SonarCloud

SonarCloud is a cloud-based alternative of the SonarQube .

About SonarCloud

SonarCloud is a cloud-based alternative of the SonarQube platform, offering continuous code quality and security analysis as a service. SonarCloud integrates seamlessly with popular version control and CI/CD platforms such as GitHub, Bitbucket, and Azure DevOps. It provides static code analysis to identify and help remediate issues such as bugs and security vulnerabilities. SonarCloud enables developers to receive immediate feedback on their code within their development environment, facilitating the maintenance of high-quality code standards, and promoting a culture of continuous improvement in software development projects.


Key benefits of SonarCloud

-Automatic, zero-configuration, analysis with GitHub for many popular languages

-Authentication integration with GitHub, Azure DevOps, Bitbucket and GitLab

-Immediate access to new features and functionality

-Free open source code analysis

-Clear go/no-go Sonar Quality Gate - Fail pipelines when the code quality doesn’t meet your defined requirements and prevent problems from being merged or deployed.


Images

SonarCloud Software - Overall Projects Summary View
SonarCloud Software - Overview of a Project Analysis
SonarCloud Software - Issues discovered in a project
SonarCloud Software - Detailed view of an issue showing where is the issue and why it is an issue.
View 5 more
SonarCloud video
SonarCloud Software - Overall Projects Summary View
SonarCloud Software - Overview of a Project Analysis
SonarCloud Software - Issues discovered in a project
SonarCloud Software - Detailed view of an issue showing where is the issue and why it is an issue.

Not sure about SonarCloud? Compare with a popular alternative

SonarCloud

4,3 (7)
VS.
Highly reviewed

Starting Price

€11,00
month
US$7,75
month

Pricing Options

Free version
Free trial
Free version
Free trial

Features

6
160

Integrations

4
20

Ease of Use

4,6 (7)
4,0 (14 025)

Value for Money

4,3 (7)
4,3 (14 025)

Customer Service

3,5 (7)
4,2 (14 025)
Green rating bars show the winning product based on the average rating and number of reviews.

Alternatives

Jira

4,4
#1 Alternative to SonarCloud
JIRA is the tracker for teams planning & building great products. Millions choose JIRA to capture & organize issues,...

CxSAST

3,9
#2 Alternative to SonarCloud
Checkmarx Static Application Security Testing (CxSAST) is designed to help businesses conduct static analysis for...

Veracode

4
#3 Alternative to SonarCloud
Veracode is a static application security testing (SAST) software designed to help businesses review applications'...

SonarQube

4,6
#4 Alternative to SonarCloud
SonarQube is a code quality and vulnerability solution for development teams that integrates with CI/CD pipelines.

Reviews

Overall rating

4,3 /5
(7)
Value for Money
4,3/5
Features
4,4/5
Ease of Use
4,6/5
Customer Support
3,5/5

Already have SonarCloud?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Showing 5 reviews of 7
Dimitri Alexander
Dimitri Alexander
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

SonarCloud is a must have in your stack

Reviewed on 2022/08/04

It's still a good tool that help the dev teams to increase their knowledge in a specific language,...

It's still a good tool that help the dev teams to increase their knowledge in a specific language, it's still gives good indicator, overall it's still a good companion

Pros

It's free, as a Self hosted instance with sonarqube, and it's free for open source project. I like the advice they give that my IDE doesn't

Cons

It's a bit using a lot of RAM as it is written in Java

Paolo
Overall rating
  • Industry: Computer Software
  • Company size: 51–200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 10.0 /10

Essential tool for professional code delivery

Reviewed on 2022/09/04

SonarCloud improves software quality and developers' skills since it shows where the bugs and...

SonarCloud improves software quality and developers' skills since it shows where the bugs and security hotspots are and how to correct them.

Pros

I use GitHub integration to run analysis on Pull Requests via GitHub workflows. Pull Request decoration is a great feature, it adds analysis results directly to GitHub PR's page.

Cons

SonarCloud reports also the code coverage by automated test, but it does not execute the report itself. You have to configure an external plugin (based on the nature of the project) that produces a report that SonarCloud can read and include in its dashboard and PR decoration.

Alternatives Considered

SonarQube

Reasons for Switching to SonarCloud

I decided to use SonarCloud over SonarQube because it is not more expensive and you don't have to purchase and maintain the machine to run the on-premise server.
Londou Jacques
Londou Jacques
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

SonarCloud one of the cloud-based code quality and security analysis tools

Reviewed on 2023/05/04

Pros

SonarCloud has a strong focus on security and compliance, with features such as vulnerability detection, security hotspots, and compliance reporting.

Cons

A potential drawback is the complexity of SonarCloud. While SonarCloud's comprehensive feature set can be a strength, it can also make the platform more challenging to use and configure

Donovan
Overall rating
  • Industry: Printing
  • Company size: 51–200 Employees
  • Used Daily for 1+ year
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

Good tool, easy to setup, cloud means limited in customisation

Reviewed on 2022/03/23

Overall it was great

Overall it was great

Pros

Super easy to setup. Took literally minutes to do and then maybe another hour to tweak to fully operational. Gives community standard results very quickly.

Cons

The inability to add in some extra key scanners/rules is quite limiting.

Alternatives Considered

CxSAST and Veracode

Reasons for Switching to SonarCloud

Price, ease of setup and breadth of language coverage
Michael
Overall rating
  • Industry: Health, Wellness & Fitness
  • Company size: 1 001–5 000 Employees
  • Used Monthly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 9.0 /10

Code Quality for just about Anything

Reviewed on 2022/06/24

We've seen a large increase in our code coverage and quality over the past two years of using...

We've seen a large increase in our code coverage and quality over the past two years of using SonarCloud. Some of our software had 0% coverage or less than 30% and a large majority of our code repositories have over 80% coverage now.

Pros

It tracks code quality over time. It does static analysis to look for duplicate code blocks, code smells, cyclomatic complexity, security issues, and more. It will also ingest code coverage reports to track test coverage over time. Integrates with GitHub (and other tools) so you can gate PR's based on the percent of code coverage and absence of flaws. We utilize it on mobile Xamarin projects, Kotlin projects, React web projects. It's a pretty mature product that has been around for a while. Its available in a free form, SonarQube, for you to test it out and run things locally. Static analysis helps ease the burden of code reviewers since it finds many common issues such as not null checking a parameter. It shoes metrics over time so you can see how your code base is improving over time. It basically automates code quality checking and metrics.

Cons

It can be a pain to set up your CI/CD pipeline to download and run all the necessary things to integrate with SonarCloud. It requires running some commands before you do a build and then some more after you do a build. SonarQube helps a lot with setting things up and testing your workflow locally though.

Showing 5 reviews of 7 Read all reviews

SonarCloud FAQs

Below are some frequently asked questions for SonarCloud.

SonarCloud offers the following pricing plans:

  • Starting from: €11,00/month
  • Pricing model: Free Version, Subscription
  • Free Trial: Available

Subscribing to a paid plan on SonarCloud allows you to create a private organization containing private projects. You pay upfront for a maximum number of private lines of code to be analyzed in your organization. SonarCloud pricing starts at €11/month for a maximum analysis of 100,000 LOC and can extend to €5,250/month for a maximum analysis of 20M LOC.

SonarCloud has the following typical customers:

Self Employed, 2–10, 11–50, 51–200, 201–500, 501–1 000, 1 001–5 000

We do not have any information about what languages SonarCloud supports

SonarCloud supports the following devices:

SonarCloud integrates with the following applications:

Bitbucket, GitHub, GitLab, Microsoft Azure

SonarCloud offers the following support options:

FAQs/Forum

Related categories

See all software categories found for SonarCloud.