1. Home
  2. Continuous Integration Tools
  3. SonarCloud
  4. Reviews of SonarCloud
Learn why GetApp is free

SonarCloud Reviews

SonarCloud

4.3 (7)
Write a Review!
SonarCloud is a cloud-based alternative of the SonarQube .

Overall rating

4.3 /5
(7)
Value for Money
4.3/5
Features
4.4/5
Ease of Use
4.6/5
Customer Support
3.5/5
86%
recommended this app
Learn more about SonarCloud
Sort by
Most Helpful Most Recent

7 Reviews

Londou Jacques
Londou Jacques
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

SonarCloud one of the cloud-based code quality and security analysis tools

Reviewed on 2023/05/04

Pros

SonarCloud has a strong focus on security and compliance, with features such as vulnerability detection, security hotspots, and compliance reporting.

Cons

A potential drawback is the complexity of SonarCloud. While SonarCloud's comprehensive feature set can be a strength, it can also make the platform more challenging to use and configure

Paolo
Overall rating
  • Industry: Computer Software
  • Company size: 51–200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 10.0 /10

Essential tool for professional code delivery

Reviewed on 2022/09/04

SonarCloud improves software quality and developers' skills since it shows where the bugs and...

SonarCloud improves software quality and developers' skills since it shows where the bugs and security hotspots are and how to correct them.

Pros

I use GitHub integration to run analysis on Pull Requests via GitHub workflows. Pull Request decoration is a great feature, it adds analysis results directly to GitHub PR's page.

Cons

SonarCloud reports also the code coverage by automated test, but it does not execute the report itself. You have to configure an external plugin (based on the nature of the project) that produces a report that SonarCloud can read and include in its dashboard and PR decoration.

Alternatives Considered

SonarQube

Reasons for Switching to SonarCloud

I decided to use SonarCloud over SonarQube because it is not more expensive and you don't have to purchase and maintain the machine to run the on-premise server.
Donovan
Overall rating
  • Industry: Printing
  • Company size: 51–200 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

Good tool, easy to setup, cloud means limited in customisation

Reviewed on 2022/03/23

Overall it was great

Overall it was great

Pros

Super easy to setup. Took literally minutes to do and then maybe another hour to tweak to fully operational. Gives community standard results very quickly.

Cons

The inability to add in some extra key scanners/rules is quite limiting.

Alternatives Considered

Veracode

Reasons for Switching to SonarCloud

Price, ease of setup and breadth of language coverage
Dimitri Alexander
Dimitri Alexander
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

SonarCloud is a must have in your stack

Reviewed on 2022/08/04

It's still a good tool that help the dev teams to increase their knowledge in a specific language,...

It's still a good tool that help the dev teams to increase their knowledge in a specific language, it's still gives good indicator, overall it's still a good companion

Pros

It's free, as a Self hosted instance with sonarqube, and it's free for open source project. I like the advice they give that my IDE doesn't

Cons

It's a bit using a lot of RAM as it is written in Java

David Felipe
David Felipe
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51–200 Employees
  • Used Monthly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 9.0 /10

Simple and powerful tool to improve your delivery process

Reviewed on 2022/10/18

We have more than 45 repos, and we practice continuous delivery, Sonar help us reduce the overhead...

We have more than 45 repos, and we practice continuous delivery, Sonar help us reduce the overhead by automating some tasks that previously were executed by a developer. They gain more control over their time, without sacrificing code quality

Pros

Helps my team to reduce time on checking several controls that are very standard in our projects, like code coverage, code smells, complexity, and security.

Cons

I used to like one functionality they had on the open source version (Sonarqube) in which the software commented the code directly on GitHub, helping the developer to notice their mistakes; I haven´t been able to use it again.Sometimes the configuration and customization are not very straightforward, and developers spend a lot of time trying to tune the tools.

Michael
Overall rating
  • Industry: Health, Wellness & Fitness
  • Company size: 1,001–5,000 Employees
  • Used Monthly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 9.0 /10

Code Quality for just about Anything

Reviewed on 2022/06/24

We've seen a large increase in our code coverage and quality over the past two years of using...

We've seen a large increase in our code coverage and quality over the past two years of using SonarCloud. Some of our software had 0% coverage or less than 30% and a large majority of our code repositories have over 80% coverage now.

Pros

It tracks code quality over time. It does static analysis to look for duplicate code blocks, code smells, cyclomatic complexity, security issues, and more. It will also ingest code coverage reports to track test coverage over time. Integrates with GitHub (and other tools) so you can gate PR's based on the percent of code coverage and absence of flaws. We utilize it on mobile Xamarin projects, Kotlin projects, React web projects. It's a pretty mature product that has been around for a while. Its available in a free form, SonarQube, for you to test it out and run things locally. Static analysis helps ease the burden of code reviewers since it finds many common issues such as not null checking a parameter. It shoes metrics over time so you can see how your code base is improving over time. It basically automates code quality checking and metrics.

Cons

It can be a pain to set up your CI/CD pipeline to download and run all the necessary things to integrate with SonarCloud. It requires running some commands before you do a build and then some more after you do a build. SonarQube helps a lot with setting things up and testing your workflow locally though.

Verified Reviewer
Overall rating
  • Industry: Marketing & Advertising
  • Company size: 51–200 Employees
  • Used Monthly for 1-5 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

A simple and easy way to integrate sonarcube code analysis solution

Reviewed on 2022/11/23

very good and super useful

very good and super useful

Pros

easiness and robustness of integration with cloud.

Cons

a bit costly in sonarcloud but when you compare management cost ,its okey