organizations were not well prepared when the COVID-19 pandemic began ...

August 03, 2020

APMdigest and The Field CTO joined forces to launch the AI+ITOPS Podcast. The mission of the podcast is to discuss the struggles faced by ITOps — such as digital transformation and the need to keep IT services "always on" — and explore how AI/ML, AIOps, APM and other ITOps and DevOps technologies can help. Episode 1 features guest Dennis Drogseth, VP at Enterprise Management Associates (EMA) ...

July 30, 2020

One of the most frustrating experiences for website visitors is a slow, unresponsive website. Worst-case scenario, a web bounce causes prospects to permanently bounce from your company. In an effort to help companies improve web performance, Google launched the Web Vitals initiative in May and announced three new search engine ranking factors ...

July 29, 2020

Organizations have benefited from the use of modern applications to adapt and maintain agility and reliability during the COVID-19 pandemic, according to new research by VMware. The global study also reveals improved perceptions of alignment across app developers, IT and business decision makers as they collaborate to help their organizations operate amid the pandemic ...

July 28, 2020

According to The State of ITSM in the COVID-19 Pandemic, a survey by ManageEngine, 72% of IT professionals affirm ITSM's continued effectiveness even in remote work scenarios. However, only one in two organizations have a bring your own device (BYOD) policy to support continued productivity in new remote work environments ...

July 27, 2020

Many remote employees must access a corporate private network from home to continue business as usual. Organizations are turning to virtual private networks (VPN) as never before to keep remote workers connected to critical information and tools. To protect sensitive data and network bandwidth, however, companies must secure and control that network access such as by incorporating digital certificates into their cybersecurity strategy. Follow these five VPN best practices for secure remote worker access ...

July 23, 2020

The role of the IT department was once manageable — straightforward tasks such as computer desktop support, installing and configuring hardware and software, and monitoring and maintaining systems and servers were commonplace. But as a result of digital transformation and the adoption of new and emerging technologies, IT teams are now responsible for driving business strategy and cost savings. With all of the new responsibilities, it's not surprising that we've seen new disciplines emerge, such as NetOps, DevOps, SecOps and DevSecOps ...

July 22, 2020

How does one acquire skills at the level appropriate to ones' self? Not by reading tomes at various levels; I have tried that and often understand every paragraph I read but still fail to grasp the subject. Sound familiar? It dawned on me that it was better to read a few small articles on the subject, maybe more than once, and eventually you should hit that "Eureka" moment when the topic slips into place. What follows is what I learned about learning; over many decades in IT ...

July 21, 2020

One byproduct of COVID-19-imposed stay-at-home mandates is an unprecedented reliance on digital services for everything from grocery shopping and food delivery to video conferencing and workflow automation. And it's impacting both consumers of those digital services and the IT operations professionals responsible for delivering them ...

July 20, 2020

OpenTelemetry is a project within the Cloud Native Computing Foundation (CNCF) that has gathered contributors and supporters far and wide, becoming one of the most active projects found in open source today. In fact, the collaboration that OpenTelemetry has developed is pretty amazing ...