-
Notifications
You must be signed in to change notification settings - Fork 144
Analysis of product projects vs. test projects
This page refers to the SonarScanner for .NET (S4NET), also known as SonarScanner for MSBuild (S4MSB). You can read more about how to install and use it in the "SonarScanner for .NET documentation".
- the
SonarAnalyzer.CSharp/SonarAnalyzer.VBanalyzers will be added to the build even if those analyzers are not referenced in the MSBuild project (S4NET will add references to those analyzers on the fly during the build). The set of rules that is executed is determined by the project type and Quality Profile for the Sonar project in SonarQube/SonarCloud. - any third-party analyzers referenced by the MSBuild project will be executed as part of the build (e.g. via NuGet package references). Issues from those analyzers will be uploaded to SonarQube/SonarCloud as External Issues. You can configure the third-party analyzer rules as normal using a
Ruleset. During the build, S4NET will merge your custom ruleset with a ruleset generated from the Quality Profile. In the event of a conflict, the settings in the generated ruleset take precedence.
The S4NET analyses MSBuild projects containing product code differently from projects containing test code.
- Analysis rules will be run against product projects, and the issues raised will be uploaded to SonarQube/SonarCloud.
- Only rules related to product code will be executed.
- Metrics and Lines of Code ("LOC") limit for commercial versions of SonarQube or private SonarCloud projects are calculated.
- Analysis rules will be run against test projects unless excluded (see below), and the issues raised will be uploaded to SonarQube/SonarCloud.
- Only rules related to test code will be executed.
- test projects do not count towards the Lines of Code ("LOC") limit for commercial versions of SonarQube or private SonarCloud projects.
- Metrics and copy/paste detection data are not calculated for test projects, although syntax colorisation and symbol highlighting are supported.
- All test projects are excluded from analysis on SonarQube up to version 8.8.
- All test projects can be excluded from analysis on SonarCloud and SonarQube from version 8.9 by adding
/d:sonar.dotnet.excludeTestProjects=trueS4NET parameter. - Analysis rules are not run against excluded test projects i.e. no issues will be reported to SonarQube/SonarCloud. This is the case even if the test project references third-party NuGet analyzer packages - those analyzers will not be executed.
- Any project can be excluded from analysis using
<SonarQubeExclude>true</SonarQubeExclude>. - No analyzer rules, metrics, syntax colorisation, or symbol highlighting will be calculated.
It is possible to explicitly mark a project as being a test/product project by setting the MSBuild property SonarQubeTestProject to true or false e.g.
<PropertyGroup>
<!-- Project is not a test project -->
<SonarQubeTestProject>false</SonarQubeTestProject>
</PropertyGroup>
Setting this property takes precedence over the default project categorization behavior.
S4NET decides whether an MSBuild project contains test code or product code by looking at data in the project file. The categorization is done at the project level; i.e. either the code will be treated as all product code or all test code. It is not possible to treat some of the code as test code and some as product code.
S4NET will treat the project as containing test code if any of the following are true:
- The project file contains the
MSTestProjectTypeGuid:3AC096D0-A1C2-E12C-1390-A8335801FDAB - The project file contains the legacy Service GUID
{82A7F48D-3B50-4B1E-B82E-3ADA8210C358}that is added by the Test Explorer to mark a project as containing tests. - The project file contains the
ProjectCapabilityTestContainer(for new SDK-style MSBuild projects). Note: this property can be set indirectly as a result of importing a NuGet package. See below for more information. - The project file name matches the RegEx set in the deprecated property sonar.msbuild.testProjectPattern
- The project references a known unit test-related assembly. The list of recognized assemblies is here.
There are a few special project types for which MSBuild will create and build a temporary project (e.g. Microsoft Fakes, WPF) as part of the "main" build. Such temporary projects are ignored by S4NET. The "main" project will be categorized and treated as normal.
It is possible for a project to be classified as a test project as a result of it referencing a third-party unit test NuGet package. This is because packages can add MSBuild targets into the build.
For example, if your project references e.g. XUnit as follows:
<PackageReference Include="xunit" Version="2.4.1" />
... then the XUnit package will add a target to the build containing the following property assignment:
<ItemGroup>
<ProjectCapability Include="TestContainer" />
</ItemGroup>
This will cause your project to be classified as a test project, and the MSBuild output will contain a message like the following:
Sonar: (MyProject.csproj) project has the ProjectCapability 'TestContainer' -> test project
S4NET writes information about the project categorization to the MSBuild output log. The information will appear in logs at normal verbosity or greater.
The default logging verbosity when building with MSBuild.exe is normal, so the categorization messages will usually be logged automatically.
However, the default logging verbosity when building with dotnet build is minimal so you would have to increase the logging verbosity to see the categorization messages e.g. by passing -v:n argument to dotnet build.
NB this logging was added in S4NET v4.7.
The following examples are taken from the analysis of the SonarLint for Visual Studio repo:
...
SonarQubeCategoriseProject:
Sonar: (Progress.csproj) Categorizing project as test or product code...
Sonar: (Progress.csproj) Project categorized. SonarQubeTestProject=False
...
...
SonarQubeCategoriseProject:
Sonar: (Progress.TestFramework.csproj) Categorizing project as test or product code...
Sonar: (Progress.TestFramework.csproj) SonarQubeTestProject has been set explicitly to true
Sonar: (Progress.TestFramework.csproj) Project categorized. SonarQubeTestProject=true
...
...
SonarQubeCategoriseProject:
Sonar: (SonarQube.Client.Tests.csproj) Categorizing project as test or product code...
Sonar: (SonarQube.Client.Tests.csproj) project is evaluated as a test project based on the project name
Sonar: (SonarQube.Client.Tests.csproj) Project categorized. SonarQubeTestProject=True
...
Please note that when a file is categorized as a test, you will see such logs during the END step when using verbose mode (see sonar.verbose in BEGIN step command line parameters).
DEBUG: 'foo/bar/baz/SomeClass.cs' generated metadata as test with charset 'UTF-8'
DEBUG: 'foo\bar\baz\SomeClass.cs' indexed as test with language 'cs'