SonarQube Community Edition is an open-source platform for continuous inspection of code quality and security, running static analysis across 30+ languages to detect bugs, vulnerabilities, and code smells. This image runs SonarQube on Ubuntu 24.04 LTS, hardened and fully patched, with the web UI on port 80 behind authentication, a PostgreSQL backend, a unique per-VM admin credential generated on first boot, and data on a dedicated disk. Maintained by cloudimg.
## SonarQube on Ubuntu 24.04 LTS
SonarQube Community Edition is the leading open-source platform for continuous code-quality and security analysis. It scans your codebase for bugs, security vulnerabilities, and maintainability issues across dozens of languages, enforcing quality gates in your CI/CD pipeline. This image is built and maintained by cloudimg on a hardened, fully patched Ubuntu 24.04 LTS base — with the fiddly Elasticsearch kernel tuning and mandatory PostgreSQL backend pre-configured.
### What's included
### Getting started
Retrieve the generated password with `sudo cat /root/sonarqube-credentials.txt`, then sign in at the VM's public IP. Point your CI scanner at the server with a project token. The deployment guide on cloudimg.co.uk covers scanners, quality gates, and integrations.