\nAnother point that makes the CppDepend ruling system unique is\u00a0how easy it makes to write custom rules<\/b>. With CppDepend a rule is a LINQ query, that queries a code model dedicated to code quality, edited live in Visual Studio, compiled and executed live at edition time.
\nConcretely, this piece of code below is a fully functional rule, could it be simpler?<\/p>\n
\/\/\u00a0<Name><\/span>Classes\u00a0must\u00a0start\u00a0with\u00a0an\u00a0I<\/b><\/Name>\r\n<\/span>warnif<\/span>\u00a0count<\/b>\u00a0><\/span>\u00a00<\/b>\u00a0\r\n<\/span>Application<\/b>.<\/span>Types<\/span>.<\/span>Where<\/span>(<\/span>t<\/span>\u00a0=><\/span>\u00a0t<\/span>.<\/span>IsClass<\/span>\u00a0&&<\/span>\u00a0!<\/span>t<\/span>.<\/span>SimpleName<\/span>.<\/span>StartsWith<\/span>(<\/span>\"C\"<\/span>)<\/span>)<\/span>\r\n<\/pre>\nWhen defining a custom rule with CppDepend, the user doesn’t need to create a\u00a0 project, create a source file, step into the edit\/compile\/debug cycle, maintain a binary dll that requires effort to be shared, versioned and integrated.
\nWith CppDepend custom rules are raw texts, embedded as XML CDATA into the CppDepend project or rule files. Also, the documentation and how-to-fix guidelines can be embedded in the rule source code as comments.<\/p>\n
![](\"https:\/\/www.cppdepend.com\/img\/queryedition.png\" "\\"Editing")
<\/p>\n
Also, each CppDepend rule can present its issues with extra data that will help to understand the problem and fix it.
\nMoreover, each rule can embed two formulas that attempt to estimate both the\u00a0cost to fix the issue<\/i>\u00a0and the\u00a0annual cost to let the issue unfixed<\/i>, also called the\u00a0technical-debt<\/i>\u00a0and the\u00a0annual interest<\/i>\u00a0of the issue.\u00a0Since these formulas rely on what really matters at fix time, this makes the debt estimations smart<\/b>.<\/p>\n
![](\"https:\/\/www.cppdepend.com\/Doc\/TechnicalDebt\/IssuesFixPriority.PNG\" "\\"Architecture")
<\/p>\n
Finally, with CppDepend each rule is run in a few milliseconds even on a large code base. As a consequence, all rules can be passed in a few seconds (typically 2 or 3 seconds on a real-world code base), both in Visual Studio and in the Continuous-Integration system.
\nAs a benefit, after each compilation and also at check-in time, the developer instantly knows about the new and fixed issues since the baseline, and the impact in terms of technical debt fixed or created.
\nNow let’s explain how to integrate CppDepend rule results into the SonarQube system to cumulate the strength of both products.
\nI – C\/C++ Plugin Prerequisites<\/span><\/strong><\/p>\n\n- Install\u00a0SonarQube<\/a>.<\/li>\n
- Install\u00a0SonarQube Scanner<\/a>\u00a0or the old\u00a0Sonar Runner.<\/a><\/li>\n
- Add the SonarQube Scanner or the SonarRunner bin directory to the PATH environment variable.<\/li>\n<\/ul>\n
II-Plugin installation and configuration<\/span>\u00a0<\/strong><\/p>\n\n\n- Copy the sonar-cxx-plugin-cppdepend-1.0 from $CppDependInstallDir$\/SonarPlugin to the $SonarQubeInstallDir$\\extensions\\plugins directory and restart SonarQube.<\/li>\n<\/ul>\n<\/ul>\n
\n- The default CppDepend rules are loaded to the SonarQube rules repository. However, if you need to customize these rules you can define your own custom rules using the .cdproj file path located under the SonarQube Administration Tab.
\n![](\"https:\/\/www.cppdepend.com\/img\/sonarrules.png\")
<\/li>\n - You have to log in as an admin and activate the CppDepend rules in the profile you want.
![](\"https:\/\/www.cppdepend.com\/img\/sonar9.png\")
<\/li>\n - Execute $CppDependInstallDir$\/SonarRunnerForCppDepend.exe “the .cdproj file to analyze “For example:\u00a0SonarRunnerForCppDepend.exe C:\\MyWorkspace\\test.cdproj<\/b>.
\nSonarRunnerForCppDepend will analyze the cdproj file using CppDepend and launch the SonarQube Scanner executable to load the results into SonarQube.
\nAny other argument passed to the SonarRunnerForCppDepend after the cdproj file argument will be passed to the SonarScanner command.
\nFor example you can pass the version with this command\u00a0SonarRunnerForCppDepend.exe C:\\MyWorkspace\\test.cdproj -Dsonar.projectVersion=3.0<\/b><\/li>\n<\/ul>\nIII- Plugin features<\/span><\/strong><\/p>\n\n\n- Multi Module analysis:<\/b>\u00a0a CppDepend project could contain many C\/C++ projects.
\nAfter the analysis, CppDepend does not put all the code in the same SonarQube module. However, it creates a multi-module sonarqube project to isolate each project into a separate module which makes the code navigation very easy.![](\"https:\/\/www.cppdepend.com\/img\/sonarmodules.png\")
<\/li>\n- Issues:<\/b>\u00a0CppDepend provides by default more than 250 rules, which you can easily customize completely.
\nCppDepend provides a powerful way to\u00a0compute the technical debt<\/a>\u00a0of the issues. The CppDepend technical debt and the issue severity are given to SonarQube.![](\"https:\/\/www.cppdepend.com\/img\/sonarissues.png\")
<\/li>\n- Standard metrics:<\/b>\u00a0the plugin calculates all the standard SonarQube metrics.
![](\"https:\/\/www.cppdepend.com\/img\/sonar11.png\")
<\/li>\n<\/ul>\n<\/ul>\n\n\n- Code duplication:<\/b>\u00a0The duplications are detected by the CPD tool embedded in SonarQube.
![](\"https:\/\/www.cppdepend.com\/img\/sonar13.png\")
<\/li>\n<\/ul>\n<\/ul>\n\n- Coverage:<\/b>\u00a0The plugin loads the coverage result from Cobertura and Microsoft Visual Studio XML result files.
\nHowever, you have to set the path where the xml coverage files exist.
\n![](\"https:\/\/www.cppdepend.com\/img\/sonarcoverage.png\")
![](\"https:\/\/www.cppdepend.com\/img\/sonar12.png\")
<\/li>\n<\/ul>\nConclusion<\/strong><\/p>\nThe C\/C++ SonarQube plugin is easy to install and to use.\u00a0 The rules customization is very simple. You can try it<\/a> and give us your feedback.<\/p>\n","protected":false},"excerpt":{"rendered":"Both CppDepend and SonarQube are static analyzers that offer a rule-based system to detect problems in C\/C++ code. However, the CppDepend default Rules-Set\u00a0has very few overlaps\u00a0with the SonarQube rules Basically, the SonarQube rules are good at analyzing what is happening inside a method, the code flow while the CppDepend code model, on which the CppDepend … Continue reading “Explore a flexible C\/C++ SonarQube plugin based on CppDepend.”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[7,13,18,65],"class_list":["post-1223","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-c","tag-cpp","tag-cppdepend","tag-sonarqube"],"_links":{"self":[{"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/posts\/1223","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/comments?post=1223"}],"version-history":[{"count":11,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/posts\/1223\/revisions"}],"predecessor-version":[{"id":1234,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/posts\/1223\/revisions\/1234"}],"wp:attachment":[{"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/media?parent=1223"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/categories?post=1223"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cppdepend.com\/blog\/wp-json\/wp\/v2\/tags?post=1223"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}