--- description: Reviews zu SonarQube Software: Systemübersicht, Funktionen, Preisinformationen und Ratings & Reviews. Entdecke kostenlose Live-Demos und vergleiche SonarQube mit ähnlichen Programmen. image: https://gdm-localsites-assets-gfprod.imgix.net/images/software_advice/og_logo-55146305bbe7b450bea05c18e9be9c9a.png title: SonarQube | Bewertungen, Preise und Demos – SoftwareAdvice DE --- Breadcrumb: [Startseite](/) > [Continuous-Integration-Tools](/directory/4694/continuous-integration/software) > [SonarQube](/software/182719/sonarqube) # SonarQube Canonical: https://www.softwareadvice.de/software/182719/sonarqube Seite: 1 / 4\ Weiter: [Nächste Seite](https://www.softwareadvice.de/software/182719/sonarqube?page=2) > SonarQube ist ein führendes Tool zur kontinuierlichen Überprüfung der Codequalität und -sicherheit deiner Codedatenbanken. Die Software unterstützt deine Entwicklungsteams während der Codebewertung. SonarQube umfasst 27 Programmiersprachen und koppelt sich mit deiner Software-Pipeline. Die Anwendung bietet Entwicklern klare Abhilfen, damit Probleme verstanden und behoben werden können. Das gesamte Team erhält eine bessere und sichere Software. > > Bewertung: **4.5/5** von 66 Nutzern. Top bewertet für **Weiterempfehlungsquote**. ----- ## Kurzstatistiken und Ratings | Metrik | Bewertung | Detail | | **Gesamt** | **4.5/5** | 66 Nutzerbewertungen | | Bedienkomfort | 4.2/5 | Auf Basis der Gesamtbewertungen | | Kundenbetreuung | 4.0/5 | Auf Basis der Gesamtbewertungen | | Preis-Leistungs-Verhältnis | 4.4/5 | Auf Basis der Gesamtbewertungen | | Funktionen | 4.4/5 | Auf Basis der Gesamtbewertungen | | Empfehlungsprozentsatz | 90% | (9/10 Weiterempfehlungsquote) | ## Über den Anbieter - **Unternehmen**: SonarSource - **Region**: Geneva, Schweiz ## Gewerblicher Kontext - **Startpreis**: 720,00 $ - **Preismodell**: (Kostenlose Version verfügbar) (Kostenlose Testversion) - **Zielgruppe**: Selbstständig, 2–10, 11–50, 51–200, 201–500, 501–1.000, 1.001–5.000, 5.001–10.000, 10.000+ - **Bereitstellungen und Plattformen**: Cloud, SaaS, webbasiert, Mac (Desktop), Windows (Desktop), Linux (Desktop), Windows (On-Premise), Linux (On-Premise) - **Unterstützte Sprachen**: Englisch - **Verfügbare Länder**: Australien, Brasilien, Deutschland, Frankreich, Indien, Irland, Italien, Japan, Kanada, Neuseeland, Niederlande, Philippinen, Schweden, Schweiz, Singapur, Spanien, Südafrika, Vereinigte Arabische Emirate, Vereinigte Staaten, Vereinigtes Königreich ## Funktionen - API - Aktivitäts-Dashboard - Anwendungssicherheit - Aufgabenmanagement - Benutzerdefinierte Entwicklung - Berichterstattung / Analyse - Compliance Management - Continuous Integration - Dashboard - Daten-Import / -Export - Debuggen - Einsatz-Management - Fehlerverfolgung - Grafische Benutzeroberfläche - Integrierte Entwicklungsumgebung - Konfigurierbarer Workflow - Kontinuierliche Bereitstellung - Kontinuierliche Lieferung - Lifecycle-Management - Mehrsprachiges Scannen ## Integrationen (5 insgesamt) - Bitbucket - GitHub - GitLab - Jenkins - Microsoft Azure ## Optionen für Kundensupport - E-Mail/Helpdesk - FAQ/Forum - Telefon-Support ## Category - [Continuous-Integration-Tools](https://www.softwareadvice.de/directory/4694/continuous-integration/software) ## Ähnliche Kategorien - [Continuous-Integration-Tools](https://www.softwareadvice.de/directory/4694/continuous-integration/software) - [SAST-Tools (Static Application Security Testing)](https://www.softwareadvice.de/directory/4429/sast/software) - [Programmiersoftware](https://www.softwareadvice.de/directory/4499/app-development/software) ## Alternativen 1. [GitHub](https://www.softwareadvice.de/software/397820/github) — 4.8/5 (6155 reviews) 2. [GitLab](https://www.softwareadvice.de/software/28004/gitlab) — 4.6/5 (1215 reviews) 3. [Aikido Security](https://www.softwareadvice.de/software/433685/aikido) — 4.7/5 (6 reviews) 4. [Dynatrace](https://www.softwareadvice.de/software/234304/dynatrace) — 4.5/5 (82 reviews) 5. [OX Security](https://www.softwareadvice.de/software/394148/ox-security) — 4.7/5 (3 reviews) ## Nutzerbewertungen ### "Loved using SonarQube\!\!\!" — 5.0/5 > **Vishvesh** | *27. April 2022* | Computer-Software | Empfehlungsbewertung: 10.0/10 > > **Vorteile**: The way it evaluates all of the code generated and reports on any violations of standard coding help us optimize the written code, ensuring that the smallest number of lines are created to properly cover the functionality. It offers a lovely user interface with distinct groups of infractions ranging from small to large, and it involves fixing the code's needless complexity. It also aids in the removal of duplicate code that has been used several times and the upkeep of method standards. > > **Nachteile**: Integrating Sonarqube into CI/CD Pipelines takes time, and it may take even longer if the developer is newer. More real-time solutions could be included in the available guide, making it easier to handle issues and complete the integration. > > We primarily need to perform some static analyses. Everyone sends a pool request while they're coding. We must guarantee that the code is up to date before committing it to the main branch. That's basically how we work to make sure that whatever rules we've set up, whatever gates we've set up, are followed before we commit the code to the main branch. I had a lot of fun with the powerful tool. ----- ### "The best bugs exterminator" — 5.0/5 > **Flavio** | *29. Mai 2022* | Telekommunikation | Empfehlungsbewertung: 10.0/10 > > **Vorteile**: Code review could be more focused on the new features implementation than trying to identify silly basic faults. > > **Nachteile**: The Eclipse Sonarqube plugin was not easy to make it work in the same manner was it was setup in the CI/CD machines. > > We can't live anymore without Sonarqube. When we started using it 5 years ago, the teams adoption was very fast. ----- ### "Great tool to drive Coding Quality standards" — 3.0/5 > **Chandramouli** | *12. August 2021* | Krankenhausversorgung & Gesundheitswesen | Empfehlungsbewertung: 7.0/10 > > **Vorteile**: PR analysis and Integration with Bitbucket are most helpful. > > **Nachteile**: 1. Number of rules should be increased. 2. Few rules should have custom exclusions. Ex: Naming conventions =\> Organisation-specific words will be there which should be in Capital. 3. Generating a lot of false positives 4. Executive reports should generate based on scheduled triggers. We have 20 projects which are assigned to a Portfolio. if you are going to generate a report and send an email for the first portfolio calculation then the rest of the 19 projects info for that day will be missed. Higher management will think that the generated report is the latest but it is not. 5. PR analysis reports should be generated Quickly > > PR analysis and Integration with Bitbucket are most in avoiding the new issues. The tool needs a lot of improvements 1. Number of rules should be increased. 2. Few rules should have custom exclusions. Ex: Naming conventions =\> Organisation-specific words will be there which should be in Capital. 3. Generating a lot of false positives 4. Executive reports should generate based on scheduled triggers. We have 20 projects which are assigned to a Portfolio. if you are going to generate a report and send an email for the first portfolio calculation then the rest of the 19 projects info for that day will be missed. Higher management will think that the generated report is the latest but it is not. 5. PR analysis reports should be generated Quickly ----- ### "Improve code quality with sonarQube" — 5.0/5 > **Pinki** | *31. Dezember 2022* | Computer-Software | Empfehlungsbewertung: 10.0/10 > > **Vorteile**: Its very helpful tool for improving code quality and find vulnerabilities in code which reduces the security issue as well as reduce issue on production. It check duplicate code, logical bug and many more. > > **Nachteile**: Custom role adding is difficult rest all good. > > Its very good tool for scanning code and improving code quality by using this tool now we are able to improve code quality which reduces the review time and issues on production. ----- ### "One of the Best tools to incorporate Security into Pipeline" — 5.0/5 > **Mohammed** | *2. Oktober 2021* | Informationstechnologie & -dienste | Empfehlungsbewertung: 9.0/10 > > **Vorteile**: Great knowledgebase in understanding the bugs and vulnerabilities and fixing them. Highly informational dashboard and tools to filter huge amount of repos. > > **Nachteile**: Customizing rules are difficult. Certain times they will catch comments and rule engine still needs tweaking > > Sonar cube has been used for Static code analysis and Has been built to Jenkins Pipeline, It allowed to identify huge amount vulnerabilities and helped us to improve our code quality to a great instant. ----- Seite: 1 / 4\ Weiter: [Nächste Seite](https://www.softwareadvice.de/software/182719/sonarqube?page=2) ## Links - [Auf SoftwareAdvice anzeigen](https://www.softwareadvice.de/software/182719/sonarqube) ## Diese Seite ist in den folgenden Sprachen verfügbar | Sprache | URL | | de | | | en | | | en-AU | | | en-GB | | | en-IE | | | en-NZ | | | fr | | ----- ## Strukturierte Daten