search

trimble-oss / devguide

Trimble's development guidelines
https://devguide.trimble.com
MIT License
6 stars 10 forks source link

Add SonarLint to Code Style sections #68

Open jhonkan opened 2 years ago

jhonkan commented 2 years ago

SonarLint is a free extension for the most popular IDEs, and supports the most used languages. However, the code style sections I checked, only refer to the language developer's code style guides, and there's no mention of Etool's SonarQube or SonarLint anywhere.

jeffdoolittle commented 2 years ago

Does the current devguide list SonarCube as a requirement? Or as a suggested option for static analysis and code coverage?

coliff commented 2 years ago

I think we need to link to the TSDLC Guidelines. https://sites.google.com/trimble.com/cyber-defense/tsdlc/tsdlc-control-standards-guidelines/tsdlc-guidelines#h.pztn25o1ffz8

jhonkan commented 2 years ago

Yes, it's a TSDLC requirement, can be found from TSP as well.

jeffdoolittle commented 2 years ago

That's something we need to work on changing. Too much "how" has leaked into standards and requirements. We need standards that define "what", not "how".