thoughtbot
diff --git a/‎platform/README.md‎
Lines changed: 7 additions & 0 deletions b/‎platform/README.md‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎platform/main.tf‎
Lines changed: 11 additions & 0 deletions b/‎platform/main.tf‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎platform/modules/sonarqube/README.md‎
Lines changed: 31 additions & 0 deletions b/‎platform/modules/sonarqube/README.md‎
Lines changed: 31 additions & 0 deletions
diff --git a/‎platform/modules/sonarqube/chart.json‎
Lines changed: 5 additions & 0 deletions b/‎platform/modules/sonarqube/chart.json‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎platform/modules/sonarqube/main.tf‎
Lines changed: 16 additions & 0 deletions b/‎platform/modules/sonarqube/main.tf‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎platform/modules/sonarqube/makefile‎
Lines changed: 67 additions & 0 deletions b/‎platform/modules/sonarqube/makefile‎
Lines changed: 67 additions & 0 deletions
diff --git a/‎platform/modules/sonarqube/outputs.tf‎ b/‎platform/modules/sonarqube/outputs.tf‎
@@ -15,6 +15,7 @@ The following components are included:
 - [Reloader](https://github.com/stakater/Reloader)
 - [Secrets Store CSI Driver](https://secrets-store-csi-driver.sigs.k8s.io/)
 - [Sloth](https://sloth.dev/)
+- [SonarQube](https://www.sonarqube.org/)
 - [Vertical Pod Autoscaler](https://github.com/kubernetes/autoscaler/blob/master/vertical-pod-autoscaler/README.md)
 
 Components are pre-configured to work with each other and support SRE best
@@ -54,6 +55,7 @@ practices.
 | <a name="module_reloader"></a> [reloader](#module\_reloader) | ./modules/reloader | n/a |
 | <a name="module_secret_store_driver"></a> [secret\_store\_driver](#module\_secret\_store\_driver) | ./modules/secret-store-driver | n/a |
 | <a name="module_sloth"></a> [sloth](#module\_sloth) | ./modules/sloth | n/a |
+| <a name="module_sonarqube"></a> [sonarqube](#module\_sonarqube) | ./modules/sonarqube | n/a |
 | <a name="module_vertical_pod_autoscaler"></a> [vertical\_pod\_autoscaler](#module\_vertical\_pod\_autoscaler) | ./modules/vertical-pod-autoscaler | n/a |
 
 ## Resources
@@ -103,6 +105,11 @@ practices.
 | <a name="input_secret_store_driver_version"></a> [secret\_store\_driver\_version](#input\_secret\_store\_driver\_version) | Version of the secret store driver to install | `string` | `null` | no |
 | <a name="input_sloth_values"></a> [sloth\_values](#input\_sloth\_values) | Overrides to pass to the Helm chart | `list(string)` | `[]` | no |
 | <a name="input_sloth_version"></a> [sloth\_version](#input\_sloth\_version) | Version of Sloth to install | `string` | `null` | no |
+| <a name="input_sonarqube_enabled"></a> [sonarqube\_enabled](#input\_sonarqube\_enabled) | Set to true to enable SonarQube | `bool` | `false` | no |
+| <a name="input_sonarqube_namespace"></a> [sonarqube\_namespace](#input\_sonarqube\_namespace) | Kubernetes namespace for SonarQube. Defaults to the flightdeck namespace if not set. | `string` | `null` | no |
+| <a name="input_sonarqube_release_name"></a> [sonarqube\_release\_name](#input\_sonarqube\_release\_name) | Helm release name for SonarQube. Defaults to 'sonarqube'. | `string` | `"sonarqube"` | no |
+| <a name="input_sonarqube_values"></a> [sonarqube\_values](#input\_sonarqube\_values) | Overrides to pass to the Helm chart | `list(string)` | `[]` | no |
+| <a name="input_sonarqube_version"></a> [sonarqube\_version](#input\_sonarqube\_version) | Version of SonarQube chart to install | `string` | `null` | no |
 | <a name="input_vertical_pod_autoscaler_values"></a> [vertical\_pod\_autoscaler\_values](#input\_vertical\_pod\_autoscaler\_values) | Overrides to pass to the Helm chart | `list(string)` | `[]` | no |
 
 ## Outputs
 
@@ -207,6 +207,17 @@ module "sloth" {
   depends_on = [module.prometheus_operator]
 }
 
+module "sonarqube" {
+  source = "./modules/sonarqube"
+
+  count = var.sonarqube_enabled ? 1 : 0
+
+  chart_values  = var.sonarqube_values
+  chart_version = var.sonarqube_version
+  k8s_namespace = var.sonarqube_namespace
+  name          = var.sonarqube_release_name
+}
+
 locals {
   flightdeck_namespace            = kubernetes_namespace.flightdeck.metadata[0].name
   kube_prometheus_stack_namespace = kubernetes_namespace.kube_prometheus_stack.metadata[0].name
 
@@ -0,0 +1,31 @@
+<!-- BEGIN_TF_DOCS -->
+## Requirements
+
+| Name | Version |
+|------|---------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 0.14.8 |
+| <a name="requirement_helm"></a> [helm](#requirement\_helm) | ~> 2.4 |
+
+## Providers
+
+| Name | Version |
+|------|---------|
+| <a name="provider_helm"></a> [helm](#provider\_helm) | ~> 2.4 |
+
+## Resources
+
+| Name | Type |
+|------|------|
+| [helm_release.this](https://registry.terraform.io/providers/hashicorp/helm/latest/docs/resources/release) | resource |
+
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| <a name="input_chart_name"></a> [chart\_name](#input\_chart\_name) | Helm chart to install | `string` | `null` | no |
+| <a name="input_chart_repository"></a> [chart\_repository](#input\_chart\_repository) | Helm repository containing the chart | `string` | `null` | no |
+| <a name="input_chart_values"></a> [chart\_values](#input\_chart\_values) | Overrides to pass to the Helm chart | `list(string)` | `[]` | no |
+| <a name="input_chart_version"></a> [chart\_version](#input\_chart\_version) | Version of chart to install | `string` | `null` | no |
+| <a name="input_k8s_namespace"></a> [k8s\_namespace](#input\_k8s\_namespace) | Kubernetes namespace in which resources will be written | `string` | `"default"` | no |
+| <a name="input_name"></a> [name](#input\_name) | Name for the release | `string` | `"sonarqube"` | no |
+<!-- END_TF_DOCS -->
@@ -0,0 +1,5 @@
+{
+    "chart": "sonarqube",
+    "version": "2025.6.1",
+    "repository": "https://SonarSource.github.io/helm-chart-sonarqube"
+}
@@ -0,0 +1,16 @@
+resource "helm_release" "this" {
+  chart      = coalesce(var.chart_name, local.chart_defaults.chart)
+  name       = var.name
+  namespace  = var.k8s_namespace
+  repository = coalesce(var.chart_repository, local.chart_defaults.repository)
+  values     = concat(local.chart_values, var.chart_values)
+  version    = coalesce(var.chart_version, local.chart_defaults.version)
+}
+
+locals {
+  chart_defaults = jsondecode(file("${path.module}/chart.json"))
+
+  chart_values = [
+    yamlencode(yamldecode(file("${path.module}/values.yaml")))
+  ]
+}
@@ -0,0 +1,67 @@
+MODULEFILES := $(wildcard *.tf)
+TFLINTRC    ?= ../../.tflint.hcl
+TFDOCSRC    ?= ../../.terraform-docs.yml
+
+.PHONY: default
+default: checkfmt validate docs lint
+
+.PHONY: checkfmt
+checkfmt: .fmt
+
+.PHONY: fmt
+fmt: $(MODULEFILES)
+	terraform fmt
+	@touch .fmt
+
+.PHONY: validate
+validate: .validate
+
+.PHONY: docs
+docs: README.md
+
+.PHONY: lint
+lint: .lint
+
+.lint: $(MODULEFILES) .lintinit
+	tflint --config=$(TFLINTRC)
+	@touch .lint
+
+.lintinit: $(TFLINTRC)
+	tflint --init --config=$(TFLINTRC) --module
+	@touch .lintinit
+
+README.md: $(MODULEFILES)
+	terraform-docs --config "$(TFDOCSRC)" markdown table . --output-file README.md
+
+.fmt: $(MODULEFILES)
+	terraform fmt -check
+	@touch .fmt
+
+.PHONY: init
+init: .init
+
+.init: versions.tf .dependencies
+	terraform init -backend=false
+	@touch .init
+
+.validate: .init $(MODULEFILES) $(wildcard *.tf.example)
+	echo | cat - $(wildcard *.tf.example) > test.tf
+	if AWS_DEFAULT_REGION=us-east-1 terraform validate; then \
+		rm test.tf; \
+		touch .validate; \
+	else \
+		rm test.tf; \
+		false; \
+	fi
+
+.dependencies: *.tf
+	@grep -ohE \
+		"\b(backend|provider|resource|module) ['\"][[:alpha:]][[:alnum:]]*|\bsource  *=.*" *.tf | \
+		sed "s/['\"]//" | sort | uniq | \
+		tee /tmp/initdeps | \
+		diff -q .dependencies - >/dev/null 2>&1 || \
+		mv /tmp/initdeps .dependencies
+
+.PHONY: clean
+clean:
+	rm -rf .dependencies .fmt .init .lint .lintinit .terraform* .validate