SonarQube is described as 'open source quality management platform, dedicated to continuously analyze and measure source code quality, from the portfolio to the method'. There are more than 10 alternatives to SonarQube for a variety of platforms, including Windows, Linux, Online / Web-based, SaaS and Self-Hosted solutions. The best alternative is Codacy, which is free. Other great apps like SonarQube are Cppcheck (Free, Open Source), Coverity Scan (Freemium), PhpMetrics (Free, Open Source) and Code Climate (Freemium).
Codacy automates code reviews and monitors code quality on every commit and pull request reporting back the impact of every commit or pull request, issues concerning code style, best practices, security, and many others.
show more ▾
Codacy vs SonarQube opinions
Almost everyone thinks Codacy is a great alternative to SonarQube.
Cppcheck is an static analysis tool for C/C++ code. Unlike C/C++ compilers and many other analysis tools it does not detect syntax errors in the code. Cppcheck primarily detects the types of bugs that the compilers normally do not detect.
Coverity Scan Static Analysis allows to find and fix defects in your Java, C/C++ or C# open source project for free. It tests every line of code and potential execution path. The root cause of each defect is clearly explained, making it easy to fix bugs.
Readable & Accessible reports PhpMetrics is designed to be understable and easy to use. Thanks to d3js, it will scores your project with beautiful graphs. PhpMetrics has a "colorblind mode". Do not hesitate to visit the demo.
Code Climate consolidates the results from a suite of static analysis tools into a single, real-time report, giving your team the information it needs to identify hotspots, evaluate new approaches, and improve code quality.
Teamscale analyzes the quality of your code. Analyze your code with a variety of static and dynamic analyses to identify specific maintainability constraints and avoid unexpected maintenance costs in the future.
Flawfinder examines source code and reports possible security weaknesses (``flaws'') sorted by risk level. It's very useful for quickly finding and removing at least some potential security problems before a program is widely released to the public.