Static Code Analysis for ADF or Synapse Pipelines in Azure

Debajit Mitra 20 Reputation points

Hi team,

I would like to know is there any use case possible to perform static code analysis of our ADF or Synapse pipelines residing in Azure DevOps repository?


Debajit Mitra

Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
4,665 questions
Azure Data Factory
Azure Data Factory
An Azure service for ingesting, preparing, and transforming data at scale.
10,111 questions
{count} votes

Accepted answer
  1. Smaran Thoomu 12,445 Reputation points Microsoft Vendor

    Hi @Debajit Mitra
    Thanks for the question and using MS Q&A platform.

    Yes, it is possible to perform static code analysis on Azure Data Factory (ADF) pipelines residing in Azure DevOps repository. As you mentioned, the ADF code is stored in JSON format per data pipeline basis inside Azure DevOps. You can use any static code analysis tool that supports JSON format to perform checks on the code and validate it in terms of quality, reliability, and security aspects.

    You can integrate static code analysis tools like SonarQube, Checkmarx, or Fortify with Azure DevOps to perform static code analysis on ADF pipelines. These tools can help you identify code quality issues, security vulnerabilities, and reliability issues in your ADF pipelines.

    To integrate these tools with Azure DevOps, you can create a pipeline in Azure DevOps that includes a build step to generate the JSON files for your ADF pipelines. Then, you can add a static code analysis step to the pipeline that uses the tool of your choice to analyze the JSON files.

    Hope this helps. Do let us know if you any further queries.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

0 additional answers

Sort by: Most helpful