SonarQube Server (formerly SonarQube) Features
What are the features of SonarQube Server (formerly SonarQube)?
Analysis
- Static Code Analysis
- Code Analysis
Testing
- Detection Rate
Management
- Historical Data Consolidation
- Data Context
- Testing Integration
Functionality
- Repository Integration
- Analytics and Trends
- Productivity Updates
Documentation
- Feedback
- Prioritization
- Remediation Suggestions
Security
- False Positives
- Custom Compliance
- Agility
Top Rated SonarQube Server (formerly SonarQube) Alternatives
SonarQube Server (formerly SonarQube) Categories on G2
Filter for Features
Administration
API / Integrations | Based on 14 SonarQube Server (formerly SonarQube) reviews. Application Programming Interface Specification for how the application communicates with other software. APIs typically enable integration of data, logic, objects, etc. with other software applications. | 77% (Based on 14 reviews) | |
Extensibility | Based on 15 SonarQube Server (formerly SonarQube) reviews. Provides the ability to extend the platform to include additional features and functionalities | 63% (Based on 15 reviews) |
Analysis
Reporting and Analytics | Tools to visualize and analyze data. This feature was mentioned in 16 SonarQube Server (formerly SonarQube) reviews. | 76% (Based on 16 reviews) | |
Issue Tracking | As reported in 15 SonarQube Server (formerly SonarQube) reviews. Track issues as vulnerabilities are discovered. Documents activity throughout the resolution process. | 82% (Based on 15 reviews) | |
Static Code Analysis | Examines application source code for security flaws without executing it. This feature was mentioned in 17 SonarQube Server (formerly SonarQube) reviews. | 90% (Based on 17 reviews) | |
Code Analysis | Scans application source code for security flaws without executing it. This feature was mentioned in 17 SonarQube Server (formerly SonarQube) reviews. | 91% (Based on 17 reviews) |
Testing
Command-Line Tools | As reported in 13 SonarQube Server (formerly SonarQube) reviews. Allows users to access a terminal host system and input command sequences. | 72% (Based on 13 reviews) | |
Manual Testing | Based on 14 SonarQube Server (formerly SonarQube) reviews. Allows users to perfrom hands-on live simulations and penetration tests. | 63% (Based on 14 reviews) | |
Test Automation | Based on 16 SonarQube Server (formerly SonarQube) reviews. Runs pre-scripted security tests without requiring manual work. | 63% (Based on 16 reviews) | |
Compliance Testing | Allows users to test applications for specific compliance requirements. This feature was mentioned in 13 SonarQube Server (formerly SonarQube) reviews. | 71% (Based on 13 reviews) | |
Black-Box Scanning | Scans functional applications externally for vulnerabilities like SQL injection or XSS. This feature was mentioned in 12 SonarQube Server (formerly SonarQube) reviews. | 76% (Based on 12 reviews) | |
Detection Rate | As reported in 16 SonarQube Server (formerly SonarQube) reviews. The rate at which scans accurately detect all vulnerabilities associated with the target. | 85% (Based on 16 reviews) | |
False Positives | The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists. 16 reviewers of SonarQube Server (formerly SonarQube) have provided feedback on this feature. | 66% (Based on 16 reviews) |
Management
Historical Data Consolidation | As reported in 20 SonarQube Server (formerly SonarQube) reviews. Consolidate development historical data within a single solution. | 75% (Based on 20 reviews) | |
Data Context | Provide insights into why trends are occurring and what issues could be related. This feature was mentioned in 18 SonarQube Server (formerly SonarQube) reviews. | 76% (Based on 18 reviews) | |
Testing Integration | As reported in 20 SonarQube Server (formerly SonarQube) reviews. Integrate with manual and automated testing tools to increase bottleneck and problem identification. | 78% (Based on 20 reviews) |
Functionality
Repository Integration | As reported in 24 SonarQube Server (formerly SonarQube) reviews. Integrate with one or more code repositories. | 78% (Based on 24 reviews) | |
Analytics and Trends | Analyze historical data to highlight trends, statistics, and KPIs. This feature was mentioned in 23 SonarQube Server (formerly SonarQube) reviews. | 83% (Based on 23 reviews) | |
Productivity Updates | Based on 22 SonarQube Server (formerly SonarQube) reviews. Follow assigned tasks across the development team to find quick turnarounds and bottlenecks. | 83% (Based on 22 reviews) |
Documentation
Feedback | Provides thorough, actionable feedback regarding security vulnerabilities, or allows collaborators to do the same. 26 reviewers of SonarQube Server (formerly SonarQube) have provided feedback on this feature. | 77% (Based on 26 reviews) | |
Prioritization | Based on 26 SonarQube Server (formerly SonarQube) reviews. Prioritizes detected vulnerabilities by potential risk, or allows collaborators to do the same. | 74% (Based on 26 reviews) | |
Remediation Suggestions | Provides suggestions for remediating vulnerable code, or allows collaborators to do the same. This feature was mentioned in 27 SonarQube Server (formerly SonarQube) reviews. | 82% (Based on 27 reviews) |
Security
False Positives | Does not falsely indicate vulnerable code when no vulnerabilitiy legitimately exists. 24 reviewers of SonarQube Server (formerly SonarQube) have provided feedback on this feature. | 68% (Based on 24 reviews) | |
Custom Compliance | As reported in 23 SonarQube Server (formerly SonarQube) reviews. Allows users to set custom code standards to meet specific compliances. | 75% (Based on 23 reviews) | |
Agility | Detects vulnerabilities at a rate suitable to maintain security, or allows collaborators to do the same. 24 reviewers of SonarQube Server (formerly SonarQube) have provided feedback on this feature. | 80% (Based on 24 reviews) |
Risk management - Application Security Posture Management (ASPM)
Vulnerability Management | Identifies, tracks, and remediates vulnerabilities | Not enough data | |
Risk Assessment and Prioritization | Assesses and prioritizes risks based on application context | Not enough data | |
Compliance Management | Ensures compliance with industry standards and regulations | Not enough data | |
Policy Enforcement | Ensures mechanisms are in place for enforcing security policies across applications | Not enough data |
Integration and efficiency - Application Security Posture Management (ASPM)
Integration with Development Tools | Integrates with existing development and DevOps tools | Not enough data | |
Automation and Efficiency | Automates security tasks to improve efficiency | Not enough data |
Reporting and Analytics - Application Security Posture Management (ASPM)
Trend Analysis | Includes tools for analyzing trends in security incidents and vulnerabilities over time | Not enough data | |
Risk Scoring | Assigns scores to vulnerabilities based on their potential impact, helping prioritize remediation efforts | Not enough data | |
Customizable Dashboards | Provides customizable dashboards that present real-time data on vulnerabilities, risks, and compliance status | Not enough data |
