Try our new research platform with insights from 80,000+ expert users

Sonar Reviews

BS
IT Developer at PT Oto Multiartha
Real User
Top 10
Download
This solution is simple to use and can be quickly deployed
Pros and Cons
  • "This solution is simple to use and can be quickly deployed."
  • "I think the code security can be improved."

What is our primary use case?

We use SonarQube to check for vulnerabilities and quality. 

How has it helped my organization?

The solution has helped us to find flaws in the Syntax and comply with requirements. 

What is most valuable?

I have found the most valuable features to be scanning for bugs or fixing the hotspot. These features have helped to improve the code quality. 

What needs improvement?

I think the code security can be improved. Code security should comply with the standard security list. 

I would like to see the feature of Compliance Reporting added to the solution.

For how long have I used the solution?

I have been using this solution for two years. 

What do I think about the stability of the solution?

I would rate the stability a ten out of ten. 

What do I think about the scalability of the solution?

About ten people in my company are using this solution. On average, we use this solution once in a week. 

Which solution did I use previously and why did I switch?

We chose SonarQube due to its free community edition. After a while, when we will need more features, we will probably purchase the solution next year. 

How was the initial setup?

I would rate the initial setup a ten out of ten. The solution is easy to install and use. It took us only a day to deploy SonarQube. We downloaded the solution and followed the setup process. We simply integrated this solution with Azure DevOps. The maintenance of this solution is handled by one person from the database team. 

What about the implementation team?

We implemented the solution through an in-house application developer. 

What other advice do I have?

This solution is simple to use and can be quickly deployed. I would rate the solution an eight out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate

Sonar Projects

Check out these projects from our community members.
Sonarqube integration with bank Application
Sonarqube 4.0 integration with bank Application. The project was done mainly to give an overview to senior management… more »
By it_user327384

Sonar Questions

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Oct 07 2024
What advice do you have for others considering SonarCloud?

If you were talking to someone whose organization is considering SonarCloud, what would you say?

How would you rate it and why? Any other tips or advice?

Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
Oct 07 2024
What is your primary use case for SonarCloud?

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Oct 07 2024
What needs improvement with SonarCloud?

Please share with the community what you think needs improvement with SonarCloud.

What are its weaknesses? What would you like to see changed in a future version?

Sagar Mody - PeerSpot reviewer
Sagar ModySonarCloud's UI needs enhancement.
10 Answers
Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
Oct 07 2024
What is your experience regarding pricing and costs for SonarCloud?

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Sep 02 2024
What is your experience regarding pricing and costs for SonarQube?

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Sep 02 2024
What needs improvement with SonarQube?

Please share with the community what you think needs improvement with SonarQube.

What are its weaknesses? What would you like to see changed in a future version?

Wang Dayong - PeerSpot reviewer
Wang DayongNormally, SonarQube gives a quick response for scanning and is easier for… more »
77 Answers
Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Sep 02 2024
What is your primary use case for SonarQube?

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Sep 02 2024
What advice do you have for others considering SonarQube?

If you were talking to someone whose organization is considering SonarQube, what would you say?

How would you rate it and why? Any other tips or advice?

Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
What do you like most about SonarQube?

Hi Everyone,

What do you like most about SonarQube?

Thanks for sharing your thoughts with the community!

Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
What do you like most about SonarCloud?

Hi Everyone,

What do you like most about SonarCloud?

Thanks for sharing your thoughts with the community!

Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
How does Camunda Platform compare with Apache Airflow?

Which is better and why?

Joe Baker - PeerSpot reviewer
Joe Baker
Senior Program Manager at Oasis TE
What are the differences between SonarQube and CAST AIP?

Hello peers, 

I am a Senior Program Manager at a large manufacturing company.

I am currently researching both SonarQube and CAST AIP. What are the main differences between these two solutions? Does CAST AIP scan for design violations?

Thankyou for your help.

Vishal-Goyal - PeerSpot reviewer
Vishal-GoyalHi Joe - SonarQube is essentially a static code quality tool and has multiple… more »
1 Answer
Tej Muchhala - PeerSpot reviewer
Tej Muchhala
Works at Network Appliance ASIAPAC
Which software is ideal for code quality and security?

Hello peers, 

I work for a large tech services company. I am currently researching Application Security Tools.

Which software is ideal for code quality and security? Are SonarQube and Snyk a good choice? Are there any better alternatives?

Thank you for your help.

Kit Ted - PeerSpot reviewer
Kit Ted
Works at H
What is the difference between Coverity and SonarQube?

I'm currently researching the following two application security tools: Coverity and SonarQube.

Can anyone point me out to main differences between these 2 products?

Thanks for your help!

Vishal-Goyal - PeerSpot reviewer
Vishal-Goyal
Chief Architect at Peristent Systems
SonarQube Community Edition vs SonarQube Enterprise Edition
Dear experts, I wanted to check with those who have experience in using both SonarQube Community Edition and SonarQube Enterprise Edition. What real advantages do you see in spending money to procure an enterprise license vs using community edition which is free? I'm aware enterprise provide...
Read More »
Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
Which gives you more for your money - SonarQube or Veracode?

Why is one better than the other?

Mauro Verderosa - PeerSpot reviewer
Mauro VerderosaThey are mainly two different products.  If your goal is to set the quality on… more »
Vishal-Goyal - PeerSpot reviewer
Vishal-GoyalWe have used SonarQube quite a lot and this is great to check code quality… more »
6 Answers
Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
How does WhiteSource compare with SonarQube?

Which is better and why?

Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
How does Sonatype Nexus Lifecycle compare with SonarQube?

Which is better and why?

Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
How would you decide between Coverity and Sonarqube?

Which is better?

Netanya Carmi - PeerSpot reviewer
Netanya Carmi
Content Manager at PeerSpot (formerly IT Central Station)
How does Snyk compare with SonarQube?

Which is better?

Manoj Kumar Kemisetty - PeerSpot reviewer
Manoj Kumar Kemisetty
Sap Advanced Business Application Programming Consultant at Accenture
Is SonarQube the best tool for static analysis?

Hi community members,

Is SonarQube is the best tool for static analysis? Are there any good tools that compete with SonarQube?

Peter Arvedlund - PeerSpot reviewer
Peter ArvedlundI am not very familiar with SonarQube and their solutions, so I can not answer… more »
Purushothaman K - PeerSpot reviewer
Purushothaman KThe static tool we can use is Fortify or IBM Appscan SonarQube is widely used… more »
Vishal-Goyal - PeerSpot reviewer
Vishal-GoyalWe have been using SonarQube and SonarLint (IDE) for quite some time on multiple… more »
10 Answers
Malla Reddy Bakka - PeerSpot reviewer
Malla Reddy Bakka
Works at a tech services company with 10,001+ employees
What is the biggest difference between Checkmarx and SonarQube?

I currently work for a global product engineering and lifecycle services partner. 

We are currently evaluating Checkmarx and SonarQube for our PoC. What are the biggest differences between the two? Which would you recommend?

Thanks! I appreciate the help.

Elina Petrovna - PeerSpot reviewer
Elina PetrovnaSonarQube historically was focused on Code Quality and Best Practices. Recently… more »
ManojKumar9 - PeerSpot reviewer
ManojKumar9The major difference I have seen between Checkmarx and SonarQube is… more »
Curtis Yanko - PeerSpot reviewer
Curtis YankoI’ve always viewed sonarqube as a code quality tool that compliments many code… more »
3 Answers
Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Kenna.AppSec vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Kenna.AppSec or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Cequence Security vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Cequence Security or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
ERPScan SMART Cybersecurity Platform vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick ERPScan SMART Cybersecurity Platform or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
CAST Highlight vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick CAST Highlight or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
NSFOCUS WVSS vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick NSFOCUS WVSS or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
SonarQube vs Virsec Security Platform: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick SonarQube or Virsec Security Platform?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Arxan Application Protection vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Arxan Application Protection or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Frontline WAS vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Frontline WAS or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Polyspace Code Prover vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Polyspace Code Prover or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
SonarQube vs WhiteSource: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick SonarQube or WhiteSource?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Fortify Application Defender vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Fortify Application Defender or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Coverity vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Coverity or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Netsparker Web Application Security Scanner vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Netsparker Web Application Security Scanner or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
PortSwigger Burp vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick PortSwigger Burp or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

Julia Miller - PeerSpot reviewer
Julia Miller
PeerSpot
Acunetix Vulnerability Scanner vs SonarQube: What are the advantages and disadvantages of each?

When looking for a Application Security solution, are you more likely to pick Acunetix Vulnerability Scanner or SonarQube?

What are the advantages and disadvantages of each?

Are there specific use cases where one provides a better solution than the other?

AshokPandey - PeerSpot reviewer
AshokPandey
Principal Software Engineer at Becton, Dickinson and Company
How does SonarQube instance relate to the license?

I work in a large enterprise Healthcare Company. 

We are thinking of buying SonarQube licensing (Developer edition) and need to understand some details of it. Is there anyone I can talk to? 

Donovan Greeff - PeerSpot reviewer
Donovan GreeffSonarQube is an open source tool. The use of the developer edition leads me to… more »
Daniel Hall - PeerSpot reviewer
Daniel HallHi, we still use the community edition and not yet matured to the point where… more »
Russell Rothstein - PeerSpot reviewer
Russell Rothstein@Steven Gomez @Phil Denomme  @Jeff Ingalls @Donovan Greeff  @Kiran Gujju @Daniel… more »
3 Answers
William Hayes - PeerSpot reviewer
William Hayes
Works at Securities America
Checkmarx vs SonarQube; SonarQube interoperability with Checkmarx or Veracode
I am looking for pros and cons for the Checkmarx vs SonarQube, in particular regarding: false positives tuning Sonarqube to reduce false positives without introducing false negatives.  I am also wondering if SonarQube could allow developers to delint their code before submitting it to SAS...
Read More »
Donovan Greeff - PeerSpot reviewer
Donovan GreeffMy opinions are my own and do not represent any other entities that I may be or… more »
Durga Gudimetla - PeerSpot reviewer
Durga GudimetlaSonarQube can be used for SAST. However, based on our internal analysis, our… more »
Swapna Ragi - PeerSpot reviewer
Swapna RagiSonarQube depends on completely what you configure the Rules. You will have the… more »
3 Answers
Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
What is the biggest difference between Coverity and SonarQube?
One of the most popular comparisons on IT Central Station is Coverity vs SonarQube. People like you are trying to decide which one is best for their company. Can you help them out? What is the biggest difference between Coverity and SonarQube? Which of these two solutions would you recommend to a...
Read More »
HungVu - PeerSpot reviewer
HungVuBoth of them are static analytic source tools but SonarQube focus on the quality… more »
1 Answer
Miriam Tover - PeerSpot reviewer
Miriam Tover
Senior Delivery Ops Manager
PeerSpot
What Is The Biggest Difference Between Fortify on Demand And SonarQube?
One of the most popular comparisons on IT Central Station is Fortify on Demand vs SonarQube. People like you are trying to decide which one is best for their company. Can you help them out? What is the biggest difference between Fortify on Demand and SonarQube? Which of these two solutions w...
Read More »