SonarQube Interview Questions and Answer Part – 1

Is it right definition of Sonarqube?
SonarQube (formerly Sonar) is a quality management platform focusing on continuous analysis of source code quality.

  • YES (Ans)
  • NO

Which is not a severities in this list

  • Blocker
  • Critical
  • Major
  • Biggest (Ans)

Is it right defintion of SonarQube Scanners?
The SonarQube Scanner is recommended as the default launcher to analyze a project with SonarQube.

  • YES (Ans)
  • NO

How to extend the functionality of SonarQube?

  • Modules
  • Plugins (Ans)
  • Extension
  • Ads on

Which statement is correct?

  • Sonar will run CheckStyle, FindBugs and PMD by default for Java projects (Ans)
  • Sonar will run Checkmate by default for Java projects
  • Sonar will run FindIssue by default for Java projects
  • Sonar will run PMDtest by default for Java projects

Which is not a axis of code quality in SonarQube?

  • Architecture and Design
  • Complexity
  • Potential bugs
  • Code Coverage (Ans)

What is the prerequisite for SonarQube Installation?

  • Java (Ans)
  • DOTNET
  • JavaScript
  • Php

Which is not part of Code Technical Review in SoanrQube?

  • Confirm
  • Change Severity
  • Resolve
  • Submited (Ans)

What is not a search criteria for the rules in SonarQube?

  • Language
  • Type
  • Tag
  • Develop (Ans)

Which is the not found in sonar-project.properties?

  • sonar.projectVersion
  • sonar.sources
  • sonar.code (Ans)
  • sonar.language

Which property should be decalred for SonarQube Project base dir?

  • sonar.projectBaseDir (Ans)
  • sonar.working.directory
  • sonar.basedir
  • sonar.projectdir

Which property should be decalred to tell SonarQube which SCM plugin should be used to grab SCM data on the project

  • sonar.scm.provider (Ans)
  • sonar.scm
  • sonar.git
  • sonar.version

Which property should be decalred to tell SonarQube log level?

  • INFO
  • DEBUG
  • TRACE
  • ERROR (Ans)

Which is not supported Log Level in SonarQube?

  • sonar.log.level
  • sonar.verbose (Ans)
  • sonar.log
  • sonar.loglevel

Is it right definition of Code Smell? A maintainability-related issue in the code. Leaving it as-is means that at best maintainers will have a harder time than they should making changes to the code. At worst, they’ll be so confused by the state of the code that they’ll introduce additional errors as they make changes.

  • YES (Ans)
  • NO

Is it right definition of Coding Rule? A good coding practice. Not complying to coding rules leads to quality flaws and creation of issues in SonarQube. Coding rules can check quality on files, unit tests or packages.

  • YES (Ans)
  • NO

Is it right definition of Analyzer? A client application that analyzes the source code to compute snapshots.

  • YES (Ans)
  • NO

Which is not severities in Sonarqube?

  • Options
  • Blocker
  • Major
  • Critical
  • Issues (Ans)

Is it possible to Copy the rules from one profile to another?

  • YES (Ans)
  • NOT

Is it possible to Copy a profile from one SonarQube instance to another?

  • YES (Ans)
  • NOT

SonarQube Tutorial & OWASP SonarQube Tutorial Securing Code (SAST) Crash Course:- https://bit.ly/3x5ZOmA

Rajesh Kumar
Follow me