G2 Crowd builds the world's largest business commerce platform fueled by $100M in funding šŸš€

SonarQube

4.3
(16)

SonarSource products have innovative features to maximize quality and manage risk for both small and large software portfolios.

Work for SonarQube?

Learning about SonarQube?

We can help you find the solution that fits you best.

SonarQube Reviews

Chat with a G2 Advisor
Write a Review
Filter Reviews
Filter Reviews
  • Ratings
  • Company Size
  • User Role
  • Industry
Ratings
Company Size
User Role
Industry
Showing 16 SonarQube reviews
LinkedIn Connections
SonarQube review by Gurleen S.
Gurleen S.
Validated Reviewer
Review Source

"SonarQube Review"

What do you like best?

SonarQube is one of the most easy to use DevOps tool which provided insights into the code being build by the developers and helps in measuring the quality of deliverable.

SonarQube provides different metrics for reporting such as bugs, vulnerabilities, code smells, etc. which help lower the technical debt.

SonarQube integrated with various tools in DevOps pipeline such as Jenkins, TeamCity and provides the output in a separate tab / url which reviewers can make use off to determine whether code artifact can be released into market or quality has to be improved.

What do you dislike?

I have not come up with something I dislike about SonarQube since it takes care of our daily code quality needs.

Recommendations to others considering the product

I would strongly recommend SonarQube since it's very easy to setup, configure and provides us quality deliverable by finding out the quality issues in the code.

SonarQube provides report as well in the form of PDF so that management can have a look at it and analyse the areas where they want their team to focus more.

What business problems are you solving with the product? What benefits have you realized?

We have release a quality artifact by making use of SonarQube's in built functionalities which helps developers code in right way, using right code semantics and paying attention to resolving any bugs, hard coded references, etc.

We are making use of SonarQube quality gates feature to determine whether to go ahead with the build or not depending upon certain percentages or threshold which are set up.

Sign in to G2 Crowd to see what your connections have to say about SonarQube
SonarQube review by Tushar B.
Tushar B.
Validated Reviewer
Review Source

"Used for maintaining your code quality"

What do you like best?

I really like the UI and how easy it is to navigate to the right set of granularity for each project. It has good set of testing support also including Junit tests and integration tests. It is better than using just findbugs. It has really helped me find critical issues in my code that I was unable to.

What do you dislike?

It is difficult to configure for the first time. I and my team took a lot of time for configuring it specific to our project. Some plugins don't work out of the box and need code configuration.

Recommendations to others considering the product

It is a good tool out of the box with a lot of features like code coverage, testing, code health and much more. Definitely a must try!

What business problems are you solving with the product? What benefits have you realized?

We are using in our team to check the health of our code and test coverage.

What Static Code Analysis solution do you use?

Thanks for letting us know!
SonarQube review by Samuel B.
Samuel B.
Validated Reviewer
Verified Current User
Review Source

"Code Analytics Tool That Has Gotten Better with Age"

What do you like best?

Sonarqube is my one stop shop to find out the health of my code and the ability to integrate it with build tools and continuous integration ensures I'm always getting up to date information. It can quickly help you highlight trouble (hot-spots) in your code base and has integration with JIRA so that you can create a ticket and make sure the work to fix it isn't lost. Support for multiple projects with multiple configurations is also a huge plus because not all projects are the same. Sonarqube has been my go-to code analytics tool for many years as a Java developer.

What do you dislike?

Initial set up when using build tools like Maven or Gradle can be a bit challenging if you're just learning but once you've got the set up correct you usually don't need to edit it much after that point.

Recommendations to others considering the product

I wouldn't hesitate to plug SonarQube into one of your current projects and see what metrics it can generate for you and if they are helpful. I have a feeling that once you start to see what it can uncover that you'll use it more often than not to feel confident that your code is healthy and that your team is adhering to best practices for your company and the wider coding community.

What business problems are you solving with the product? What benefits have you realized?

I use SonarQube to ensure that my team and I are adhering to coding best practices defined as static rules and that we are maintaining good code coverage while not adding to technical debt. Sonarqube makes it extremely simple to tweak what is/is not considered technical debt for your team and as mentioned, makes it easy to identify hot spots to remedy. I use SonarQube as an early warning system that there may be some issues in the code that the team needs to address and the dashboard and drill down metrics make it easy to identify these issues.

SonarQube review by Eric M.
Eric M.
Validated Reviewer
Verified Current User
Review Source

"Static Code Analysis with centralized reporting and tracking made easy!"

What do you like best?

The ability to run both locally within your IDE (Eclipse, Jetbrains, etc) via the SonarQube plugin so you can correct any issues before committing your code, and you can also run it from your CI server (I use Bamboo) as part of the build step. There are quality gates that will let you fail the build if it doesn't meet certain quality criteria. That quality gate can fail the build. PCI compliance requires that you perform static code analysis against your in-scope code. This tool is a great addition to your code deployment pipeline! It also supports many languages such as Java, Python, C but expect to pay for plugins for Objective-C and Swift.

What do you dislike?

They discontinued the JIRA plugin that allows you to create a story for a problem found in your code, right within the SonarQube web interface. I feel like everyone uses JIRA for story/bug tracking so why get rid of that plugin?

Recommendations to others considering the product

It is a free (excluding the extra plugins and support they offer), open source project and only takes an hour to get up and running. It will help you understand your code better and become a better coder overall.

What business problems are you solving with the product? What benefits have you realized?

To ensure quality code and meet PCI compliance requirements, SonarQube allows us to analyze code from a central location and make it part of the code deployment pipeline for all code before it ships.

SonarQube review by Juan Carlos R.
Juan Carlos R.
Validated Reviewer
Verified Current User
Review Source

"Ensuring Quality"

What do you like best?

In the programming world, quality is always a subjective and hard to measure aspect, Sonarqube is the tool we use to ensure code quality through code analysis for each project we are working on.

What do you dislike?

So far nothing has stood out that I don't like.

What business problems are you solving with the product? What benefits have you realized?

In the programming world, quality is always a subjective and hard to measure aspect, Sonarqube helps us with a number associated to code covered by tests and three grades on our code quality for each project.

SonarQube review by Attila C.
Attila C.
Validated Reviewer
Verified Current User
Review Source

"SONARQube for the best code quality"

What do you like best?

Several Integrated code quality tools like PMD, Checkstyle or Findbugs.

Offer one place of configuration over your codebase

Easy clear UI interface to get a great overview about your code quality from different angle

Easy configuration for plugins

What do you dislike?

Some IDE's plugins not support all SONARQube version, so you should follow which plugin you should use to work properly with the latest versions.

Recommendations to others considering the product

You should identify which kind of quality you try to achieve and pick the right plugin

You can always override SONARQube's default quality settings over PMD, Checkstyle or findbugs, so you can get the most out from this system.

What business problems are you solving with the product? What benefits have you realized?

Easy to integrate into agile workflow by defining / filtering code quality issues and define test for them

By following the suggested code quality problems, you can increase your code quality rapidly.

Thanks to plugins we can use this product to analyze different language based components

SonarQube review by Administrator in Aviation & Aerospace
Administrator in Aviation & Aerospace
Validated Reviewer
Verified Current User
Review Source

"Valuable tool for code quality analysis"

What do you like best?

After getting the setup right, it's a "set it and forget it" solution. Also, the defaults are very sensible and we rarely needed to change them. It is very useful and provides a good integration with our existing build system, including Gradle and Jenkins. We recently upgraded to a newer major version and the upgrade went almost completely smooth, which is a big plus.

What do you dislike?

The setup can be somewhat frustrating and (especially for older versions) some of the functionality, like the history, can be very, very slow. This got fixed in recent versions but now you can have huge, huge elastic search indices, which can be somewhat of a problem.

Recommendations to others considering the product

It's a very nice tool but make sure to have somebody who can administer and set it up correctly, as the integration with different database backends, etc. can be troublesome at times.

What business problems are you solving with the product? What benefits have you realized?

We are using it, surprise, to keep up with our code quality. This means that it is integrated with our continuous builds and reports are autogenerated when builds happen. The main benefit is that it not only does the analysis but gives the reason why something was marked and how to solve it.

SonarQube review by User in Information Technology and Services
User in Information Technology and Services
Validated Reviewer
Review Source

"Cover your code using Sonar"

What do you like best?

Code coverage, Adding templates of custom rule sets, existing rule sets, check the code quality, apply different solutions to adhere to the code quality and rectify the code quality violations and secure coding is very important aspect and very essential for gaining client trust. code coverage and unit test report is generated. Very well used in Continuous Integration.

What do you dislike?

Nothing as such. As per my usage knowledge, I have no dislikes with respect to SonarQube. Sonar qube is best used in all of the code coverage purpose and finding code quality. Improving the code quality is very important for client.

Recommendations to others considering the product

Yes, I would like to recommend to every developer and project to track and enhance the code quality and this facilitates code reviews.

What business problems are you solving with the product? What benefits have you realized?

Banking applications, Development and maintenance. Code coverage and code quality checks and report generation.

SonarQube review by User in Consumer Electronics
User in Consumer Electronics
Validated Reviewer
Review Source

"Sonar Qube Review"

What do you like best?

Freedom to implement different type of analyses and the ability to quite quickly get some results. Its quite clear that the tool is going in the rigth direction and have the support from the community to carry on.

What do you dislike?

Requires some technical knowledge to deploy it and then analyse some results. If there is any way to automate a few steps and provide some basic help that with a few clicks people can see results it coud push it to another level.

Recommendations to others considering the product

Really try it! I become a fan!

What business problems are you solving with the product? What benefits have you realized?

Monitoring of development code regarding some quality rules and best practices.

Some basic errors made by junior resources were identified and fixed even before going fwd for future 'copy-paste'.

SonarQube review by Shahram J.
Shahram J.
Validated Reviewer
Verified Current User
Review Source

"Top Quality Code Quality Dashboard"

What do you like best?

All valuable software metrics could be found packed in this nice piece of software.

What do you dislike?

I am so impressed by this software that can't see any downside in it.

What business problems are you solving with the product? What benefits have you realized?

Keeping an eye on the quality of software being developed like cohesion and technical debt.

SonarQube review by User in Information Technology and Services
User in Information Technology and Services
Validated Reviewer
Verified Current User
Review Source

"Good product for coding standards enforcement"

What do you like best?

Several pre defined coding standards , IDE support, Free community edition

What do you dislike?

Too much noise. No easy way to ignore all existing issues with several release mode projects. Licensed versions too costly

Takes long time to run rules

IDE support - cannot run analysis at package level

What business problems are you solving with the product? What benefits have you realized?

Enforce coding standards

SonarQube review by Pranavi B.
Pranavi B.
Validated Reviewer
Review Source

"Amazing Tool"

What do you like best?

The best thing i like in SonarQube is - it not only helps to find bugs, it also provides solution to fix the bugs.

What do you dislike?

Nothing specific. I don`t have any anything.

What business problems are you solving with the product? What benefits have you realized?

Checking code quality, detect bugs and finding duplicate code

SonarQube review by User in Financial Services
User in Financial Services
Validated Reviewer
Verified Current User
Review Source

"SonarQube issues/benefits"

What do you like best?

Data visualization. Did a good job of using graphs and charts to better understand code quality

What do you dislike?

Recognizing code coverage. Speed. Recognizing accurate code issues sometimes poor.

What business problems are you solving with the product? What benefits have you realized?

Trying to improve code coverage and software quality.

SonarQube review by Administrator
Administrator
Validated Reviewer
Review Source

"Salesforce Development Team using SonarQube"

What do you like best?

The ability to create stage gates and quality rules that tell me at a glance how many issues, and of what type, need to be addressed.

What do you dislike?

Integrations with Continuous Integration (CI) software requires workarounds, and there aren't many pre-built libraries to support them.

What business problems are you solving with the product? What benefits have you realized?

We can see at a glance whether the code is meeting quality standards, and can easily review and accept or schedule issues for remediation.

SonarQube review by Sandeep J.
Sandeep J.
Validated Reviewer
Review Source

"Best code review tool"

What do you like best?

Accurate output every time when you use the sonar cube

What do you dislike?

ease of use can be improved. There should be ability for user to add new rulesets.

What business problems are you solving with the product? What benefits have you realized?

code review

SonarQube review by Administrator in Internet
Administrator in Internet
Validated Reviewer
Review Source

"Quality Gates and code coverage tool"

What do you like best?

Real time tracking of unit tests and code coverage

What do you dislike?

Nothing much, serves our purpose. UI is intuitive, so nothing I can think of.

Recommendations to others considering the product

I would recommend everyone to try this software if you are evaluating tools for code coverage analysis

What business problems are you solving with the product? What benefits have you realized?

Unit test

Code coverage by unit tests

Quality gates for CI/CD implementation

Kate from G2 Crowd

Learning about SonarQube?

I can help.
* We monitor all SonarQube reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.