SonarCloud Valuable Features

SenthuranPooranananthan - PeerSpot reviewer
Senior Director of DevOps at Asset Works

The most valuable features of SonarCloud are the ability to discover vulnerabilities, security weak points, security hotspots, and all the feedback that comes into the feature branch. You can deploy the code with the security, you can eliminate the problem at the developer level rather than identifying the problem in the productions.

Having SonarCloud on the cloud there is no maintenance because they patch everything. It's easy to maintain, but it may be a problem with very large organizations because of some of the false-positive and you may need to be very cautious on very large enterprises. The solution is best suited for startups and mid-size companies.

It is supporting the mono and multi report and overall they're always improving. Initially, they did not support the mono report, now they started supporting the mono report approach, when is a benefit.

View full review »
Huzaifa Asif - PeerSpot reviewer
Cloud Engineer | Solution Architect at Respond.io

Recently, they introduced support for mono reports and microservices, which is a noteworthy development as it provides a more detailed view of each service. Now, we can easily assess which services have more code and identify areas with potential issues. This addition has proven to be the most beneficial feature for our current use case.

View full review »
SK
Senior Software Engineer at a tech services company with 51-200 employees

SonarCloud's user interface integrates with version control tools like GitLab, showing code smells and commits for code reviews. Within these code reviews, we gain a complete analysis of things like code flow, which was a particularly helpful feature.

SonarCloud is overall a good tool for identifying code smells, bugs, and code duplication, but we've found that using Android Lint is more effective for our needs.

The main advantage of using Android Lint over SonarCloud is its ease of integration. It was a bit tricky to integrate SonarCloud, inside the CI/CD pipeline, which had some integration challenges. No proper documentation existed, making it tough. 

Specifically, when pushing code and creating merge requests, SonarCloud wouldn't generate the merge request or run itself. This felt clunky and required extra configuration. The documentation just wasn't sufficient for integrating with our cloud and Android Lint. Ultimately, it took too long to integrate SonarCloud, leading us to explore other options like Android lint for improving code quality.

So, adding better documentation on integrating SonarCloud's pipeline within GitLab CI/CD would definitely be a valuable addition from my perspective. That's the key takeaway they should work on.

View full review »
Buyer's Guide
SonarCloud
March 2024
Learn what your peers think about SonarCloud. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.
Rashedul Khan - PeerSpot reviewer
Senior Software Engineer at Cimsolutions

The most valuable feature of SonarCloud is its overall performance.

View full review »
Sagar Mody - PeerSpot reviewer
Solutions Architect at a tech services company with 10,001+ employees

The platform has fewer false positives. It helps efficient code duplication concentration and integrates well with coverage tooling for generating reports. Its dashboard provides a unified view of various code quality metrics, including code duplication, unit test coverage, and security hotspots.

View full review »
MM
VP Business Development North America at Geko

I like that the solution can be installed locally. 

View full review »
GHASSAN ODETALLAH - PeerSpot reviewer
Head of Quality Engineers/Automation Architect at a tech company with 201-500 employees

The reports from SonarCloud are very good.

View full review »
Uzma Noreen - PeerSpot reviewer
Head of Infrastructure & Compliance & Cloud at TEO

The solution provides continuous code analysis which has improved the quality of our code. It can raise alarms on vulnerabilities with immediate reports on the dashboard. Few things are false positives and we can customize the rules. 

View full review »
HT
Senior Security Consultant at Tafhar IT Services

We bought the solution due to the fact that it was the lowest price. 

For what it is meant to do, it works pretty well. 

It's good for analysis.

View full review »
Buyer's Guide
SonarCloud
March 2024
Learn what your peers think about SonarCloud. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.