Thanks for bringing this up Sajith Yes, I think we all must setup Sonar and FindBugs locally and do a code analysis before committing or sending PRs. We had plans to integrate this with Jenkins so that we can validate each and every commit and PRs.
@Imesh: Shall we enforce this for Stratos? I think we should focus on code quality in up coming releases.