SonarQube Implementation Team

Steven Gomez
Lead Engineer at a pharma/biotech company with 1,001-5,000 employees
We spent a couple of weeks getting things figured out. I worked with an apprentice, who was kind of going through the motions. We chose to use a Red Hat operating system for the base. It's running on a Red Hat 7 server which contributes to the stability from the foundation, then installed the actual SonarQube server on Red Hat. That's when we had the compatibility issues and so on when we started installing the scan engines on top of that. That's when things were not compatible with each other and we had to fall back and figure out why things weren't plugging and playing. However, they did have on their website a sheet that had a little chart that showed the compatibility between the different versions and once we discovered that I was able to see which version can work with which. We didn't have to change the OS or the SonarQube's service itself, but the C++ extension. The version of the C++ extension we were using was not compatible with the Community Edition we had. We've had a consultant at one point, not to look specifically at SonarQube, but rather at our firmer development processes as a whole. He's the one that played us towards SonarQube being a reasonable option. In fact, he was the one that helped us in finding the compatibility chart. It's been mostly me doing the implementation on my own. I haven't been full time on it, but about half of my time is devoted to this. I do take some breaks and write some code and do some refactoring on occasion. As far as time on SonarQube itself, only about a tenth of a person is devoted to this. It's part of an infrastructure. I have a whole family of virtual machines that do different things: build, test, etc.. View full review »
Phil Denomme
Manager at a wireless company with 11-50 employees
We did an evaluation in about two weeks, so it was pretty easy to do and that wasn't full-time. We did not use an integrator, reseller or consultant for the deployment. View full review »
Jeff Ingalls
Automation Tool Specialist at a comms service provider with 1,001-5,000 employees
We handled the deployment in-house. View full review »
Find out what your peers are saying about SonarQube, Veracode, Micro Focus and others in Application Security. Updated: October 2019.
376,812 professionals have used our research since 2012.
ScalaCon4d53
Scala Contractor at a tech services company with 10,001+ employees
We used people in-house to deploy. We have about 100 people in our pipeline maintenance team. SonarQube has not led to any significant increase in that number. It's just absorbed as a part of the cost. There are no dedicated staff working on it. View full review »
Inframan677
IT Infrastructure Head / Facilities Manager - ITIL V3 Certified ,Vmware Vsphere5 at a financial services firm with 51-200 employees
We do our own implementations for various clients. We do not need the assistance of another team. View full review »
Kiran Gujju
Cyber Security Architect (USDA) at a government with 10,001+ employees
We have this implemented in CSAD pipeline as one of the tools for finding bugs in source code. This kind of tool has the capabilities of debugging abnormalities or finding abnormalities. We use it the same as any other static one level detail, and with a few other static tools like AppScan and Checkmarx. View full review »
Daniel Hall
Technical Architect at a energy/utilities company with 1,001-5,000 employees
We took care of the implementation in-house. View full review »
Find out what your peers are saying about SonarQube, Veracode, Micro Focus and others in Application Security. Updated: October 2019.
376,812 professionals have used our research since 2012.
Sign Up with Email