You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

sonarqube-scanner-node

Package Overview
Dependencies
Maintainers
1
Versions
11
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

sonarqube-scanner-node

sonarqube-scanner npm package

0.0.11
latest
Source
npmnpm
Version published
Weekly downloads
639
37.72%
Maintainers
1
Weekly downloads
 
Created
Source

sonarqube-scanner

sonarqube-scanner is npm package for sonar-scanner

Installation

yarn add sonarqube-scanner-node

or

npm install sonarqube-scanner-node

Usage

This package allows you to use same command line parameters and properties file sonar-scanner allows.

sonar-scanner-node can be added to node scripts as follows.

 "scripts": {
    "sonarqube": "sonarqube-scanner-node -Dsonar.login=<token>",
  }

Download From Mirrors

By default, SonarQube scanner binaries are downloaded from https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/. To use a custom mirror, use environment variable SONAR_SCANNER_BASE_URL and SONAR_SCANNER_CLI_VERSION. Replace xxxxxx with hostname of your mirror.

    export SONAR_SCANNER_BASE_URL=https://npm.taobao.org/mirrors/sonar-scanner/
    export SONAR_SCANNER_CLI_VERSION=5.0.1.3006

or (you can use cross-env for cross-platform)

    SONAR_SCANNER_BASE_URL=https://npm.taobao.org/mirrors/sonar-scanner/ SONAR_SCANNER_CLI_VERSION=5.0.1.3006 npm i

or set it in your .npmrc / npm variables.

    sonar_scanner_base_url=https://npm.taobao.org/mirrors/sonar-scanner/
    sonar_scanner_cli_version=5.0.1.3006

Keywords

sonar
sonarqube
sonarqube-scanner
sonar-scanner-cli
sonar-scanner
sonar-scanner-node

FAQs

Package last updated on 02 Jan 2024

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Introducing Scala and Kotlin Support in Socket

Product

Introducing Scala and Kotlin Support in Socket

Socket now supports Scala and Kotlin, bringing AI-powered threat detection to JVM projects with easy manifest generation and fast, accurate scans.

By Peter van der Zee, Eli Insua  -  Jul 28, 2025
AI + a16z Podcast: Vibe Coding, Security Risks, and the Path to Progress

Application Security

/

Security News

AI + a16z Podcast: Vibe Coding, Security Risks, and the Path to Progress

Socket CEO Feross Aboukhadijeh and a16z partner Joel de la Garza discuss vibe coding, AI-driven software development, and how the rise of LLMs, despite their risks, still points toward a more secure and innovative future.

By Sarah Gooding  -  Jul 25, 2025