SonarQube
Spock
Our great sponsors
SonarQube | Spock | |
---|---|---|
65 | 11 | |
8,543 | 3,484 | |
1.4% | 0.2% | |
9.9 | 9.4 | |
6 days ago | 7 days ago | |
Java | Java | |
GNU Lesser General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
SonarQube
-
Experience Continuous Integration with Jenkins | Ansible | Artifactory | SonarQube | PHP
SonarQube (Scroll down to the Sonarqube section to see instructions on how to set up and configure SonarQube manually)
- Enterprise level open source react apps?
-
Usefully links for DotNet Backend Developers
SonarQube https://www.sonarqube.org/
-
How do you integrate a static security analysis tool into the CI/CD pipeline
There are commercial tools that can be integrated into a CI pipeline and/or a developer's IDE. I've used SonarQube before, but there are others.
- No laburar en el laburo
-
How I go with react native in late 2022
having a code review and analysis tool in CI/CD pipeline can help developers to keep their code clean. some examples of these tools are sonarqube and embold.
-
Technical Debt: Lessons from 10 Years of Change
But back in 2012, tech debt-related tools were in their infancy. JetBrains released IntelliJ IDEA in 2000, and SonarQube was initially released in 2006. Stepsize started in 2015, and Visual studio intellicode wasn't made by Microsoft until 2018.
-
Top 10 Open-Source DevOps Tools That You Should Know
Sonarqube Source Code Repository
- Ask HN: How can I DDOoS attack my personal website (for curiosity)?
-
Spring Boot – Black Box Testing
The generated classes should be put into .gitignore. Otherwise, if you have Checkstyle, PMD, or SonarQube in your project, then generated classes can violate some rules. Besides, if you don't put them into .gitignore, then each pull request might become huge due to the fact that even a slightest fix can lead to lots of changes in the generated classes.
Spock
-
Mastering Spring Cloud Gateway Testing: Predicates (part 1)
I love using the Spock framework for its simplicity, readability, and maintainability. That's why we use Spock to drive our integration tests.
-
Helidon Níma is the first Java microservices framework based on virtual threads
Well I care a lot that it exists. And many other people I know do as well. Just because you don't seem to like it, you shouldn't imagine everyone else is like you.
Maybe Grails is no longer used as much (like Rails itself), but Groovy found other usages since then, like https://spockframework.org/ and Jenkins pipelines (https://www.jenkins.io/doc/book/pipeline/syntax/). It's not going anywhere, and I see no reason for anyone to be upset about it.
-
Ask HN: What's your favorite software testing framework and why?
In my opinion it is Spock for Java/Groovy [1]. The amount of functionality and readability you can squeeze from Groovy's DSLesque is absurd. Is basically a full fledged new test language with Java sprinkled as the test contents code
[1]: https://spockframework.org/
- 7 Awesome Libraries for Java Unit & Integration Testing
- There is framework for everything.
-
Are there languages that allow to extend its syntax ?
Groovy allows you to perform transforms on it's AST. If you look at the Spock framework, they used AST transforms to pull off a lot of the DSL.
-
Using Cucumber and Spock for API test Automation — What Benefits Can You Expect?
Spock and Cucumber exemplify the philosophy of behavior-driven development (BDD). The principle behind BDD is that you must first define the desired result of the added feature in a subject-oriented language before writing any tests. The developers are then given the final documentation.
- A linguagem de programação Groovy - Radar da itexto
- Gradle 7.0 Released
-
HTTPS Client Certificate Authentication With Java
As a quick demonstration, the following (Spock) test asserts that the client JVM code fails to create an SSL connection with the service. Note that I chose to use Vert.x Web Client to handle interacting with the service, but don't let this decision distract from the core content of this post. Nevertheless, if you haven't used Vert.x, I encourage you to try it out -- especially for building server-side network applications.
What are some alternatives?
Spotbugs - SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Cucumber - Cucumber for the JVM
Checkstyle - Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
REST Assured - Java DSL for easy testing of REST services
Error Prone - Catch common Java mistakes as compile-time errors
AssertJ - AssertJ is a library providing easy to use rich typed assertions
PMD - An extensible multilanguage static code analyzer.
Awaitility - Awaitility is a small Java DSL for synchronizing asynchronous operations
semgrep - Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Mockito - Most popular Mocking framework for unit tests written in Java
snyk - Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]
ArchUnit - A Java architecture test library, to specify and assert architecture rules in plain Java