npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@aiserviceprovider/sonar

v1.0.2

Published

An Angular sonar setup module extension for AI-ServiceProvider backend project.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

abhishek.kadam007abhishek.kadam007

Keywords

AI-ServiceProviderAngularsonar

Readme

🤖 AI AppBuilder Extension – SonarQube Scan Module

SonarQube Scan Module

📌 Overview

The AI AppBuilder SonarQube Scan Module is an extension designed to integrate automated code quality analysis into Angular applications generated by the AI AppBuilder platform.

This extension leverages SonarQube to perform static code analysis, identify code smells, security vulnerabilities, bugs, and enforce coding standards for Angular applications built using AI AppBuilder.

It ensures that every generated Angular project maintains enterprise-grade code quality, security compliance, and maintainability.

🎯 Purpose

The primary goal of this module is to:

  • Automatically scan Angular applications generated by AI AppBuilder

  • Enforce code quality standards

  • Detect:

    • 🐛 Bugs
    • 🔐 Security vulnerabilities
    • 🧹 Code smells
    • 📏 Duplications
    • 📊 Technical debt

  • Provide detailed quality reports

  • Support CI/CD quality gate enforcement

🏗 Architecture Overview

AI AppBuilder
      │
      ▼
Generated Angular App
      │
      ▼
SonarQube Scan Module (Extension)
      │
      ▼
SonarQube Server
      │
      ▼
Quality Reports & Quality Gate Status

🔍 How It Works

  1. AI AppBuilder generates an Angular application.

  2. The SonarQube Scan Module:

    • Configures Sonar scanner properties
    • Sets project key & metadata
    • Executes SonarQube scan

  3. Scan results are published to SonarQube server.

  4. Quality Gate status is returned.

  5. Build process can be:

    • ✅ Passed (if quality gate succeeds)
    • ❌ Failed (if quality gate fails)

⚙️ Features

  • 🔄 Automatic scanning after Angular project generation
  • 📦 Zero manual Sonar setup required
  • 🧠 AI-aware configuration support
  • 📊 Detailed code metrics
  • 🔐 Security hotspot detection
  • 🏷 Configurable project keys
  • 🚦 Quality gate validation
  • 🔌 CI/CD ready

🛠 Installation

npm install @aiserviceprovider/sonar

🚀 Usage

1️⃣ Configure SonarQube Server

Ensure a running SonarQube instance:

  • SonarQube Server URL
  • Authentication Token
  • Project Key

Example environment variables:

SONAR_HOST_URL=http://localhost:9000
SONAR_TOKEN=your_generated_token
SONAR_PROJECT_KEY=ai-app-angular-app

📊 Quality Metrics Collected

The module collects and reports:

  • Code Coverage
  • Maintainability Rating
  • Reliability Rating
  • Security Rating
  • Lines of Code
  • Duplications
  • Technical Debt Ratio

All metrics are published to SonarQube dashboard.

🔐 Security

This module helps enforce:

  • OWASP vulnerability detection
  • Hardcoded secret detection
  • Dependency risk visibility
  • Angular best practice compliance

🧩 Configuration Options

| Option | Description | Required | | ---------- | ------------------------------- | -------- | | projectKey | Unique Sonar project identifier | ✅ | | sourcePath | Angular source folder | ✅ | | hostUrl | SonarQube server URL | ✅ | | token | Authentication token | ✅ | | exclusions | Files to exclude | ❌ |

📌 Requirements

  • Node.js >= 16
  • Angular project generated by AI AppBuilder
  • Running SonarQube Server
  • Sonar Scanner CLI

🧠 Why This Module?

Angular applications generated by AI can grow rapidly. Automated static analysis ensures:

  • Scalable architecture
  • Secure coding practices
  • Maintainable codebase
  • Enterprise readiness

This extension embeds quality control directly into the application generation lifecycle.