the structure of the code seems right for me (more or less). in the securityplugin class, you return many classes (javaclasspath.class, javatestclasspath.class and so on)... what are they for? what do they implement/extend? in my expirience you need to return there: - a "rulesdefinition" (to see the rule in sonarqube) and - a checkregistrar (to let the checks being used). maybe my small rules project will give you some ideas ( ; one rule with two checks). if you are still struggling with the rules try to set the sonar.log.level-property (./conf/ to debug and watch the start-up of sonarqube.

Related Query

More Query from same tag