CAST Highlight vs SonarQube

Likelihood to Recommend

I think CAST is a great tool to give insight into your applications. The tool can be met with resistance from team members as the tool is going to expose defects that should be addressed. Out of the box, it may need some tailoring to focus on certain areas so that you are not overwhelmed with defects the first time you scan your code. But ultimately, you will want to eliminate all defects in the code and have all violations turned on.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 1 answers on this topic

SonarQube has a friendly UI that is easy to use and understand. The admin's control panel is very good and It's not really difficult to get through the settings. Its possible to build many rules that apply for each programming language, for example, .NET, and Java. You can easily set up rules and even with the community version. It's a great tool but you have to have a good project plan before being introduced to the tools. I would recommend using the SonarQube open-source version to get used to it before purchasing the license. Before we go with an enterprise product, we have to know the terms and how things are done to run software quality

Read full review

Debobrata Bose

Solution Architect

Danske IT and Support Services India Pvt LtdFinancial Services, 10,001+ employees

View all 15 answers on this topic

Pros

Identifies common coding vulnerabilities.
Compares code to industry best practices.
Assesses the code for data privacy compliance.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 1 answers on this topic

Generating code quality report
Calculates junit coverage of the codebase very efficiently and precisely
Highlights the bugs and vulnerabilities in our codebase
Informs the user of the improvements which can be done to the code to make it cleaner
SonarQube also suggests remediation and resolution of the problems it highlights

Read full review

shaurya jain

digital tech developer associate

AccentureInformation Technology & Services, 10,001+ employees

View all 15 answers on this topic

Cons

Code scans could be faster. A large application may need to be broken down into smaller sub-applications in order to facilitate faster code scans.
We spent a lot of time trying to figure out how to best structure our code base in the application for ultimate performance.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 1 answers on this topic

Local dashboard wont work without java installed on your machine
If talking about the local ui the configuration may be quite complex. Needs an experts advise
Its enterprise edition cost a fortune depending on a company size or users that may use it.

Read full review

Arush Soel

DevOps Engineer

Bebo Technologies Pvt LtdComputer Software, 501-1000 employees

View all 15 answers on this topic

Pricing Details

General

Free Trial

Yes

Free/Freemium Version

—

Premium Consulting/Integration Services

Yes

Entry-level set up fee?

Optional

Included

Starting Price

$25,000 per year

CAST Highlight Editions & Modules

—

Additional Pricing Details

Pricing is based on the size of the application portfolio (number of applications) with unlimited users.

General

Free Trial

Yes

Free/Freemium Version

Yes

Premium Consulting/Integration Services

Yes

Entry-level set up fee?

No

Starting Price

$0

SonarQube Editions & Modules

Edition

Community	Free
Developer EDITION	Starts at $150²
Enterprise EDITION	Starts at $20,000³
Data Center EDITION	Starts at $130,000⁴

none
100,000 Lines of Code
1 Million Lines of Code
20 Million Lines of Code

Additional Pricing Details

—

Support Rating

CAST Highlight 10.0

Based on 2 answers

Tech support and pro services are top-notch.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 2 answers on this topic

SonarQube 9.0

Based on 2 answers

We we easily able to integrate the SonarQube steps into our TFS process via the Microsoft Marektplace, we didn't have the need to call SonarQube support. We've used their online documentation and community forum if we ran into any issues.

Read full review

Verified User

Professional in Information Technology

Insurance Company, 51-200 employees

View all 2 answers on this topic

Alternatives Considered

These other tools only do a part of what CAST does. CAST gives a comprehensive view into the code looking at all aspects, code quality, security, maintainability, vulnerability, privacy, reuse, etc. These other tools only focus on one or two dimensions.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 1 answers on this topic

I personally evaluated klocwork in a previous company and it worked well for Static Code Analysis for C++ applications but the Java support was not as good as SonarQube. Also the overall tooling and integrations provided by SonarQube is stellar and very other competitors can provide such services and IDE integrations.The output results from SonarQube tests can be easily read, including by other services for automation purposes, and creating reports for audits or other teams is nice and easy.

Read full review

Daniel Anjos

Product Design/Development Engineer

TransferwiseFinancial Services, 1001-5000 employees

View all 15 answers on this topic

Return on Investment

I believe once we had the tool working for our code base, we immediately saw positive ROI.
We spent some time getting to where our code code be scanned efficiently but some of that was trying to do things ourselves instead of fully utilizing Cast Professional Services. I highly recommend to do an engagement with CAST to have them help setup the tool in your environment or to run it in the cloud for you.

Read full review

Gene Baker

Vice President, Chief Architect, Development Manager and Software Engineer

WySTAR Global Retirement Solutions, a Wells Fargo CompanyFinancial Services, 10,001+ employees

View all 1 answers on this topic

Our client is quite pleased with the demonstration of this tools
Our organisation is using a community edition right now but is planning to migrate to a enterprise version to use it commercially.
It is quite a costly tool but our organisation is willing to buy it for its enhanced features and security

Read full review

Arush Soel

DevOps Engineer

Bebo Technologies Pvt LtdComputer Software, 501-1000 employees

View all 15 answers on this topic

CAST Highlight vs SonarQube

CAST Highlight

SonarQube

Attribute Ratings

Likelihood to Recommend

CAST Highlight

SonarQube

Support Rating

CAST Highlight

SonarQube

Pros

Cons

Pricing Details

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

Starting Price

CAST Highlight Editions & Modules

Additional Pricing Details

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

Starting Price

SonarQube Editions & Modules

Edition

Additional Pricing Details

Support Rating

Alternatives Considered

Return on Investment

Screenshots

Add comparison