9.2.4-community | docker pull icr.io/ibmz/sonarqube@sha256:fc7d3a11c7b3903f136771217da3402936087459a228e8fd116486a394690cdd | Vulnerability Report | 01-14-2022 | 9.3.0-community | docker pull icr.io/ibmz/sonarqube@sha256:ad26604713b70a829f48e25ead46c82953941fe7d2a69cbc904fc41d1675890f | Vulnerability Report | 03-18-2022 | 10.6.0.92116-community-openjdk17 | docker pull icr.io/ibmz/sonarqube@sha256:4519bac513feeb3a96ecb455ea65896b30c8f1d3cc226588024dddf595ef000e | Vulnerability Report | 09-18-2024 |
Version | Pull String | Security (IBM Cloud) | Created |
---|---|---|---|
docker run --name sonarqube -d -p 9000:9000 icr.io/ibmz/sonarqube:[version]
Get Started in Two Minutes Guide:Configuration
By default, the image will use an embedded H2 database that is not suited for production.Warning: Only a single instance of SonarQube can connect to a database schema. If you're using a Docker Swarm or Kubernetes, make sure that multiple SonarQube instances are never running on the same database schema simultaneously. This will cause SonarQube to behave unpredictably and data will be corrupted. There is no safeguard until SONAR-10362.
Set up a database by following the "Installing the Database" section of the official docs.Use volumes
We recommend creating volumes for the following directories:/opt/sonarqube/conf: for Version 7.9.x only, configuration files, such as sonar.properties.
/opt/sonarqube/data: data files, such as the embedded H2 database and Elasticsearch indexes
/opt/sonarqube/logs: contains SonarQube logs about access, web process, CE process, Elasticsearch logs
/opt/sonarqube/extensions: plugins, such as language analyzers
Warning: You cannot use the same volumes on multiple instances of SonarQube.
First Installation
For installation instructions, see Installing the Server from the Docker Image on the Install the Server page.Upgrading
FROM icr.io/ibmz/sonarqube:[version]
COPY sonar.properties /opt/sonarqube/conf/
You could then build and try the image with something like:
docker build --tag=sonarqube-custom .
docker run -ti sonarqube-custom
Avoid hard termination of SonarQube
--stop-timeout
.For example:
docker run --stop-timeout 3600 icr.io/ibmz/sonarqube:[version]