Tech Insights
Sumble
Login
SonarQube

SonarQube

Last updated , generated by Sumble
Explore more →

What is SonarQube?

SonarQube is an open-source platform for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities in 29 programming languages. It offers reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security vulnerabilities.

Find organizations using SonarQube on Sumble →

What other technologies are related to SonarQube?

SonarQube Competitor Technologies

Fortify
Fortify is a SAST tool that competes with SonarQube in identifying code vulnerabilities.
mentioned alongside SonarQube in 44% (6.3k) of relevant job posts
Checkmarx
Checkmarx is a SAST tool that competes with SonarQube in identifying security vulnerabilities and code quality issues.
mentioned alongside SonarQube in 45% (4.9k) of relevant job posts
Veracode
Veracode is a SAST and DAST tool, competing with SonarQube in application security testing.
mentioned alongside SonarQube in 39% (3.2k) of relevant job posts
Black Duck
Black Duck focuses primarily on Software Composition Analysis (SCA), which is related to vulnerability management and license compliance. Since SonarQube does some level of SCA, this is a competing technology.
mentioned alongside SonarQube in 40% (2.3k) of relevant job posts
Snyk
Snyk focuses on finding, fixing, and monitoring vulnerabilities in open source dependencies, which overlaps with some of SonarQube's security analysis features.
mentioned alongside SonarQube in 35% (1.8k) of relevant job posts
Coverity
Coverity is a SAST tool that competes with SonarQube in providing static code analysis and identifying security vulnerabilities.
mentioned alongside SonarQube in 26% (1.5k) of relevant job posts
Nexus IQ
Nexus IQ focuses on software composition analysis (SCA) and vulnerability management, which overlaps with some of SonarQube's security analysis features, therefore, is a competing technology.
mentioned alongside SonarQube in 73% (500) of relevant job posts

SonarQube Complementary Technologies

Jenkins
Jenkins is a CI/CD tool that can be integrated with SonarQube to automate code analysis.
mentioned alongside SonarQube in 6% (41.5k) of relevant job posts
GitLab
GitLab provides CI/CD pipelines that can be integrated with SonarQube for automated code analysis.
mentioned alongside SonarQube in 6% (14.3k) of relevant job posts
Bitbucket
Bitbucket is a Git repository management solution that can integrate with SonarQube through CI/CD pipelines for code analysis.
mentioned alongside SonarQube in 7% (10.8k) of relevant job posts

Which job functions mention SonarQube?

Job function
Jobs mentioning SonarQube
Orgs mentioning SonarQube
Engineering & R&D
1% (57.6k) job posts
7 organizations
Engineer
1% (57.5k) job posts
559 organizations
Software Engineer
1% (48.1k) job posts
4.3k organizations
DevOps Engineer
5% (10.8k) job posts
2.8k organizations
DevSecOps Engineer
13% (2.4k) job posts
801 organizations
See more or filter by date, location, industry, etc →

Which organizations are mentioning SonarQube?

Organization
Industry
Matching Teams
Matching People
SonarQube
BNP Paribas
Finance and Insurance
152 teams
20 people
SonarQube
Ford Motor Company
Manufacturing
122 teams
48 people
SonarQube
Citi
Finance and Insurance
117 teams
112 people
SonarQube
Thales
Manufacturing
104 teams
46 people
SonarQube
Northrop Grumman
Manufacturing
102 teams
21 people
See more or filter by date, location, industry, etc →

This tech insight summary was produced by Sumble. We provide rich account intelligence data.

On our web app, we make a lot of our data available for browsing at no cost.

We have two paid products, Sumble Signals and Sumble Enrich, that integrate with your internal sales systems.

Sign in to continue exploring
or
Book a call to discuss your needs