SonarSource Alternatives

Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.

Open Source

Ensure compliance with a variety of functional safety, security, and coding standards in embedded C/C++ software.

Unimus is a Network Automation and Configuration management (NCM) solution designed for fast deployment network-wide and ease of use. Unimus does not require learning any abstraction or templating languages, and does not require any coding skills.

Try for free freemium

lgtm.com is a platform for code analytics.

Liverpool Data Research Associates (LDRA) is a provider of software analysis, test and requirements...

The Clang Static Analyzer is a source code analysis tool that finds bugs in C, C++, and Objective-C...

Polyspace is a suite of static code analysis products developed by Matlab to help software developers, QA Testers, and engineers find critical problems in their code and fix them before they become a serious threat.

VCG is an automated code security review tool that handles C/C++, Java, C#, VB and PL/SQL.

Perforce Helix QAC is a handy, reliable, and highly rated Static Code Analysis solution that aids you in the process of finding vulnerabilities and problems within your C/C++ code.

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.

Open Source freemium $150.0 / Annually

David A. Wheeler's Page for Flawfinder

PVS-Studio is a useful piece of software for detecting problems in source code. The software examines program codes written in C, C++, and C# for any problems that might prohibit the code from functioning properly.

Static Code Analysis

Find and fix defects in your Java, C/C++ or C# open source project for free