SonarQube Description

SonarSource creates world-class products to ensure Code Quality and Security. SonarQube, our open-source and commercial code analysis tool - SonarQube -- supports 27 programming languages. This allows dev teams of all sizes to resolve coding issues in their existing workflows.

SonarQube Alternatives
Gemini Code Assist Reviews
Gemini Code Assist
(3 Ratings)
Increase software development and delivery speed using generative AI assistance with enterprise security and privacy protected. Gemini Code Assist generates code blocks and functions as you type. Code assistance is available for many popular IDEs such as Visual Studio Code and JetBrains IDEs including IntelliJ, PyCharm and GoLand. It also supports 20+ programming language, including JavaScript, Python and C++. You can chat with Gemini Code Assistant using a natural language interface to receive answers to your coding queries or guidance on best coding practices. Chat is available on all supported IDEs. Gemini Code Assist allows enterprises to customize the software by using their own codebases and knowledge bases. Gemini Code Assist allows for large-scale changes in entire codebases.
Learn more
Codeium Reviews
Codeium
(75 Ratings)
Codeium is the modern code superpower. It's a free AI-powered code acceleration toolkit. Codeium currently provides AI-generated autocomplete in more than 20 programming languages (including Python and JS, Java, TS, Java and Go) and integrates directly to the developer's IDE (VSCode, JetBrains or Jupyter notebooks. Colab, Vim / Neoovim, etc. Codeium generates multiline code suggestions in a matter of seconds. This will eliminate the need to search for APIs and documentation, write boilerplate and unit test scripts, and many other tedious or frustrating tasks. Codeium is a training platform that allows you to quickly develop on billions of lines. It also helps you stay in the flow and lets you become the best coder you can be.
Learn more
Kiuwan Code Security Reviews
Kiuwan Code Security
(11 Ratings)
Security Solutions for Your DevOps Process Automate scanning your code to find and fix vulnerabilities. Kiuwan Code Security is compliant with the strictest security standards, such OWASP or CWE. It integrates with top DevOps tools and covers all important languages. Static application security testing and source analysis are both effective, and affordable solutions for all sizes of teams. Kiuwan provides a wide range of essential functionality that can be integrated into your internal development infrastructure. Quick vulnerability detection: Simple and quick setup. You can scan your area and receive results in minutes. DevOps Approach to Code Security: Integrate Kiuwan into your Ci/CD/DevOps Pipeline to automate your security process. Flexible Licensing Options. There are many options. One-time scans and continuous scanning. Kiuwan also offers On-Premise or Saas models.
Learn more
GitGuardian Reviews
GitGuardian
(32 Ratings)
GitGuardian is a global cybersecurity startup focusing on code security solutions for the DevOps generation. A leader in the market of secrets detection and remediation, its solutions are already used by hundred thousands developers in all industries. GitGuardian helps developers, cloud operation, security and compliance professionals secure software development, define and enforce policies consistently and globally across all their systems. GitGuardian solutions monitor public and private repositories in real-time, detect secrets and alert to allow investigation and quick remediation.
Learn more

Integrations

View Integrations

Reviews - 2 Verified Reviews

Total
ease
features
design
support
See More Reviews Write a Review

Company Details

Company:
SonarSource
Headquarters:
United States
Website:
www.sonarqube.org

Media

SonarQube Screenshot 1
SonarQube Screenshot 1 SonarQube Screenshot 2
Recommended Products
Secure your business by securing your people. Icon
Secure your business by securing your people.

Over 100,000 businesses trust 1Password

Take the guesswork out of password management, shadow IT, infrastructure, and secret sharing so you can keep your people safe and your business moving.
Try it free for 14 days

Product Details

Platforms
SaaS
Type of Training
Documentation

SonarQube Features and Options

Application Security Software

Analytics / Reporting
Open Source Component Monitoring
Source Code Analysis
Third-Party Tools Integration
Training Resources
Vulnerability Detection
Vulnerability Remediation

Static Code Analysis Software

Analytics / Reporting
Code Standardization / Validation
Multiple Programming Language Support
Provides Recommendations
Standard Security/Industry Libraries
Vulnerability Management

Static Application Security Testing (SAST) Software

Application Security
Dashboard
Debugging
Deployment Management
IDE
Multi-Language Scanning
Real-Time Analytics
Source Code Scanning
Vulnerability Scanning

SonarQube Lists

SonarQube User Reviews

Write a Review
  • Name: Aman V.
    Job Title: Technical Lead
    Length of product use: 2+ Years
    Used How Often?: Weekly
    Role: User
    Organization Size: 20,000 or More
    Features
    Design
    Ease
    Pricing
    Support
    Likelihood to Recommend to Others
    1 2 3 4 5 6 7 8 9 10

    Industry standard code quality tool

    Date: Apr 01 2022

    Summary: SonarQube is used across the industry as the go-to solution for code review. It has an impressive interface which provides all the information - issue, the code where it occurred and the optimal solution suggestion; at one place.

    Positive: Great User Interface / Dashboard.
    Different tiers of bugs - helps identify and fix only the critical issues.
    Suggestions to fix the issue.
    Jenkins integration.
    Also available as SaaS offering.
    Also shows security defects.

    Negative: The only con i can think of is expensive license which is not optimal for personal projects (unless open source). There is a free trial though.

    Read More...
  • Name: Daniel M.
    Job Title: Security Architect
    Length of product use: Less than 6 months
    Used How Often?: Daily
    Role: User
    Organization Size: 500 - 999
    Features
    Design
    Ease
    Pricing
    Support
    Likelihood to Recommend to Others
    1 2 3 4 5 6 7 8 9 10

    Excellent Product

    Date: Apr 01 2019

    Summary: I integrated SonarQube into my SDLC and it reliably detects and blocks security issues

    Positive: - Accurate results and no bullshit findings
    - Very fast analysis
    - Handy configuration features for analysis customization
    - Nice interface
    - Plenty integration options

    Negative: - It has its price but its worth every penny. Similar vendors are more expensive with significantly less value.

    Read More...
  • Previous
  • You're on page 1
  • Next