Try our new research platform with insights from 80,000+ expert users

Kiuwan vs SonarQube Cloud (formerly SonarCloud) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 30, 2024
 

Categories and Ranking

Kiuwan
Ranking in Static Application Security Testing (SAST)
16th
Average Rating
8.6
Number of Reviews
23
Ranking in other categories
Application Security Tools (20th)
SonarQube Cloud (formerly S...
Ranking in Static Application Security Testing (SAST)
10th
Average Rating
8.2
Reviews Sentiment
6.3
Number of Reviews
11
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of Kiuwan is 0.9%, down from 1.1% compared to the previous year. The mindshare of SonarQube Cloud (formerly SonarCloud) is 6.8%, up from 6.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Mustufa Bhavnagarwala - PeerSpot reviewer
Nov 27, 2023
Though a stable tool, the UI needs improvement
Kiuwan is useful because it provides functions related to secure code review, source code review, detection of security vulnerabilities, and development of proper input validations to get proper output and coding to see if all the systems in our environment are properly used. Some SQL queries are…
Diego Moreo - PeerSpot reviewer
Oct 7, 2024
Enhanced code quality with data consolidation needs and good pipeline integration
We have SonarCloud integrated into our pipeline. It is used as a tool for checking code quality, clean code, bugs, and security issues. It acts as a quality gate for production, helping decide if our code can be applied SonarCloud aids us in checking major issues in legacy systems and helps…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution has a continuous integration process."
"The most valuable feature is the time to resolution, where it tells you how long it is going to take to get to a zero-base or a five-star security rating."
"I like that it provides a detailed report that lets you know the risk index and the vulnerability."
"Lifecycle features, because they permit us to show non-technical people the risk and costs hidden into the code due to bad programming practices."
"The solution offers very good technical support."
"I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution."
"We are using this solution to increase the quality of our software and to test the vulnerabilities in our tools before the customers find them."
"​We use Kiuwan to locate the source of application vulnerabilities."
"Its dashboard provides a unified view of various code quality metrics, including code duplication, unit test coverage, and security hotspots."
"The most valuable feature of SonarCloud is its overall performance."
"The solution can be installed locally."
"The reports from SonarCloud are very good."
"The SaaS solution for checking code without execution and dealing with security issues is valuable."
"Recently, they introduced support for mono reports and microservices, which is a noteworthy development as it provides a more detailed view of each service."
"The solution provides continuous code analysis which has improved the quality of our code. It can raise alarms on vulnerabilities with immediate reports on the dashboard. Few things are false positives and we can customize the rules."
"For what it is meant to do, it works pretty well."
 

Cons

"Perhaps more languages supported."
"Kiuwan's support has room for improvement. You can only open a ticket is through email, and the support team is outside of our country. They should have a support number or chat."
"The development-to-delivery phase."
"The next release should include more flexibility in the reporting."
"Integration of the programming tools could be improved."
"The solution seems to give us a lot of false positives. This could be improved quite a bit."
"In Kiuwan there are sometimes duplicates found in the dependency scan under the "insights" tab. It's unclear to me why these duplicates are appearing, and it would be helpful if the application teams could investigate further."
"I would like to see additional languages supported."
"Reporting features are missing in SonarCloud."
"I've been told by the developers that the solution is too limited. It's not testing enough within the containers."
"The reports could improve by providing more information. We are not able to use the reports in our operation until they are improved. Additionally, if the vendor provided more customization capabilities it would be a benefit."
"CI/CD pipeline is part of a whole chain of design, development, and production, and it's becoming increasingly crucial to optimize the various tools across different stages. However, it's still a silo approach because the full integration is missing. This isn't just an issue with SonarCloud. It's a general problem with tooling."
"We had some issues with the scanner."
"There's room for improvement in the configuration process, particularly during the initial setup phase."
"It would be helpful if notifications could go out to an extra person."
"The documentation needs improvement on optimizing build time for seamless CI/CD integration with our Android apps."
 

Pricing and Cost Advice

"It follows a subscription model. I think the price is somewhere in the middle."
"The price of Kiuwan is lower than that of other tools on the market."
"Nothing special. It's a very fair model."
"Check with your account manager."
"This solution is cheaper than other tools."
"I recommend contacting a sales person who will create the best plan payment plan for you, as we did."
"Kiuwan is an open-source solution and free to use."
"I rate the pricing a five out of ten."
"The price of SonarCloud could be less expensive. We are using the community version and the price should be more reasonable."
"Previously, the pricing was 17,000 euros for five million lines analyzed. However, they now charge $15,000 per one million lines, significantly increasing the cost."
"The current pricing is quite cheap."
"While not extremely cheap, it aligns well with market standards and offers good value."
"The price of SonarCloud is not expensive, it goes by the lines of code. 1 million lines per code are approximately 4,000 USD per year. If you need 2 million lines of code you would double the annual cost."
"I am using the free version of the solution."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
814,528 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
13%
Comms Service Provider
9%
Insurance Company
7%
Computer Software Company
19%
Financial Services Firm
10%
Manufacturing Company
9%
Insurance Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Kiuwan?
The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report.
What is your experience regarding pricing and costs for Kiuwan?
I'm not entirely sure about the price and business aspects, but I assume Checkmarx might be less expensive. I think Checkmarx might offer more affordable options, especially in its smaller business...
What needs improvement with Kiuwan?
Kiuwan can improve its UI a little more. The user experience can be made better. Kiuwan offers a user interface that is similar to the one offered by Windows 7 or Windows 98, which I saw when I ran...
What do you like most about SonarCloud?
Recently, they introduced support for mono reports and microservices, which is a noteworthy development as it provides a more detailed view of each service.
What is your experience regarding pricing and costs for SonarCloud?
Previously, the pricing was 17,000 euros for five million lines analyzed. However, they now charge $15,000 per one million lines, significantly increasing the cost.
What needs improvement with SonarCloud?
Reporting features are missing in SonarCloud. We do not have a way to consolidate data within the tool, requiring us to extract data and use Power BI for reports.
 

Learn More

 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

DHL, BNP Paribas, Zurich, AXA, Ernst & Young, KFC, Santander, Latam, Ferrovial
Information Not Available
Find out what your peers are saying about Kiuwan vs. SonarQube Cloud (formerly SonarCloud) and other solutions. Updated: October 2024.
814,528 professionals have used our research since 2012.