SonarQube Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Real User
Senior Java Developer at a financial services firm
Aug 30 2017

What is most valuable?

Most features in the product are very useful, but there are some parts that I personally use more than others. 1. Code Convention: Using the tool to implement some sort of coding convention is really useful and ensures that the code is... more»

How has it helped my organization?

This product has helped us improve the quality of code within the business and ensure all new developers keep to a similar code convention per project. This can basically be tracked back to saving the company money, because improved quality... more»

What needs improvement?

* Upgrading the version of the server is a bit cumbersome and could be made slightly easier. Allowing admin users to upgrade the software through the front-end would make upgrading easier. * Another improvement is with false positives.... more»
Real User
Senior Software Developer at a tech vendor
Jul 10 2017

What is most valuable?

Quality Gate: Automated rules for determining if a project is above or below a quality threshold. This is a concise "red"/"green" style, basic quality-control. This is integrated in the development and deployment process. Issue Explanations:... more»

How has it helped my organization?

Better live process: More automated quality control in the lifecycle of development/testing/deployment/production. This includes the prevention of potential bugs due to ineffective code, as well as keeping a more unified style of solutions.... more»

What needs improvement?

Deep intelligence and smarter code analysis: There are many cases where a bug or critical issue is reported. However, there is very little chance of rewriting the solution in some other way due to several circumstances. The written solution... more»
Find out what your peers are saying about SonarQube, Micro Focus, Checkmarx and others in Application Security.
288,379 professionals have used our research since 2012.
Real User
SW Automation Team Leader at a tech services company with 201-500 employees
Jul 06 2017

What is most valuable?

SonarLint: It gives code smell check during development, via linting in IntelliJ (it helped with best practices and in discovering the early potential bugs). SonarQube: Recording of issues over a period of time, with an indication of the... more»

How has it helped my organization?

SonarQube and SonarLint were adapted as part of the CI development process, i.e., the developers who committed to high severity issues in the repository were immediately notified via mail/Jenkins. An actual RuntimeException bug was discovered... more»

What needs improvement?

There is need for support for the additional languages and ease of use in adding new rules for detecting issues. Some issues that were detected after committing to the CSM by SonarQube were not displayed in SonarLint scans (hopefully this was... more»
Real User
Automation Tool Specialist at a comms service provider with 1,001-5,000 employees
Aug 07 2018

What do you think of SonarQube?

Primary Use Case Primary use is code standards, or code quality. It's worked out okay. I find it is light on the security side though. We brought into our CI pipeline to see if we could help our developers fix issues and identify issues sooner. • Improvements to My Organization Higher code quality.  Faster to market. Less errors. • Valuable Features The issues it identifies. How easily it ties into our continuous integration pipeline. It is very good at identifying technical debt. • Room for Improvement As far as code quality goes, I like it. It doesn't seem to do well when it comes to vulnerabilities on the security side. It may be that we don't have the right plugins, or we don't have the right add-ons. • Use of Solution Less than one year. • Stability...
Real User
DevOps Engineer at Trantor Software Private Limited
Sep 29 2016

What is most valuable?

We are working in the banking sector, and our application code is quite large in terms of performance. Ranorex has helped us a lot to follow Java code conventions for writing performance oriented code. It also has very good compatibility with... more»

How has it helped my organization?

It had changed the whole attitude of the developers of our team as they can see their code exceptions at compile time. With this, we have delivered a quality product to our stakeholders.

What needs improvement?

It would be great if it also covered XML code.
Real User
Devops Engineer at a healthcare company with 10,001+ employees
Aug 15 2017

What is most valuable?

I follow Quality Gate's graduation model within organization, and it is extremely helpful for me to benchmark products.

How has it helped my organization?

SonarQube ensures that we release a good quality of code to our customers. We have incorporated test driven development within the organization. It is also very helpful to bring a DevOps culture within the organisation.

What needs improvement?

Well, load balancing is something we expect it to have. Also, sometimes the loading dashboards are a little slow. When we have a thousand products published over it, we expect it to be more efficient in terms of serving requests from the... more»
Real User
Technical Architect and Software Engineer at a tech services company
Sep 12 2017

What is most valuable?

SonarQube is not valuable because of the information it gives it. We can gather that same information from several other tools as well. It is the way the information is presented that makes it so powerful. It provides a holistic picture of all quality issues in a software project. With SonarQube's web interface, it is easy to drill down to see the individual... more»

How has it helped my organization?

Individual developers are more concerned about the quality of their work when they see their results in the big picture.
Consultant
Director at a consultancy with 10,001+ employees
Jul 13 2017

What do you think of SonarQube?

Improvements to My Organization It has improved code quality and helped shift quality left. It also paved the way for implementing Continuous Integration/Continuous Delivery. • Valuable Features The customizable dashboard and ability to include results and coverage from unit test and other static analysis code tools. • Room for Improvement Ease of use/interface. • Stability Issues I didn't encounter any issues with stability. • Scalability Issues No - the tool was implemented in a pilot, and successfully scaled to the enterprise. • Customer Service and Technical Support Fairly good. • Previous Solutions Yes, we used PMD, FindBugs and FxCop. Switched for the reporting and dashboard capabilities. • Initial Setup There was a bit of a learning curve and...
See 2 More SonarQube Reviews

Articles

User Assessments By Topic About SonarQube

Find out what your peers are saying about SonarQube, Micro Focus, Checkmarx and others in Application Security.
288,379 professionals have used our research since 2012.

SonarQube Questions

SonarQube Projects By Members

SonarQube Consultants

What is SonarQube?

SonarQube is the central place to manage code quality, offering visual reporting on and across projects and enabling to replay the past to follow metrics evolution
Also known as
Sonar
SonarQube customers
Bank of America, Siemens, Cognizant, Thales, Cisco, eBay
BUYER'S GUIDE
Not sure which Application Security solution is right for you?

Download our free Application Security Report and find out what your peers are saying about SonarQube, Micro Focus, Checkmarx, and more!

Sign Up with Email