Skip to end of metadata
Go to start of metadata

By SonarSource and Waleri Enns – GNU LGPL 3 – Issue TrackerSources – Supported by SonarSource
More versions
SonarPython 1.14 – Jun 13, 2019 – SonarQube 6.7+ (Compatible with LTS)
Adjust Security Hotspot rules, deprecate the execution of Pylint
DownloadRelease notes


Enables the powerful SonarPython analyzer. Supports both Python 2 and Python 3.

First Analysis of a Python Project

  1. Install SonarQube Server (see Setup and Upgrade for more details)
  2. Install SonarQube Scanner and be sure your can call sonar-scanner from the directory where you have your source code
  3. Install SonarPython (see Installing a Plugin for more details)
  4. (Optional) Execute Pylint if you want to activate Pylint rules and import its report
  5. Run your analysis with the SonarQube Scanner by executing the following command from the root directory of the project:

    sonar-scanner -Dsonar.projectKey=xxx -Dsonar.sources=.
  6. Follow the link provided at the end of the analysis to browse your project's quality in SonarQube UI

Further Analyses

Assuming steps 1-3 above have already been completed, you'll want to encapsulate your analysis parameters in a file at the root of your project (see a sample project on GitHub: Then subsequent analyses can simply be run with:


Advanced Usage

With SonarPython, you can:

  • No labels