Software Alternatives, Accelerators & Startups

SonarCloud

Enhance your workflow with continuous code quality, SonarCloud automatically analyzes and decorates pull requests on GitHub, Bitbucket, Azure DevOps and GitLab on major languages.

(0 reviews)
Pricing:
  • Open Source
  • Freemium
  • Free Trial
  • โ‚ฌ10.0 / Monthly (100,000 Lines of Code)
Platforms:
  • Web
  • Browser
  • Google Chrome
  • Internet Explorer
  • Firefox
  • Safari
  • Cloud
  • JavaScript
  • PHP
  • Python
  • Java
  • Ruby
  • TypeScript
  • JavaScript
  • C++
SonarCloud

SonarCloud Reviews and Details

This page is designed to help you find out whether SonarCloud is good and if it is the right choice for you.

Screenshots and images

  • SonarCloud Landing page
    Landing page //
    2023-07-20

Features & Specs

  1. SAST Analysis

    Bug, Security Vulnerability, and Code Smell detection with remediation guidance

  2. Code Reveiw

    Automatic code review and pull request feedback in your code repository

  3. Quality Gate

    Go/No Go Quality Gate failing your pipelines when code doesnโ€™t meet requirements

Badges

Promote SonarCloud. You can add any of these badges on your website.

SaaSHub badge
Show embed code
SaaSHub badge
Show embed code

Videos

We don't have any videos for SonarCloud yet.

Social recommendations and mentions

We have tracked the following product recommendations or mentions on various public social media platforms and blogs. They can help you see what people think about SonarCloud and what they use it for.
  • free-for.dev
    Sonarcloud.io โ€” Automated source code analysis for Java, JavaScript, C/C++, C#, VB.NET, PHP, Objective-C, Swift, Python, Groovy and even more languages, free for Open Source. - Source: dev.to / over 3 years ago
  • A new version of Podman Desktop is out: v0.9.0
    Website has been improved with a lot of UI enhancements and updated content. On CI side, dependabot is now enabled as well as SonarCloud. Source: over 3 years ago
  • Sunday Daily Thread: What's everyone working on this week?
    I am also using [SonarCloud](https://sonarcloud.io/) for static code analysis to minimize the chances of bugs. Source: about 4 years ago
  • RFC: A Full-stack Analytics Platform Architecture
    Ideally, software can quickly go from development to production. Continuous deployment and delivery are some processes that make this possible. Continuous deployment means establishing an automated pipeline from development to production while continuous delivery means maintaining the main branch in a deployable state so that a deployment can be requested at any time. Predecos uses these tools. When a commit goes... - Source: dev.to / about 4 years ago
  • js / senior vs junior /.then vs await
    There are tools that scan a repo and automatically drop a comment on a PR if it picks up smells on new code. We used Sonarcloud at a previous job. Source: over 4 years ago
  • How do I know if I am using the best practices in my Project?
    Use static analysis tools, something like sonarcloud (but I've yet to find one dedicated to React): this will highlight some known anti-patterns in your code so you can correct them. Source: over 4 years ago
  • Automate your building, testing, code styling, code analysis and your distribution
    Build code analysis for security and bug issues then upload it to sonarcloud. - Source: dev.to / over 4 years ago
  • How passion to paper books taught me Django and led to develop software that changed my life.
    I started coding. This time I didn't want it to be buggy. I wanted to do it well. Well... Let's just say "as well as I can". I implemented sonarcloud to keep an eye on me. I chose NuxtJS to give me structure I needed out of the box and I combined all I knew about REST, Django, Cloud, Python and Databased from the journeys before. That was not much but I managed to draw the database schema and went on coding it. Source: over 4 years ago
  • Basics of CI/CD
    SonarCloud is one the most popular solution. - Source: dev.to / over 4 years ago
  • Why You Need Static Code Analysis
    Thatโ€™s my personal favorite. It supports 27 programming languages (at the moment of writing). It has predefined recommended code styles for everything and it is easily integrated with Github/Bitbucket/Gitlab. Although it costs money, you can use SonarCloud for your open-source projects absolutely for free. - Source: dev.to / almost 5 years ago
  • Free for dev - list of software (SaaS, PaaS, IaaS, etc.)
    Sonarcloud.io โ€” Automated source code analysis for Java, JavaScript, C/C++, C#, VB.NET, PHP, Objective-C, Swift, Python, Groovy and even more languages, free for Open Source. - Source: dev.to / almost 5 years ago
  • How Azure can help your company expand in multiple regions (5 of 5)
    Once your build pipeline is completed, you can view the results of the analysis performed by SonarCloud by navigating to https://sonarcloud.io/ in your browser and selecting the appropriate SonarCloud project. - Source: dev.to / almost 5 years ago

Summary of the public mentions of SonarCloud

SonarCloud is generating considerable attention in the software industry, particularly among developers and organizations focused on enhancing code quality and security. As a cloud-based SaaS offering from SonarSource, SonarCloud serves as a sophisticated tool designed for static code analysis, integrated into continuous integration and deployment (CI/CD) practices to ensure code integrity.

Key Features and Benefits

  1. Wide Language Support: SonarCloud supports a diverse array of programming languagesโ€”currently 27โ€”including popular ones like Java, JavaScript, C/C++, C#, PHP, Python, and Swift. This extensive support makes it versatile for organizations with diverse codebases.

  2. Static Code Analysis: The tool is lauded for its static code analysis capabilities, which help identify bugs, security vulnerabilities, and code smells. This proactive approach assists teams in maintaining high standards of code quality and security.

  3. Integration and Automation: It seamlessly integrates with major version control systems like GitHub, Bitbucket, and GitLab, making it an attractive choice for teams looking to automate and streamline their code analysis processes. Its compatibility with CI/CD pipelines, as highlighted in several posts, underscores its utility in modern DevOps practices.

  4. Cost-Effectiveness: While SonarCloud is a paid service, starting at โ‚ฌ10/month, it offers significant value by providing free access to open-source projects. This feature makes it accessible to a broad range of developers and encourages widespread adoption within the open-source community.

  5. User Experience: Recent feedback highlights ongoing improvements to its user interface, enhancing the overall user experience. This aspect is particularly crucial for developers who rely on intuitive navigation and quick access to analytical insights.

Market Perception

SonarCloud enjoys a strong reputation for its reliability and effectiveness. In the competitive landscape of DevOps and developer tools, it stands out as a preferred choice, often being mentioned amongst leading tools such as Snyk and Veracode. Developers appreciate its ability to integrate static analysis seamlessly into the development lifecycle, thus reducing potential post-deployment issues.

Users have repeatedly praised its capacity to automate code review processes, facilitate early detection of code issues, and support best practices in software development. This feedback reflects its significance in maintaining cleaner, more secure codebases across development projects.

Critical Considerations

While SonarCloud is generally well-regarded, prospective users are advised to consider certain aspects before integration:

  • Learning Curve: New users might require some time to understand and leverage its full capabilities, particularly when dealing with complex projects.

  • Pricing for Large-Scale Projects: Although cost-effective for open-source projects, large-scale or enterprise deployments may need to carefully evaluate pricing against specific needs and existing tools to ensure cost-efficiency.

In conclusion, SonarCloud represents a robust solution that aligns with the evolving needs of modern software development, particularly in terms of quality and security. Its combination of extensive language support, integration ease, and advanced analytics positions it as a valuable asset in the DevOps toolkit.

Do you know an article comparing SonarCloud to other products?
Suggest a link to a post with product alternatives.

Suggest an article

SonarCloud discussion

Log in or Post with

Is SonarCloud good? This is an informative page that will help you find out. Moreover, you can review and discuss SonarCloud here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.