Overview
The SonarCloud integration pulls code quality gate results and vulnerability counts into SEOP’s delivery analytics. Code quality becomes a first-class delivery metric alongside velocity and DORA data — giving engineering leaders visibility into the health of the codebase, not just the speed of delivery.What syncs
| Data | Direction | Details |
|---|---|---|
| Quality gate status | Inbound | Pass/fail status per project |
| Code smells | Inbound | Count by severity |
| Security vulnerabilities | Inbound | OWASP category breakdown |
| Test coverage | Inbound | Coverage percentage per project |
| Duplication | Inbound | Percentage of duplicated code |
Requirements
- SonarCloud account with access to the organisation you want to connect
- SonarCloud User Token with Read access
- Scrums.com workspace Admin access
Setup
Generate a SonarCloud token
In SonarCloud, go to My Account > Security > Generate Tokens. Create a token with a descriptive name (e.g.
Scrums.com Integration) and copy the value. Tokens are shown only once.Open Integrations
In your Scrums.com workspace, go to Settings > Integrations and select SonarCloud.
Select projects
Choose which SonarCloud projects to connect. Each project maps to a repository in your Scrums.com workspace.
Using code quality data
Once connected, SonarCloud data appears in:- Analytics > Code Quality — Quality gate trends over time
- Sprint Board — Quality gate status badges on active PRs
- Delivery Reports — Quality metrics included in monthly reports (Recommended and Enterprise plans)