- Home
- ...
- Software Composition Analysis Tools
- Mend.io
- SonarQube Server (formerly SonarQube)
- Mend.io-vs-SonarQube Server (formerly SonarQube)
Compare Mend.io and SonarQube Server (formerly SonarQube) 
- Users report that SonarQube Server excels in Static Code Analysis with a score of 9.0, highlighting its ability to provide thorough insights into code quality. In contrast, Mend.io received a lower score of 8.2, indicating that while it offers solid analysis, it may not be as comprehensive as SonarQube.
- Reviewers mention that Mend.io shines in Quality of Support, scoring 8.7 compared to SonarQube's 8.0. Users appreciate the responsiveness and helpfulness of Mend.io's support team, which can be crucial for teams needing quick resolutions.
- G2 users highlight the Ease of Setup for Mend.io, scoring 8.1, which is slightly better than SonarQube's 7.8. This suggests that Mend.io may be more user-friendly for teams looking to implement the software quickly without extensive configuration.
- Users on G2 report that SonarQube's Code Analysis capabilities are superior, with a score of 9.1, making it a preferred choice for teams focused on maintaining high code quality. Mend.io, with a score of 7.5, may not meet the same level of expectations for users prioritizing in-depth code reviews.
- Reviewers say that Mend.io's Test Automation feature, scoring 7.3, is a strong point, especially for teams looking to integrate security testing into their CI/CD pipelines. SonarQube's lower score of 6.3 indicates it may not offer the same level of automation in testing.
- Users report that SonarQube's Risk Scoring feature, with a score of 8.1, provides valuable insights into potential vulnerabilities, making it a strong tool for teams focused on risk management. Mend.io does not have a comparable feature, which may be a drawback for users needing detailed risk assessments.
- Free
- Popular & classic languages support
- Integration with DevOps platforms
Really impressed with their service, and the response time when an unknown library needed resolution. Very detailed information for most of the open source dependencies. Dependency version history and their vulnerabilities have been helpful. UI and...
Most usability issues. The tool just doesn't do the workflow that would be optimal in my opinion. The components seem disjointed, the user interface is a bit clunky and it's quite difficult to identify necessary actions once an issue has been identified....
As a DevOps team, we are managing and offering this tool to different teams within the organisation. Its seamlessly easy integration with other tool CI/CD tools such as Jenkins, and Azure DevOps Services is very useful. By which we can easily Analyze code...
My experience as a SonarSource customer shows that they manifest little interest in small customers. In addition, their quality policy is poor when it comes to fixing major bugs in their code. For instance, this ticket has now been open for 1 year without...
Really impressed with their service, and the response time when an unknown library needed resolution. Very detailed information for most of the open source dependencies. Dependency version history and their vulnerabilities have been helpful. UI and...
As a DevOps team, we are managing and offering this tool to different teams within the organisation. Its seamlessly easy integration with other tool CI/CD tools such as Jenkins, and Azure DevOps Services is very useful. By which we can easily Analyze code...
Most usability issues. The tool just doesn't do the workflow that would be optimal in my opinion. The components seem disjointed, the user interface is a bit clunky and it's quite difficult to identify necessary actions once an issue has been identified....
My experience as a SonarSource customer shows that they manifest little interest in small customers. In addition, their quality policy is poor when it comes to fixing major bugs in their code. For instance, this ticket has now been open for 1 year without...
