Try our new research platform with insights from 80,000+ expert users

Klocwork vs SonarQube Server (formerly SonarQube) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 30, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

Sentiment score
5.0
Klocwork offers highly rated, proactive technical support with quick issue resolution, available in over thirty countries.
No sentiment score available
SonarQube users rely on community forums and documentation for support, with official options being costly but enterprise packages offer good support.
 

Room For Improvement

Sentiment score
4.9
Klocwork faces performance, language support, and usability issues, causing false warnings, slow updates, and limited Agile tool integration.
Sentiment score
5.9
SonarQube Server requires security, integration, multilingual support improvements and enhancements in user experience, performance, documentation, and dynamic testing.
 

Scalability Issues

Sentiment score
7.2
Klocwork demonstrates excellent scalability and adaptability for teams of all sizes, integrating well with various infrastructures and tools.
Sentiment score
7.5
SonarQube Server offers strong scalability, integrating well with tools, though larger operations may require resources and higher editions.
 

Setup Cost

Sentiment score
8.5
Klocwork provides flexible licensing and competitive pricing, justified by its capabilities, suitable for both small and large organizations.
No sentiment score available
SonarQube Server provides free and paid versions, with enterprises opting for licensed features and competitive pricing concerns.
 

Stability Issues

Sentiment score
8.6
Klocwork is praised for stability and reliability, despite performance updates and network-related connectivity issues some users experience.
Sentiment score
8.2
SonarQube Server is praised for its stable performance, reliable operation, and minimal issues, aside from rare plugin-related concerns.
 

Valuable Features

Sentiment score
8.2
Klocwork enhances software quality with static code analysis, integrating smoothly with CI and IDEs for efficient defect detection.
Sentiment score
8.4
SonarQube Server supports custom rules, CI/CD integration, code analysis, and continuous quality checks for enhanced development processes.
 

Categories and Ranking

Klocwork
Ranking in Application Security Tools
23rd
Ranking in Static Application Security Testing (SAST)
16th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
20
Ranking in other categories
Static Code Analysis (7th)
SonarQube Server (formerly ...
Ranking in Application Security Tools
1st
Ranking in Static Application Security Testing (SAST)
1st
Average Rating
8.0
Reviews Sentiment
7.5
Number of Reviews
113
Ranking in other categories
Software Development Analytics (1st)
 

Mindshare comparison

As of November 2024, in the Application Security Tools category, the mindshare of Klocwork is 1.4%, down from 1.5% compared to the previous year. The mindshare of SonarQube Server (formerly SonarQube) is 26.7%, down from 27.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

AnirbanSarkar - PeerSpot reviewer
Lets you find defects during the development phase, so you don't have to wait till the development is over to find and address flaws
What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.
Wang Dayong - PeerSpot reviewer
Easy to integrate and has a plug-in that supports both C and C++ languages
The product provides false reports sometimes. It also fails to understand the context of the code. It reports that a line of code has issues without considering its relation with the previous line. The product should improve the report quality. While it asks us to improve the code quality, it would be good if it also suggests how to improve the quality.
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
40%
Manufacturing Company
19%
Computer Software Company
10%
Financial Services Firm
3%
Financial Services Firm
17%
Computer Software Company
15%
Manufacturing Company
13%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Klocwork?
It's integrated into our CI, continuous integration.
What is your experience regarding pricing and costs for Klocwork?
Our purchasing department is responsible for tracking costs. It's one of the most widely used tools in our organization. It likely does not have a high price point. I don't have insights into licen...
What needs improvement with Klocwork?
The main problem is that since it only parses the code, the warnings or the problems that are given as a result of the report can sometimes require a lot of effort to analyze. It will show all poss...
Is SonarQube the best tool for static analysis?
I am not very familiar with SonarQube and their solutions, so I can not answer. But if you are asking me about which tools that are the best for for Static Code Analysis, I suggest you have a look...
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
 

Also Known As

No data available
Sonar
 

Learn More

 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Information Not Available
Find out what your peers are saying about Klocwork vs. SonarQube Server (formerly SonarQube) and other solutions. Updated: October 2024.
816,406 professionals have used our research since 2012.