We performed a comparison between ERPScan SMART Cybersecurity Platform and SonarQube based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."The core scanning, the scanning process, has got a very nice pass management module. It's fantastic."
"With SonarQube's web interface, it is easy to drill down to see the individual problems, but also to look at the project from above and get the big picture, with possible larger problem areas."
"Engineers have also learned from the results and have improved themselves as engineers. This will help them with their careers."
"Provides local scanning for developers."
"The customizable dashboard and ability to include results and coverage from unit test and other static analysis code tools."
"It provides the security that is required from a solution for financial businesses."
"When comparing other static code analysis tools, SonarQube has fewer false-positive issues being reported. They have a lot of support for different tech stacks. It covers the entire developer community which includes Salesforce or it could be the regular Java.net project. It has actually sufficed all the needs in one tool for static code analysis."
"Using SonarQube benefits us because we are able to avoid the inclusion of malware in our applications."
"SonarQube: Recording of issues over a period of time, with an indication of the addition in the new issues or the reduction of existing issues (which were fixed)."
"The anomaly detection could be improved."
"The pricing could be reduced a bit. It's a little expensive."
"After scanning our code and generating a report, it would be helpful if SonarQube could also generate a solution to fix vulnerabilities in the report."
"I think the code security can be improved."
"Having performance regression would be a helpful add on or ability to be able to do during the scan."
"I don't believe you can have metrics of code quality based upon code analysis. I don't think it's possible for a computer to do it."
"Code security could be better. They are already focusing on it, but I see a lot of improvement opportunities over there. I can see a lot of false positives in terms of security. They need to make the tests more accurate so that the false positives are not detected so frequently. It would also help if they provided us with an installer."
"SonarQube needs to improve its support model. They do not work 24/7, and they do not provide weekend support in case things go wrong. They only have a standard 8:00 am to 5:00 pm support model in which you have to raise a support ticket and wait. The support model is not effective for premium customers."
"The reporting is good, but I am not able to download a specific report as a PDF, so downloading reports is something that should be looked at."
ERPScan SMART Cybersecurity Platform is ranked 55th in Application Security Tools while SonarQube is ranked 1st in Application Security Tools with 110 reviews. ERPScan SMART Cybersecurity Platform is rated 0.0, while SonarQube is rated 8.0. The top reviewer of ERPScan SMART Cybersecurity Platform writes "Good core scanning, a helpful GDPR assessment template and very good technical support". On the other hand, the top reviewer of SonarQube writes "Easy to integrate and has a plug-in that supports both C and C++ languages". ERPScan SMART Cybersecurity Platform is most compared with Onapsis, whereas SonarQube is most compared with Checkmarx One, SonarCloud, Coverity, Veracode and Snyk.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.