Skip to technology filters Skip to main content
Dynatrace Hub

Extend the platform,
empower your team.

Popular searches:
Home hero bg
SonarQubeSonarQube
SonarQube

SonarQube

Ingest SonarQube vulnerability findings, metrics, and audit logs.

Extension
Free trialDocumentation
Integration diagram.Vulnerability dashboard.Coverage dashboard.
  • Product information
  • Release notes

Overview

Dynatrace integrates with SonarQube to enable visibility, orchestration, and prioritization of code and third-party dependencies vulnerability findings.

Capabilities:

  • Single pane of glass: Ingest vulnerability findings, metrics, and audit logs from SonarQube into Dynatrace (powered by OpenPipeline™)

  • Unified analysis: Dynatrace transforms and maps the findings to a unified format for vulnerability findings (powered by Dynatrace Semantic Dictionary)

  • Findings operationalization: Prioritize, visualize, and automate vulnerability findings with runtime context

  • Unveil blind spots: Discover and eliminate coverage gaps in your Software Development Lifecycle (SDLC)

Use cases

  • Overview: Visualize and report your current security posture and trends around vulnerability findings across vulnerability scanners with Dashboards.

  • Prioritization: Analyze and prioritize vulnerability findings across multiple tools and products uniformly with Notebooks.

  • Automation: Create notifications and tickets for critical vulnerability findings with Workflows.

  • Investigation: Use vulnerability findings as an additional dimension for threat hunting and incident forensics using Security Investigator.

Compatibility information

SonarQube Server Web API v1

Dynatrace
DocumentationMore Information
By Dynatrace
Dynatrace support center
Subscribe to new releases
Copy to clipboard

Extension content

Content typeNumber of items included
document dashboard
3
metric metadata
13

Related to SonarQube

Dashboards logo

Dashboards

Transform complex data into clear visualizations with custom dashboards.

ActiveGate logo

ActiveGate

Route traffic, monitor clouds and remote technologies & run Synthetic monitors

OpenPipeline logo

OpenPipeline

Configure ingest, processing, and persistence of data sent to Grail.

Extensions logo

Extensions

Manage Dynatrace extensions for hundreds of technologies.

Full version history

To have more information on how to install the downloaded package, please follow the instructions on this page.
ReleaseDate

Full version history

🪲 Fixed in this version:

  • Added internal metadata.

ℹ️ This version requires ActiveGate version 1.313.0 or higher.

Full version history

✨ New in this version:

  • All events ingested by the extension now have sonarqube.project.url, sonarqube.project.name and sonarqube.project.id fields.
  • Added support for Sonarqube Cloud.
  • Added a SonarQube posture overview ready-made dashboard.

🚀 Improved in this version:

  • Metric dimension component was renamed to project. ⚠️ Any dashboards, notebooks, workflows and alerts relying on this dimension will need to be adjusted for the new name ⚠️
  • Event attribute sonarqube.url was renamed to sonarqube.tenant. ⚠️ Any dashboards, notebooks, workflows and alerts relying on this attribute will need to be adjusted for the new name ⚠️
  • Metrics sonarqube.ncloc and sonarqube.bugs were renamed to sonarqube.code.lines and sonarqube.code.bugs. ⚠️ Any dashboards, notebooks, workflows and alerts relying on these metrics will need to be adjusted for the new name ⚠️
  • The SDLC events' control.score field is now mapped from 0-1, reflecting the original values reported by Sonarqube.

🪲 Fixed in this version:

  • Fixed audit log content being empty.

ℹ️ This version requires ActiveGate version 1.313.0 or higher.

Full version history

🪲 Fixed in this version:

  • Fixed audit log toggle not working correctly.

ℹ️ This version requires ActiveGate version 1.313.0 or higher.

Full version history

✨ New in this version:

  • Added vulnerability finding and scan event extraction.
  • Added SDLC event extraction.
  • Added metric reporting.
  • Added audit log monitoring.

ℹ️ This version requires ActiveGate version 1.313.0 or higher.

Dynatrace Hub
Get data into DynatraceBuild your own app
All (811)Log Management and AnalyticsKubernetesAI and LLM ObservabilityInfrastructure ObservabilitySoftware DeliveryApplication ObservabilityApplication SecurityDigital ExperienceBusiness Observability
Filter
Type
Built and maintained by
Deployment model
SaaS
  • SaaS
  • Managed
Partner FinderBecome a partnerDynatrace Developer

Discover recent additions to Dynatrace

Problems logo

Problems

Analyze abnormal system behavior and performance problems detected by Davis AI.

Logs logo

Logs

Explore all your logs without writing a single query.

Security Investigator logo

Security Investigator

Fast and precise forensics for security and logs on Grail data with DQL queries.

Business Flow logo

Business Flow

Track, analyze, and optimize your critical business processes.

Cost & Carbon Optimization logo

Cost & Carbon Optimization

Track, analyze, and optimize your IT carbon footprint and public cloud costs.

Davis Anomaly Detection logo

Davis Anomaly Detection

Detect anomalies in timeseries using the Davis AI

Analyze your data

Understand your data better with deep insights and clear visualizations.

Notebooks logo

Notebooks

Create powerful, data-driven documents for custom analytics and collaboration.

Dashboards logo

Dashboards

Transform complex data into clear visualizations with custom dashboards.

Automate your processes

Turn data and answers into actions, securely, and at scale.

Workflows logo

Workflows

Automate tasks in your IT landscape, remediate problems, and visualize processes

Jira logo

Jira

Create, query, comment, transition, and resolve Jira tickets within workflows.

Slack logo

Slack

Automate Slack messaging for security incidents, attacks, remediation, and more.

Secure your cloud application

See vulnerabilities and attacks in your environment.

Security Overview logo

Security Overview

Get a comprehensive overview of the security of your applications.

Code-Level Vulnerabilities logo

Code-Level Vulnerabilities

Detect vulnerabilities in your code in real time.

Security Posture Management logo

Security Posture Management

Detect, prioritize, and remediate security and compliance findings with SPM.

Threats & Exploits logo

Threats & Exploits

Understand, triage, and investigate detection findings and alerts.

Are you looking for something different?

We have hundreds of apps, extensions, and other technologies to customize your environment

Leverage our newest innovations of Dynatrace Saas

Kick-start your app creation

Kick-start your app creation

Whether you’re a beginner or a pro, Dynatrace Developer has the tools and support you need to create incredible apps with minimal effort.
Go to Dynatrace Developer
Upgrading from Dynatrace Managed to SaaS

Upgrading from Dynatrace Managed to SaaS

Drive innovation, speed, and agility in your organization by seamlessly and securely upgrading.
Learn More
Log Management and Analytics

Log Management and Analytics

Innovate faster and more efficiently with unified log management and log analytics for actionable insights and automation.
Learn more