Sonar相关

查询全部代码bug，漏洞，重复率等

http://sonarqube.d-k8s.bigfintax.com/api/measures/component?component=api-core&metricKeys=alert_status,code_smells,bugsa

查询增量代码

http://sonarqube.d-k8s.bigfintax.com/api/measures/component?component=api-core&metricKeys=alert_status,new_code_smells,new_bugsa

shell调用：（用户token）

curl -X GET -H "Authorization: Basic c3F1XzVmM2IwMDU2OTFmOWI3MWQ1MmQwZTU2ZTlkOGMyNDdmMWZiYjc3NzY6" 'http://sonarqube.d-k8s.bigfintax.com/api/measures/component?component=api-core&metricKeys=alert_status,code_smells,bugs'

curl -X GET -H "Authorization: Basic c3F1XzVmM2IwMDU2OTFmOWI3MWQ1MmQwZTU2ZTlkOGMyNDdmMWZiYjc3NzY6" "http://sonarqube.d-k8s.bigfintax.com/api/measures/component?component=authapi&metricKeys=alert_status,code_smells,bugs"

http://sonarqube.d-k8s.bigfintax.com/api/measures/component?component=api-core&branch=develop&metricKeys=alert_status,code_smells,bugs,new_bugs,new_code_smells,new_coverage,coverage,duplicated_lines_density,new_duplicated_lines_density

插件：

Findbugs EXTERNAL ANALYSERS 4.2.5 Analyze Java, Scala, Closure and JSP code with SpotBugs. 4.8.1

mvn：

findbugs是静态代码扫描，需要先进行代码编译

mvn clean install -DskipTests=true

sonar-scanner：

sonar-scanner -Dsonar.projectKey=config-core -Dsonar.host.url=http://sonarqube.d-k8s.bigfintax.com -Dsonar.login=admin -Dsonar.password=MhxzKhl@123 -Dsonar.sources=src/main/java -Dsonar.java.binaries=. -Dsonar.java.source=1.8 -Dsonar.analysis.CI_COMMIT_REF_NAME=develop