iam
integrations
methods and practices
platforms
security
tools
examples
version control

Tools and services

Instructions for various application development tools and services provided for the University of Helsinki.

Note: Platforms and version control have their own sections.

SonarQube

SonarQube is a static code analysis service.

Center for Information Technology maintains a SonarQube environment based on the open community version. Read more on the SonarQube page.

OWASP Dependency-Check

Dependecy-Check is a tool intended for checking vulnerabilities in dependencies, which can be integrated, for example, with GitLab CI to transmit reports to SonarQube. Learn more on the Dependency-Check subpage.