Skip to content
Documentation

SonarQube

Ingest code quality and security findings from SonarQube.

1 min read · For: Security Engineers Developers · Updated Mar 22, 2026 · Edit

Imports security and code quality findings from SonarQube into Basirah.

Prerequisites

  • SonarQube instance (Community, Developer, Enterprise, or Data Center)
  • API token or user credentials with project read access

Authentication

API key or basic authentication (username/password).

Configuration

instance_url string required

SonarQube instance URL (e.g., https://sonarqube.yourcompany.com).

Data flow

Ingests security findings from SonarQube and normalizes them into Basirah’s common finding format.

Related

Configuring Integrations

Step-by-step integration setup.