Try our new research platform with insights from 80,000+ expert users

Digital.ai Application Security vs SonarQube Server (formerly SonarQube) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 30, 2024
 

Categories and Ranking

Digital.ai Application Secu...
Ranking in Application Security Tools
37th
Average Rating
6.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
SonarQube Server (formerly ...
Ranking in Application Security Tools
1st
Average Rating
8.0
Number of Reviews
113
Ranking in other categories
Static Application Security Testing (SAST) (1st), Software Development Analytics (1st)
 

Mindshare comparison

As of November 2024, in the Application Security Tools category, the mindshare of Digital.ai Application Security is 0.1%, down from 0.2% compared to the previous year. The mindshare of SonarQube Server (formerly SonarQube) is 26.7%, down from 27.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

Arne Dormaels - PeerSpot reviewer
May 30, 2023
Helps to improve knowledge on software security
I used the tool to prepare for the interview as a Business Developer. It helped me improve my understanding on software security.  I would like the tool to integrate AI and automation that is dedicated to detecting software vulnerabilities.  I have used the tool for two weeks.  I would rate the…
Wang Dayong - PeerSpot reviewer
May 10, 2023
Easy to integrate and has a plug-in that supports both C and C++ languages
We use the product to review our software codes. We have integrated the product to review our new delivery code When we deliver a code, the solution scans the code and reports whether the code has bugs or any other vulnerability issues. Thus the solution helps us identify issues and improve the…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I used the tool to prepare for the interview as a Business Developer. It helped me improve my understanding on software security."
"The features of SonarQube that I find most valuable for identifying code smells are its comprehensive code analysis capabilities, which cover various aspects of code sustainability."
"The solution has a plug-in that supports both C and C++ languages."
"If you want to have your code scanned and timed then this is a good tool."
"Can tweak rules and feed them into our build pipelines."
"The customizable dashboard and ability to include results and coverage from unit test and other static analysis code tools."
"This solution has the capability to analyze source code in almost all the languages in the market."
"It's enabled us to improve software quality and help us to disseminate best practices."
"The most valuable features are the dashboard reports and the ease of integrating it with Jenkins."
 

Cons

"I would like the tool to integrate AI and automation that is dedicated to detecting software vulnerabilities."
"It does not provide deeper scanning of vulnerabilities in an application, on a live session. This is something we are not happy about. Maybe the reason for that is we are running the community edition currently, but other editions may improve on that aspect."
"An improvement is with false positives. Sometimes the tool can say there is an issue in your code but, really, you have to do things in a certain way due to external dependencies, and I think it's very hard to indicate this is the case."
"I don't believe you can have metrics of code quality based upon code analysis. I don't think it's possible for a computer to do it."
"SonarQube needs to improve its support model. They do not work 24/7, and they do not provide weekend support in case things go wrong. They only have a standard 8:00 am to 5:00 pm support model in which you have to raise a support ticket and wait. The support model is not effective for premium customers."
"The pricing could be reduced a bit. It's a little expensive."
"The solution could improve by providing more advanced technologies."
"The exporting capabilities could be improved. Currently, exporting is fully dependent on the SonarQube environment."
"We had some issues scanning the master branch but when we upgraded to version 7.9 we noticed it does scan the master branch but we had to do a workaround for it to happen. This process could be improved in a future release."
 

Pricing and Cost Advice

Information not available
"This product is open source and very convenient."
"I am satisfied with the pricing."
"SonarQube price is a little bit higher than Kiuwan's. Kiuwan also gives a little bit of flexibility in terms of pricing."
"We have a license with 125,000 lines of code. We did not purchase a lot of lines but it is specific to our code environment."
"My guess is that we have a yearly subscription. We use it quite extensively, so a monthly license wouldn't make sense. Yearly subscriptions are usually cheaper. In addition to the standard licensing fee, there is just the cost of running the hardware where it is hosted."
"I requested this license for one million lines of code and they accepted this."
"SonarQube is a cost-effective solution."
"The solution is cheaper than other products."
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
814,572 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Computer Software Company
15%
Manufacturing Company
8%
Government
7%
Financial Services Firm
17%
Computer Software Company
15%
Manufacturing Company
13%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Digital.ai Application Security?
I used the tool to prepare for the interview as a Business Developer. It helped me improve my understanding on software security.
What needs improvement with Digital.ai Application Security?
I would like the tool to integrate AI and automation that is dedicated to detecting software vulnerabilities.
What is your primary use case for Digital.ai Application Security?
I used the tool to prepare for the interview as a Business Developer. It helped me improve my understanding on software security.
Is SonarQube the best tool for static analysis?
I am not very familiar with SonarQube and their solutions, so I can not answer. But if you are asking me about which tools that are the best for for Static Code Analysis, I suggest you have a look...
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
 

Also Known As

Arxan Application Protection, Digital.ai Application Protection
Sonar
 

Learn More

 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Valencell
Information Not Available
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools. Updated: October 2024.
814,572 professionals have used our research since 2012.