back to home

SonarSource / SonarJS

SonarSource Static Analyzer for JavaScript and TypeScript

1,207 stars
192 forks
19 issues
TypeScriptJavaJavaScript
Chat with CodebaseArchitecture ScanSecurity AuditExplain Codebase

AI Architecture Analysis

This repository is indexed by RepoMind. By analyzing SonarSource/SonarJS in our AI interface, you can instantly generate complete architecture diagrams, visualize control flows, and perform automated security audits across the entire codebase.

Our Agentic Context Augmented Generation (Agentic CAG) engine loads full source files into context on-demand, avoiding the fragmentation of traditional RAG systems. Ask questions about the architecture, dependencies, or specific features to see it in action.

Source files are only loaded when you start an analysis to optimize performance.
Click here to launch the interactive analysis workspace

Embed this Badge

Showcase RepoMind's analysis directly in your repository's README.

[![Analyzed by RepoMind](https://img.shields.io/badge/Analyzed%20by-RepoMind-4F46E5?style=for-the-badge)](https://repomind.in/repo/SonarSource/SonarJS)
Preview:Analyzed by RepoMind

Repository Overview (README excerpt)

Crawler view

This SonarSource project is a static code analyzer for the JavaScript, TypeScript, and CSS languages to deliver integrated code quality and security. :arrow_right: Have some feedback? This repository now hosts eslint-plugin-sonarjs, our plugin for ESLint. Features • Advanced rules based on pattern matching and control flow analysis • 479 JS rules and 496 TS rules • 29 CSS rules • Compatible with ECMAScript 2015-2020 • React JSX, Flow, Vue, and AWS lambda functions support for JavaScript and TypeScript • CSS, SCSS, SASS, Less, also 'style' inside HTML and VueJS files • Metrics (complexity, number of lines, etc.) • Import of test coverage reports • Import of ESLint, TSLint, and Stylelint issues Documentation You can find documentation here Questions or feedback? SonarSource Community Forum If you want to report a bug, request a feature, or provide other kind of feedback, please use SonarQube Community Forum. Please do not forget to specify the details of your request, code reproducer, and versions of projects you use. Contributing Prerequisites To work on this project, it is required to have the following tools installed: • JDK 17 • Node.js >= 22 • npm >= 8 • Maven >= 3.8 How-to Build the project The project can be built into the SonarJS Plugin by installing Node.js dependencies, and executing the usual Maven command. Request a new feature To request a new feature, create a new thread in SonarSource Community Forum. Even if you plan to implement it yourself and submit it back to the community, please create a thread to be sure that we can follow up on it. Create a Pull Request To submit a contribution, create a pull request for this repository. Please make sure that you follow our code style and that all tests are passing. Work with us Would you like to work on this project full-time? We are hiring! Check out https://www.sonarsource.com/hiring License Copyright 2011-2024 SonarSource. SonarQube analyzers released after November 29, 2024, including patch fixes for prior versions, are published under the Sonar Source-Available License Version 1 (SSALv1). See individual files for details that specify the license applicable to each file. Files subject to the SSALv1 will be noted in their headers.