Wir helfen Unternehmen seit 17 Jahren,
bessere Software zu finden

Über SonarQube

Integriere SonarQube in deine CI/CD, um den Build zu unterbrechen, wenn Qualitätsstandards nicht erreicht werden, sodass nur sauberer Code bereitgestellt wird.

Erfahre mehr über SonarQube

Vorteile:

The only thing is that the UI integration could be improved.

Nachteile:

Integration with visual studio code and binding with project is tad difficult.

Bewertungen zu SonarQube

Durchschnittliche Bewertung

Benutzerfreundlichkeit
4,3
Kundenservice
4,1
Funktionen
4,4
Preis-Leistungs-Verhältnis
4,5

Weiterempfehlungsquote

8,9/10

SonarQube hat eine Gesamtbewertung von 4,6 von 5 Sternen basierend auf 61 Nutzerbewertungen auf Capterra.

Hast du SonarQube bereits verwendet?

Teile deine Erfahrungen mit anderen Softwareinteressenten.

Nutzerbewertungen filtern (61)

Flor
Flor
Software Developer in Peru
Verifizierter Nutzer auf LinkedIn
Computer-Software, 11–50 Mitarbeiter
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

A free tool for source code analysis

5,0 vor 2 Jahren

Kommentare: It helped me to be able to do my job in improving the code, giving me possible solutions and saving me time.

Vorteile:

What I find most useful in this software is the code analysis, which gives detailed reports of the errors found and then suggests possible solutions. This saves time in software development.In addition, their large community helps solve problems that arise along the way.

Nachteile:

Sometimes the reports can give false positives, which requires that the personnel in charge of handling the software carefully review the results to avoid false positives.

Yusmeidy
Java Developer in Chile
Telekommunikation, 1.001–5.000 Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

Well defined by consistency and high operability

4,0 vor 7 Monaten

Kommentare: Brings quality and professionalism in the final results. It is an impressive tool.

Vorteile:

One of the outstanding values about SonarQube is the speed of analysis. It makes it easy to collaborate with other features to generate clean codes. I and my team had an easy time during deployment. It was quite easy to relate with our needs. Combining all this benefits leads to a consistent and reliable coding behavior.

Nachteile:

Installation of the tool was troublesome. We were forced to buy a new device with higher processing speed to avoid the numerous rebooting. Later, deployment and use was smooth.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Computer-Software, 10.000+ Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

Excellent code assurance tool

3,0 vor 2 Jahren

Kommentare: It's a great tool and be understood by experienced people more easily.

Vorteile:

Sonarqube helps me find out if there are any repetitive lines in my code. Since the code sometimes get lengthy or at times missed by me to recheck. It is added in continuous integration in jenkins which when runs code smells, coverage and quality will be detected.

Nachteile:

At times we need to precisely set all the settings for the issues to be detected. If any small mistake happens then no result can be seen. We use traditional sonarqube where we install and integrate rather then plugin in jenkins. So the traditional method needs to be more careful in installing and running it.

Kreasan
Jnr HR Business Partner in Südafrika
Bau, 10.000+ Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

SonarQube delivers high code quality standards for every project

5,0 vor 7 Monaten

Kommentare: Vibrant customer service and interactive product demo. Their work is great and commendable.

Vorteile:

For a while, I used the SonarQube product demo which is great and interactive giving the best experience. The dashboard is easy to use since it is designed with a lot of clarity and motivation. While in use, SonarQube can detect and help remove secrets in code but at the same time offering security against any breaches. Dealing with security vulnerabilities in codes is now made possible. Lastly, there are clear security reports in PDF form which helps us to evaluate the risks on our systems.

Nachteile:

It meets our quality and security expectations. No setbacks.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Bankwesen, 10.000+ Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

Code Quality Assurance

4,0 vor 9 Monaten

Kommentare: Overall, impressed by this tool that supports multiple languages, monitoring code quality, bugs and vulnerability detection. Also, integrates well with Jenkins, GitHub, etc.

Vorteile:

- It supports almost all commonly used languages like JAVA, Python, Javascript, etc. - Integrates well with CI/CD pipeline established in tools like Jenkins and GitHub. - Detects code duplication, bugs and vulnerabilities in code.

Nachteile:

- May be complex to understand the reports for new users. - May block delivery/deployment if hard gates are enabled by DevOps team which may delay project delivery.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Informationstechnologie & -dienste, 201–500 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

Elevate your code quality to the next level

4,0 vor 8 Monaten

Kommentare: The development process has been a bit slower than usual after SonarQube integration, but the quality and readability of the code is much better.

Vorteile:

The main feature of SonarQube is that it detects code complexities within the code so that the developer can optimize it. It also detects accessibility and security issues; code smells and suggests changes.

Nachteile:

It is a bit difficult to integrate with existing services and the quality checks may also conflict with other integrations.

Anselmo
IT Strategy in Portugal
Finanzdienstleistungen, 501–1.000 Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

SonarQube cornerstone of our continuous development lifecycle

5,0 vor 7 Monaten

Vorteile:

Easy to use interface Rules flexibility Broad set of rules to activate

Nachteile:

No roadmap for dynamic analysis Reports API not so flexible Fixed price approach

Allyson
Senior Staff Engineer in Deutschland
Computer-Software, 51–200 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

Navigating Code Clarity with SonarQube

5,0 vor 7 Monaten

Vorteile:

I love SonarQube's real-time code analysis, providing instant feedback. Recently, while working on a project, it flagged potential code smells, helping me enhance code quality preemptively.

Nachteile:

It is sometimes overwhelming amount of information and alerts, which can make it challenging to prioritize and address issues effectively.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Informationstechnologie & -dienste, 1.001–5.000 Mitarbeiter
Verwendete die Software für: 1-5 Monate
Herkunft der Bewertung

SonarQube reivew

5,0 vor 7 Monaten

Vorteile:

SonarQube provides important metrics such as code smells, bugs, vulnerabilities, and code coverage. Easy integration with CI/CD tools.

Nachteile:

SonarQube may produce false positives, as with any static analysis tool.

Antonio
Software Engineering in Italien
Versicherung, 51–200 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

Code quality matters

4,0 vor 9 Monaten

Kommentare: Very positive as it allows you to improve the writing of your code.

Vorteile:

Report both security and code quality vulnerabilities, indicating the reason for the flaw and the possible resolution. It allows you to set thresholds so as not to compromise too much the quality of the code and the coverage of the tests.

Nachteile:

It is necessary to configure it to avoid false positives in terms of code quality that can block the release of the code.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Internet, Selbstständig
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

Un super outil pour améliorer la qualité de code et la maintenir

5,0 vor 11 Monaten

Kommentare: J'ai utilisé SonarQube sur des repositories contenant des applications Angular, .NET et des scripts SQL. A chaque fois les recommandations étaient pertinentes et ont pu améliorer la qualité du code.

Vorteile:

SonarQube est complet. Il permet l'analyse de nombreux langages de développement sur plusieurs projets. Il propose de base plusieurs jeux de règles de qualité à appliquer et permet d'en ajouter d'autre. Pour chaque règle un exemple est fourni et des explications assez claire. Certaines règles concernent la qualité du code, mais pas que. Certaines touchent à la sécurité et d'autres aux performances. L'intégration dans un process de build via des tâches ou des jobs est assez facile.

Nachteile:

Le plus gros inconvénient de SonarQube est son coût qui peut s'avérer, selon les projets, un peu élevé. L'outil est néanmoins très facile à utiliser et à mettre en place.

Pedro
Pedro
consultant in Spanien
Verifizierter Nutzer auf LinkedIn
Computer-Software, 5.001–10.000 Mitarbeiter
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

Manten código de calidad gracias a SonarQube

4,0 letztes Jahr

Vorteile:

Me gusta mucho la integración con el servicio de devops de azure, gracias a ello puedo integrar las tareas de revisión de código de SonartiQube en la integración continua. Los reportes que genera son de gran utilidad para detectar malas prácticas o brechas de seguridad en el código.

Nachteile:

Me gustaría que el panel de administración de la herramienta fuera más configurable, para poder hacer que el análisis de código sea más efectivo.

Franck
Franck
Software engineer in Kamerun
Verifizierter Nutzer auf LinkedIn
Computer-Software, 11–50 Mitarbeiter
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

Avis positif

5,0 letztes Jahr

Vorteile:

Le fait que l'on puis enregistrer nos propre metriques pour les tests de qualités

Nachteile:

La documentation n'est pas forcément la plus aisée

Ie
DevOps Engineer in Estland
Computer-Software, 1.001–5.000 Mitarbeiter
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

Popular tool for code smell search in the organisation's repositories

5,0 letztes Jahr

Vorteile:

Easy-to-administer tool, with good functionality to monitor security part of your code (using SAST methodology), with ability to integrate with Jenkins, GitHub and other tools. You are able to fail the build if the code doesn't meet percentage score.

Nachteile:

When new repository is added - there should be pop-up suggestion to create SonarQube project for it, coming from SonarQube. At the moment the user/administrator must watch out for new repositories in the organisation, without a note from the system itself that there is a new repository which you might want to add for scanning.

Susan
Software Engineer in Australien
Fluggesellschaften/Luftfahrt, 201–500 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

Great product!

5,0 letztes Jahr

Vorteile:

This product has actually improved productivity within my team by making sure there’s no duplicate code and by making code easily understandable.

Nachteile:

Code maintenance is actually a difficult part.

Carlos
QAE in Portugal
Computer-Software, 1.001–5.000 Mitarbeiter
Verwendete die Software für: Mehr als 1 Jahr
Herkunft der Bewertung

SonarQube Review

4,0 letztes Jahr

Kommentare: Overall experience about Sonarqube - Effective tool for improving code quality but demands expertise for setup and maintenance.

Vorteile:

Comprehensive code quality analysis. Really good to detect bugs, vulnerabilities and code smells. And integration with popular CI/CD pipelines is really impressive.

Nachteile:

Setup and configuration can be complex for begineers. And limited support for some programming languages is what could be improved.

Raul Antonio
Raul Antonio
Graduate in USA
Verifizierter Nutzer auf LinkedIn
Musik, 2–10 Mitarbeiter
Verwendete die Software für: Kostenlose Testversion
Herkunft der Bewertung

Essential tool to guarantee quality and safety

4,0 letztes Jahr

Kommentare: As a developer, it has been an invaluable tool in improving the quality and security of my code. It has helped me proactively identify and address issues, allowing me to run cleaner, less bug-prone software.

Vorteile:

I love its ability to provide a clear and concise view of code quality.

Nachteile:

At first, I found it a bit overwhelming to understand all the available features and settings. Although the documentation and support help, I think there could be a better guide for new users.

Carlos
IT Manager in Spanien
Bankwesen, 51–200 Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

Sonarqube essential code quality analysis tool

4,0 vor 2 Jahren

Kommentare: In short, it is an indispensable tool and should be mandatory in all software development companies.

Vorteile:

The ability to analyze the quality of the code in each deployment or integration, together with the possibility of modifying the rules to allow deployment or not (quantity or criticality of errors or defects), as well as vulnerability analysis allows for better software, always keeping in mind of the developers the quality and security of the code.

Nachteile:

Like everything, the time it takes to leave it well configured and integrated with the rest of the systems, as well as the maintenance and updating of the standards, rules and vulnerabilities depending on the programming language and the news that are published at the level of security.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Computer-Software, Selbstständig
Verwendete die Software für: Kostenlose Testversion
Herkunft der Bewertung

Free open source

4,0 vor 2 Jahren

Vorteile:

- integrate CI/CD- customizable Quality Profiles- easy to use

Nachteile:

- performance Impact- limited programming language- open-source, some advanced features are only available in the commercial version

Pawan
Pawan
Tech Lead in Indien
Verifizierter Nutzer auf LinkedIn
Informationstechnologie & -dienste, 201–500 Mitarbeiter
Verwendete die Software für: 1-5 Monate
Herkunft der Bewertung

Review for Sonar Qube

5,0 vor 2 Jahren

Vorteile:

This is very good and user friendly application.

Nachteile:

As such i didn't found any con for this application.

Sadri
Architecte organique in Kanada
Computer-Software, 201–500 Mitarbeiter
Verwendete die Software für: Mehr als 2 Jahre
Herkunft der Bewertung

SonarQube l'outil a avoir

5,0 vor 2 Jahren

Kommentare: J'ai utilisé Sonarqube que ce soit avec l'invite de commande de faire une analyse du code avant de le pousser. et aussi la création du pipeline de compilation.

Vorteile:

il s'intègre dans le pipeline de compilation

Nachteile:

L'analyse du code prend du temps et parfois, il y a des recommandations qu'on ne peut pas corriger

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Computer-Software, 51–200 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

powerful code quality tool

5,0 vor 2 Jahren

Vorteile:

SonarQube can integrate with CI/CD tools such as Jenkins, GitLab, and Travis CI, making it easy to automate code analysis as part of the development process. SonarQube allows developers to customize the rules and profiles used for code analysis.SonarQube provides a dashboard and reporting features that allow developers to track the progress of code quality metrics and identify areas that require attention. This feature can help developers stay on top of code quality issues and make data-driven decisions about where to focus their efforts.

Nachteile:

Improving documentation could help users better understand how to use the tool effectively.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Hochschulbildung, 1.001–5.000 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

SonarQube is Great for Developers!

5,0 vor 2 Jahren

Kommentare: We could identify many code related issues that are presented in our code and improve the quality of the application that we are developing. As a overall, SonarQube tool is able to add a value to our applications.

Vorteile:

It is simple for developers to recognize their code smells, unused lines of code, errors, problems with the third-party libraries they are using, etc. information and the precise location of the issue. It also offers answers to those problems. As a result, figuring out the problems and fixing them is simple. This will be a terrific tool for developers. Except that, we can introduce our own rules for checking the code quality. It could identify the code issues that are vulnerable to cyber attacks such as XSS, SQL Injection, etc.

Nachteile:

It was difficult to use the SonarQube on-premise application. Once we pushed a new code section, the server needed to restart in order for the application to work.

Cristina
it specialist in Tschechien
Informationstechnologie & -dienste, 5.001–10.000 Mitarbeiter
Verwendete die Software für: 1-5 Monate
Herkunft der Bewertung

SonarQube

5,0 vor 2 Jahren

Vorteile:

The tool that got us better code. The integration of libraries and the amount of languages is enough to work with and integrate with other DevOps applications which is easy. Everything is very intuitive including the initial setup. Setting up multiple rules for languages is included as well as security. The static code scanning feature is good. The only thing is that the UI integration could be improved.

Nachteile:

The only thing is that the UI integration could be improved, maybe even better documentation, but otherwise I am satisfied with the application, deployment without problems, integration with other applications as well.

Verifizierter Rezensent
Verifizierter Nutzer auf LinkedIn
Computer-Software, 11–50 Mitarbeiter
Verwendete die Software für: 6-12 Monate
Herkunft der Bewertung

Great tool for Code Quality

5,0 vor 2 Jahren

Vorteile:

I appreciated how SonarQube offers an extensive collection of static code analysis tools that are user-friendly and comprehendible. They make it simple to quickly recognize potential errors and safety flaws in your code. Moreover, it has effective reporting features to allow you to keep track of and observe code quality over time.

Nachteile:

The biggest downside of SonarQube is that it can be difficult to configure and set up. It also requires a lot of manual configuration and maintenance.