SonarQube Other Solutions Considered

Steven Gomez
Lead Engineer at a pharma/biotech company with 1,001-5,000 employees
We had looked at other code quality systems. We had looked at a number of them. I don't remember them all, but Clockwork was on that list. I think it comes down to picking one and getting used to how it works because they all do mostly the same thing. Some of them focus more on Java, some more on C++. I think Java seems to be the favorite. As far as what they can really do for you, there didn't seem to be any one of them that does ten times what another does. There were some differences, but not no show-stoppers that I recall. I guess the advice would be that one of several tools could do a good job for you, but you still have to manage it and manage the behavior that goes along with it. View full review »
Andrew Kew
Senior Java Developer at a financial services firm
I didn't. I am not sure if there are any other open source static analysis tools as good as this that I have found; Well at least three or four years ago there weren't. View full review »
Daniel Hall
Technical Architect with 1,001-5,000 employees
We evaluated the Checkmark Software Exposure Platform and Veracode, but they were expensive for a first go. View full review »
Rann Lifshitz
SW Automation Team Leader at a tech services company with 201-500 employees
We did not evaluate other static code analysis solutions. View full review »
Jeff Ingalls
Automation Tool Specialist at a comms service provider with 1,001-5,000 employees
We are looking into corporate security and a couple different tooling options for doing data code analysis and security scanning. We have looked into a few options: * We are looking at IBM AppScan. * I am going to be running a small PoC next week with Veracode. I started doing a bit of research on Veracode, and I saw how it ties in compared with SonarQube. View full review »
Application Security Analyst at a agriculture
We are looking for how we can integrate several products. We are using static code analysis, we are looking into runtime code analysis, and of course, we have a web application firewall. The problem with all of these tools is that you need a lot of maintenance, and you have a lot of false positives. So, we have tried to find the best solution. View full review »
Saurabh Ahuja
Devops Engineer at a healthcare company with 10,001+ employees
Technical Architect and Software Engineer at a tech services company

Sign Up with Email