Introducing G2.ai, the future of software buying.Try now
Compare CodeScan and SonarQube 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Endor Labs
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Cyclopt Companion
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Aikido Security
Visit Website
At a Glance
Market Segments
Enterprise (50.0% of reviews)
Enterprise (41.9% of reviews)
Entry-Level Pricing
Contact for Pricing
Free
CodeScan
Star Rating
(34)4.6 out of 5
Market Segments
Enterprise (50.0% of reviews)
Pros & Cons
Not enough data
Entry-Level Pricing
Contact for Pricing
Browse all 3 pricing plansSonarQube
Star Rating
(125)4.5 out of 5
Market Segments
Enterprise (41.9% of reviews)
Pros & Cons
Entry-Level Pricing
Free
Browse all 5 pricing plansSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that SonarQube Server excels in Static Code Analysis with a score of 9.0, while CodeScan slightly outperforms it with a score of 9.2, indicating that CodeScan may provide more comprehensive insights into code quality.
- Reviewers mention that SonarQube Server's Ease of Setup is rated at 7.8, which is lower than CodeScan's 8.7, suggesting that users find CodeScan easier to implement in their development environments.
- G2 users highlight that CodeScan offers superior Compliance Testing capabilities with a score of 8.8 compared to SonarQube Server's 7.1, making it a better choice for organizations focused on regulatory compliance.
- Users on G2 report that SonarQube Server has a lower score of 6.8 for False Positives, while CodeScan scores better at 5.8, indicating that CodeScan may provide more accurate results with fewer misleading alerts.
- Reviewers mention that SonarQube Server's API / Integrations score is 7.7, which is significantly lower than CodeScan's 8.8, suggesting that CodeScan may offer more robust integration options with other development tools.
- Users say that CodeScan shines in Test Automation with a score of 7.3, while SonarQube Server does not provide a comparable score, indicating that CodeScan may be more effective for teams looking to automate their testing processes.
Pricing
Entry-Level Pricing
CodeScan
Cloud
Contact for Pricing
Use CodeScan technology for any
Salesforce instance. Get all the benefits of our Self Hosted service without the need of servers or internal infrastructure. Leverage the CodeScan Cloud and avoid installing, running and maintaining it on your own infrastructure.
- APEX, Visualforce, Lightning, Metadata
- 500+ Rules
- CD/CI Pipeline Integration
SonarQube
Community Edition
Free
Explore: https://www.sonarsource.com/plans-and-pricing/
- Free
- Popular & classic languages support
- Integration with DevOps platforms
Free Trial
CodeScan
Free Trial is available
SonarQube
Free Trial is available
Ratings
Meets Requirements
8.4
16
8.8
108
Ease of Use
8.6
18
8.5
111
Ease of Setup
8.7
10
8.1
70
Ease of Admin
8.8
12
8.5
63
Quality of Support
9.0
20
8.2
91
Has the product been a good partner in doing business?
9.2
12
8.4
57
Product Direction (% positive)
8.3
21
8.6
105
Features by Category
Administration
8.8
8
7.8
19
8.3
8
6.0
20
Analysis
8.5
8
7.4
21
7.9
8
8.0
20
9.2
8
8.9
22
9.2
8
9.0
22
Testing
Not enough data
6.6
18
Not enough data
5.9
19
7.3
5
6.0
21
8.8
7
6.9
18
8.3
5
6.8
17
8.3
6
8.2
21
5.8
6
6.9
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Functionality
Not enough data
8.1
31
Not enough data
8.4
30
Not enough data
8.2
29
Management
Not enough data
7.7
27
Not enough data
7.5
25
Not enough data
7.8
27
Bug Reporting
Not enough data
7.7
10
Not enough data
8.0
10
Not enough data
8.3
10
Bug Monitoring
Not enough data
7.8
10
Not enough data
8.2
10
Not enough data
8.5
10
Agentic AI - Bug Tracking
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Documentation
Not enough data
7.7
35
Not enough data
7.6
35
Not enough data
8.2
36
Security
Not enough data
6.9
33
Not enough data
7.0
32
Not enough data
7.9
33
Risk management - Application Security Posture Management (ASPM)
Not enough data
9.3
5
Not enough data
8.7
5
Not enough data
9.0
5
Not enough data
8.9
6
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
8.6
6
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
Not enough data
Not enough data
8.3
5
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Management - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
AI Compliance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Risk Management & Monitoring
Not enough data
Not enough data
Not enough data
Not enough data
AI Lifecycle Management
Not enough data
Not enough data
Access Control and Security
Not enough data
Not enough data
Collaboration and Communication
Not enough data
Not enough data
Agentic AI - AI Governance Tools
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
6.3
8
Not enough data
5.7
7
Not enough data
6.7
8
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Categories
Categories
Shared Categories
CodeScan and SonarQube are categorized as Static Code Analysis and Static Application Security Testing (SAST)
Unique Categories
CodeScan has no unique categories
Reviews
Reviewers' Company Size
CodeScan
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
SonarQube
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
16.7%
Computer Software
16.7%
Hospital & Health Care
10.0%
Management Consulting
6.7%
Insurance
6.7%
Other
43.3%
Information Technology and Services
26.6%
Computer Software
21.8%
Financial Services
6.5%
Hospital & Health Care
3.2%
Computer & Network Security
3.2%
Other
38.7%
Discussions
CodeScan has no discussions with answers
SonarQube has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
