1. Home
  2. Static Application Security Testing (SAST) Tools
  3. SonarQube Reviews
  4. User Review of SonarQube
SonarQube Must in Code Pipeline
January 18, 2023

SonarQube Must in Code Pipeline

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with SonarQube

We have been using it for code analysis and identifying the code smell and code threat. We have integrated in our code pipeline. Every push branch has to go through this check by SonarQube and any code smell or threat identified by SonarQube needs to be worked on by the respective developers to pass the pipeline.
  • For finding the code smell
  • For finding the code threat
  • Helping in improving code quality
  • Mandate to follow best practices
  • some code smell identification algo can be improved
  • Best practices should be upto date
  • Code smell identification
  • Best Practice Suggestion
  • Works required for code threat
  • Improved code quality
  • Best Practices followed is always helpful
  • Code threat removal
  • Security checks
SonarQube is much improved version as compared to SonarLint and Findbugs or any other software we found in similar category. It's open source and can be easily integrated with code pipeline.

Do you think SonarQube delivers good value for the price?

Yes

Are you happy with SonarQube's feature set?

Yes

Did SonarQube live up to sales and marketing promises?

Yes

Did implementation of SonarQube go as expected?

Yes

Would you buy SonarQube again?

Yes

SonarQube is the one of best tool to integrate for code pipeline that improves the code quality of developers and making to follow the best practice. It must be integrated with all repositories.