Skip to content

Month: March 2018

Static Analysis for .NET Core Projects using SonarQube

Static analysis is a way of automatically analysing code without executing it. As a development team, this is really powerful as once the static analysis software is up, running and integrated with your deployment pipelines you can gain an extra tester in your team with little ongoing maintenance! While some of the issues static analysis software finds are not always high value (code styling for example) some are issues your engineers are less likely to notice such as obscure security flaws and out of date dependencies. SonarQube; A Static Analysis Tool SonarQube is a static analysis tool that I have been using and…

Contract Testing with Pact in .NET Core

When working in a microservice architecture it can be hard to verify the whole system end to end due to all the moving parts involved. Often the purported solution to this is to write integration tests which verify a couple bits of the system at the same time with the test mocked out. If all these subsections of the system pass their respective integration tests we can be confident in the system, right? The Problem with Integration Tests Integration tests are a good way of verifying our system as they use real (not mocked out) components but quite a lot…