Capterra Logo
Helping businesses choose better software since 1999
SonarCloud

Reviews of SonarCloud

4.3 (7)
Write a Review!
Capterra offers objective, independent research and verified user reviews. We may earn a referral fee when you visit a vendor through our links.

Showing Most Helpful

Showing 7 of 7 reviews

Sort by:
Londou Jacques B. avatar
Londou Jacques B.
Developer
Computer Software, 1-10 employees
Used the software for: 1-2 years
Overall Rating
3.0
Ease of Use
4.0
Customer Service
3.0
Features
4.0
Value for Money
3.0
Likelihood to Recommend
7/10
Reviewer Source
Source: Capterra
May 4, 2023

"SonarCloud one of the cloud-based code quality and security analysis tools"

Pros: SonarCloud has a strong focus on security and compliance, with features such as vulnerability detection, security hotspots, and compliance reporting.

Cons: A potential drawback is the complexity of SonarCloud. While SonarCloud's comprehensive feature set can be a strength, it can also make the platform more challenging to use and configure

Paolo B.
Technical Architect
Computer Software, 51-200 employees
Used the software for: 6-12 months
Overall Rating
5.0
Ease of Use
5.0
Features
5.0
Value for Money
5.0
Likelihood to Recommend
10/10
Reviewer Source
Source: Capterra
September 4, 2022

"Essential tool for professional code delivery"

Overall: SonarCloud improves software quality and developers' skills since it shows where the bugs and security hotspots are and how to correct them.

Pros: I use GitHub integration to run analysis on Pull Requests via GitHub workflows. Pull Request decoration is a great feature, it adds analysis results directly to GitHub PR's page.

Cons: SonarCloud reports also the code coverage by automated test, but it does not execute the report itself. You have to configure an external plugin (based on the nature of the project) that produces a report that SonarCloud can read and include in its dashboard and PR decoration.

Alternatives Considered: SonarQube
Reasons for Choosing SonarCloud: I decided to use SonarCloud over SonarQube because it is not more expensive and you don't have to purchase and maintain the machine to run the on-premise server.
Donovan G. avatar
Donovan G.
Head of QA
Financial Services, 51-200 employees
Used the software for: 1-2 years
Overall Rating
5.0
Ease of Use
5.0
Customer Service
3.0
Features
4.0
Value for Money
4.0
Likelihood to Recommend
7/10
Reviewer Source
Source: Capterra
March 23, 2022

"Good tool, easy to setup, cloud means limited in customisation"

Overall: Overall it was great

Pros: Super easy to setup. Took literally minutes to do and then maybe another hour to tweak to fully operational. Gives community standard results very quickly.

Cons: The inability to add in some extra key scanners/rules is quite limiting.

Alternatives Considered: Veracode
Reasons for Choosing SonarCloud: Price, ease of setup and breadth of language coverage
Dimitri Alexander K. avatar
Dimitri Alexander K.
CTO
Computer Software, 1-10 employees
Used the software for: 2+ years
Overall Rating
5.0
Ease of Use
5.0
Customer Service
5.0
Features
5.0
Likelihood to Recommend
10/10
Reviewer Source
Source: Capterra
August 4, 2022

"SonarCloud is a must have in your stack"

Overall: It's still a good tool that help the dev teams to increase their knowledge in a specific language, it's still gives good indicator, overall it's still a good companion

Pros: It's free, as a Self hosted instance with sonarqube, and it's free for open source project. I like the advice they give that my IDE doesn't

Cons: It's a bit using a lot of RAM as it is written in Java

David Felipe C. avatar
David Felipe C.
VP of Engineering
Computer Software, 51-200 employees
Used the software for: 2+ years
Overall Rating
4.0
Ease of Use
4.0
Features
4.0
Value for Money
4.0
Likelihood to Recommend
9/10
Reviewer Source
Source: Capterra
October 18, 2022

"Simple and powerful tool to improve your delivery process"

Overall: We have more than 45 repos, and we practice continuous delivery, Sonar help us reduce the overhead by automating some tasks that previously were executed by a developer. They gain more control over their time, without sacrificing code quality

Pros: Helps my team to reduce time on checking several controls that are very standard in our projects, like code coverage, code smells, complexity, and security.

Cons: I used to like one functionality they had on the open source version (Sonarqube) in which the software commented the code directly on GitHub, helping the developer to notice their mistakes; I haven´t been able to use it again.Sometimes the configuration and customization are not very straightforward, and developers spend a lot of time trying to tune the tools.

Michael H.
staff software engineer
Health, Wellness and Fitness, 1,001-5,000 employees
Used the software for: 2+ years
Overall Rating
4.0
Ease of Use
4.0
Features
5.0
Value for Money
5.0
Likelihood to Recommend
9/10
Reviewer Source
Source: Capterra
June 24, 2022

"Code Quality for just about Anything"

Overall: We've seen a large increase in our code coverage and quality over the past two years of using SonarCloud. Some of our software had 0% coverage or less than 30% and a large majority of our code repositories have over 80% coverage now.

Pros: It tracks code quality over time. It does static analysis to look for duplicate code blocks, code smells, cyclomatic complexity, security issues, and more. It will also ingest code coverage reports to track test coverage over time. Integrates with GitHub (and other tools) so you can gate PR's based on the percent of code coverage and absence of flaws. We utilize it on mobile Xamarin projects, Kotlin projects, React web projects. It's a pretty mature product that has been around for a while. Its available in a free form, SonarQube, for you to test it out and run things locally. Static analysis helps ease the burden of code reviewers since it finds many common issues such as not null checking a parameter. It shoes metrics over time so you can see how your code base is improving over time. It basically automates code quality checking and metrics.

Cons: It can be a pain to set up your CI/CD pipeline to download and run all the necessary things to integrate with SonarCloud. It requires running some commands before you do a build and then some more after you do a build. SonarQube helps a lot with setting things up and testing your workflow locally though.

Verified Reviewer
Aws Devops Manager
Information Technology and Services, 51-200 employees
Used the software for: Less than 6 months
Overall Rating
4.0
Ease of Use
5.0
Customer Service
3.0
Features
4.0
Value for Money
5.0
Likelihood to Recommend
8/10
Reviewer Source
Source: Capterra
November 23, 2022

"A simple and easy way to integrate sonarcube code analysis solution"

Overall: very good and super useful

Pros: easiness and robustness of integration with cloud.

Cons: a bit costly in sonarcloud but when you compare management cost ,its okey