SonarCloud Reviews

Name: SonarCloud
Brand: Sonar
Rating: 4 (10 reviews)

Vendor: Sonar

4.2 out of 5

10 reviews
100% willing to recommend

What is SonarCloud?UNIXBusinessApplication
Price:

SonarCloud is a cloud-based alternative of the SonarQube platform, offering continuous code quality and security analysis as a service. SonarCloud integrates seamlessly with popular version control and CI/CD platforms such as GitHub, Bitbucket, and Azure DevOps. It provides static code analysis to identify and help remediate issues such as bugs and security vulnerabilities. SonarCloud enables developers to receive immediate feedback on their code within their development environment, facilitating the maintenance of high-quality code standards, and promoting a culture of continuous improvement in software development projects. It helps produce software that is secure, reliable, and maintainable. SonarCloud is free for open-source projects and is offered as a paid subscription for private projects, priced per lines of code.

Get the SonarCloud Buyer's Guide and find out what your peers are saying about SonarCloud, SonarQube, Veracode and more!

SonarCloud is the #10 ranked solution in AST tools. PeerSpot users give SonarCloud an average rating of 8.4 out of 10. SonarCloud is most commonly compared to SonarQube: SonarCloud vs SonarQube. SonarCloud is popular among the large enterprise segment, accounting for 58% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 18% of all views.

Helped 768,246 peers since 2012

Featured reviews

SenthuranPooranananthan

Senior Director of DevOps at Asset Works

Apr 25, 2022

The most valuable features of SonarCloud are the ability to discover vulnerabilities, security weak points, security hotspots, and all the feedback that comes into the feature branch. You can deploy the code with the security, you can eliminate the problem at the developer level rather than identifying the problem in the productions. Having SonarCloud on the cloud there is no maintenance because they patch everything. It's easy to maintain, but it may be a problem with very large organizations because of some of the false-positive and you may need to be very cautious on very large enterprises. The solution is best suited for startups and mid-size companies. It is supporting the mono and multi report and overall they're always improving. Initially, they did not support the mono report, now they started supporting the mono report approach, when is a benefit.

Read full review

Huzaifa Asif

Cloud Engineer | Solution Architect at Respond.io

Dec 12, 2023

There's room for improvement in the configuration process, particularly during the initial setup phase. Setting up features like mono reports can be challenging, and the existing documentation could use improvement in providing clearer instructions. I found myself needing to engage with support multiple times to navigate through certain aspects. Additionally, it would be beneficial if it could streamline the integration process for new features. Enhancing documentation on how to integrate these features seamlessly would go a long way in improving user experience. The introduction of an auto-commit functionality would be a valuable addition. Some other tools offer this feature, allowing for the automatic creation of pull requests to address identified issues. This functionality significantly reduces the manual effort required.

Read full review

Rashedul Khan

Senior Software Engineer at Cimsolutions

Mar 10, 2023

We are using SonarCloud for static analysis. We must utilize this tool for code analysis prior to deployment. For instance, it is necessary to check for bugs or inconsistencies in the code and rectify them. SonarCloud can assist in this regard by providing high-quality content The most valuable…

Read full review

SonarCloud market share

As of March 2024, the market share of SonarCloud in the Application Security Testing (AST) category stands at 5.8%, marking a decrease of 23.6% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Application Security Testing (AST)

Key learnings from peers

Valuable Features

"SonarCloud is overall a good tool for identifying code smells, bugs, and code duplication, but we've found that using Android Lint is more effective for our needs."
"Recently, they introduced support for mono reports and microservices, which is a noteworthy development as it provides a more detailed view of each service."
"Its dashboard provides a unified view of various code quality metrics, including code duplication, unit test coverage, and security hotspots."

Room for Improvement

"The documentation needs improvement on optimizing build time for seamless CI/CD integration with our Android apps."
"There's room for improvement in the configuration process, particularly during the initial setup phase."
"SonarCloud's UI needs enhancement."

Pricing

"The current pricing is quite cheap."
"While not extremely cheap, it aligns well with market standards and offers good value."
"I rate the pricing a five out of ten."

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our SonarCloud Buyer's Guide for additional reliable information.