# CodeScene, SonarQube vs Coverity Comparison

| | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Star Rating** | 4.6 out of 5 | 4.4 out of 5 | 4.2 out of 5 | 
| **Total Reviews** | 39 | 141 | 55 | 
| **Largest Market Segment** | Mid-Market (43.2% of reviews) | Enterprise (42.0% of reviews) | Enterprise (63.6% of reviews) | 
| **Entry Level Price** | Free | Free | No pricing available | 

---
## Top Pros & Cons

### CodeScene

Pros:
- Features (8 reviews)
- Issue Identification (7 reviews)

Cons:
- Integration Issues (4 reviews)
- Difficult Learning (3 reviews)

### SonarQube

Pros:
- Code Quality (24 reviews)
- Features (20 reviews)

Cons:
- Software Bugs (12 reviews)
- Complex Configuration (10 reviews)

### Coverity

**Not enough data**

---
## Ratings Comparison
| Rating | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
  | **Meets Requirements** | 8.6 (32 reviews) | 8.8 (119 reviews) | 8.9 (43 reviews) | 
  | **Ease of Use** | 8.1 (32 reviews) | 8.5 (122 reviews) | 8.4 (43 reviews) | 
  | **Ease of Setup** | 8.2 (27 reviews) | 8.1 (81 reviews) | 8.2 (19 reviews) | 
  | **Ease of Admin** | 8.6 (13 reviews) | 8.5 (67 reviews) | 8.2 (19 reviews) | 
  | **Quality of Support** | 9.1 (29 reviews) | 8.2 (101 reviews) | 8.6 (37 reviews) | 
  | **Has the product been a good partner in doing business?** | 9.4 (12 reviews) | 8.3 (60 reviews) | 8.1 (18 reviews) | 
  | **Product Direction (% positive)** | 10.0 (30 reviews) | 8.6 (115 reviews) | 7.7 (40 reviews) | 

---
## Pricing

### CodeScene

#### Entry-Level Pricing

Plan: Community

Price: Free

Description: Use CodeScene for free on Open source projects. Improve code and ensure a high level of quality for the Open source community.

Key Features:
- Unlimited public repositories
- Code Health insights
- Knowledge Distribution Insights

[Browse all 4 editions](https://www.g2.com/products/codescene/pricing)

#### Free Trial

Yes

### SonarQube

#### Entry-Level Pricing

Plan: Free

Price: Free

Description: For developers wanting to try SonarQube.


Key Features:
- Scan of private projects limited to 50k lines of code
- Users limited to max. 5
- Architecture management

[Browse all 3 editions](https://www.g2.com/products/sonarqube/pricing)

#### Free Trial

Yes

### Coverity

#### Entry-Level Pricing

No pricing available

#### Free Trial

No information available

---
## Features Comparison By Category

### Static Application Security Testing (SAST)

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | 7.3/10 | 25 |
| **Coverity** | 8.6/10 | 13 |

#### Administration

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **API / Integrations** | Not enough data | 7.9 (20 reviews) | 8.3 (11 reviews) | 
| **Extensibility** | Not enough data | 6.0 (20 reviews) | 9.0 (12 reviews) | 

#### Analysis

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Reporting and Analytics** | Not enough data | 7.4 (21 reviews) | 8.9 (11 reviews) | 
| **Issue Tracking** | Not enough data | 8.0 (20 reviews) | 8.8 (11 reviews) | 
| **Static Code Analysis** | Not enough data | 9.0 (23 reviews) | 9.2 (11 reviews) | 
| **Code Analysis** | Not enough data | 9.1 (23 reviews) | 8.9 (11 reviews) | 

#### Testing

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Command-Line Tools** | Not enough data | 6.6 (18 reviews) | 8.5 (11 reviews) | 
| **Manual Testing** | Not enough data | 5.9 (19 reviews) | 8.5 (8 reviews) | 
| **Test Automation** | Not enough data | 6.0 (21 reviews) | 8.5 (10 reviews) | 
| **Compliance Testing** | Not enough data | 6.9 (18 reviews) | 9.1 (11 reviews) | 
| **Black-Box Scanning** | Not enough data | 6.8 (17 reviews) | 8.8 (10 reviews) | 
| **Detection Rate** | Not enough data | 8.2 (21 reviews) | 8.9 (11 reviews) | 
| **False Positives** | Not enough data | 6.7 (23 reviews) | 7.6 (12 reviews) | 

#### Agentic AI - Static Application Security Testing (SAST)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | 

### Software Development Analytics Tools

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | 8.6/10 | 22 |
| **SonarQube** | 8.0/10 | 35 |
| **Coverity** | N/A | N/A |

#### Functionality

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Repository Integration** | 9.2 (21 reviews) | 8.1 (32 reviews) | Not enough data | 
| **Analytics and Trends** | 9.3 (22 reviews) | 8.5 (31 reviews) | Not enough data | 
| **Productivity Updates** | 8.3 (21 reviews) | 8.2 (29 reviews) | Not enough data | 

#### Management

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Historical Data Consolidation** | 8.6 (22 reviews) | Feature Not Available | Not enough data | 
| **Data Context** | 8.9 (22 reviews) | 7.5 (26 reviews) | Not enough data | 
| **Testing Integration** | 7.8 (20 reviews) | 7.9 (29 reviews) | Not enough data | 

### Bug Tracking

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | 8.1/10 | 11 |
| **Coverity** | N/A | N/A |

#### Bug Reporting

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **User Reports &amp; Feedback** | Not enough data | 7.7 (10 reviews) | Not enough data | 
| **Tester Reports &amp; Feedback** | Not enough data | 8.0 (10 reviews) | Not enough data | 
| **Team Reports &amp; Comments** | Not enough data | 8.3 (10 reviews) | Not enough data | 

#### Bug Monitoring

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Analytics** | Not enough data | 7.8 (10 reviews) | Not enough data | 
| **Bug History** | Not enough data | 8.2 (10 reviews) | Not enough data | 
| **Data Retention** | Not enough data | 8.5 (10 reviews) | Not enough data | 

#### Agentic AI - Bug Tracking

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Adaptive Learning** | Not enough data | Not enough data | Not enough data | 
| **Natural Language Interaction** | Not enough data | Not enough data | Not enough data | 
| **Proactive Assistance** | Not enough data | Not enough data | Not enough data | 

### Software Composition Analysis

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### Functionality - Software Composition Analysis 

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Language Support** | Not enough data | Not enough data | Not enough data | 
| **Integration** | Not enough data | Not enough data | Not enough data | 
| **Transparency** | Not enough data | Not enough data | Not enough data | 

#### Effectiveness - Software Composition Analysis

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Remediation Suggestions** | Not enough data | Not enough data | Not enough data | 
| **Continuous Monitoring** | Not enough data | Not enough data | Not enough data | 
| **Thorough Detection** | Not enough data | Not enough data | Not enough data | 

### Secure Code Review

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | 7.7/10 | 16 |
| **SonarQube** | 7.5/10 | 45 |
| **Coverity** | N/A | N/A |

#### Documentation

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Feedback** | Feature Not Available | 8.0 (42 reviews) | 9.3 (5 reviews) | 
| **Prioritization** | Feature Not Available | 7.6 (37 reviews) | 9.3 (5 reviews) | 
| **Remediation Suggestions** | Feature Not Available | 8.3 (38 reviews) | 8.7 (5 reviews) | 

#### Security

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **False Positives** | 7.4 (15 reviews) | 6.7 (37 reviews) | 7.0 (5 reviews) | 
| **Custom Compliance** | 7.9 (16 reviews) | 7.0 (34 reviews) | 8.3 (5 reviews) | 
| **Agility** | 8.0 (16 reviews) | 7.9 (37 reviews) | 8.3 (5 reviews) | 

### Application Security Posture Management (ASPM)

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | 8.5/10 | 7 |
| **Coverity** | N/A | N/A |

#### Risk management - Application Security Posture Management (ASPM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Vulnerability Management** | Not enough data | 9.3 (5 reviews) | Not enough data | 
| **Risk Assessment and Prioritization** | Not enough data | Feature Not Available | Not enough data | 
| **Compliance Management** | Not enough data | 9.0 (5 reviews) | Not enough data | 
| **Policy Enforcement** | Not enough data | 8.9 (6 reviews) | Not enough data | 

#### Integration and efficiency - Application Security Posture Management (ASPM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Integration with Development Tools** | Not enough data | 7.8 (6 reviews) | Not enough data | 
| **Automation and Efficiency** | Not enough data | Feature Not Available | Not enough data | 

#### Reporting and Analytics - Application Security Posture Management (ASPM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Trend Analysis** | Not enough data | 7.8 (6 reviews) | Not enough data | 
| **Risk Scoring** | Not enough data | Not enough data | Not enough data | 
| **Customizable Dashboards** | Not enough data | 8.3 (5 reviews) | Not enough data | 

#### Agentic AI  - Application Security Posture Management (ASPM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | 
| **Multi-step Planning** | Not enough data | Not enough data | Not enough data | 

### Software Bill of Materials (SBOM)

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### Functionality - Software Bill of Materials (SBOM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Format Support** | Not enough data | Not enough data | Not enough data | 
| **Annotations** | Not enough data | Not enough data | Not enough data | 
| **Attestation** | Not enough data | Not enough data | Not enough data | 

#### Management - Software Bill of Materials (SBOM)

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Monitoring** | Not enough data | Not enough data | Not enough data | 
| **Dashboards** | Not enough data | Not enough data | Not enough data | 
| **User Provisioning** | Not enough data | Not enough data | Not enough data | 

### AI Governance Tools

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### AI Compliance

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Regulatory Reporting** | Not enough data | Not enough data | Not enough data | 
| **Automated Compliance** | Not enough data | Not enough data | Not enough data | 
| **Audit Trails** | Not enough data | Feature Not Available | Not enough data | 

#### Risk Management &amp; Monitoring

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **AI Risk Management** | Not enough data | Feature Not Available | Not enough data | 
| **Real-time Monitoring** | Not enough data | Not enough data | Not enough data | 

#### AI Lifecycle Management

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Lifecycle Automation** | Not enough data | Feature Not Available | Not enough data | 

#### Access Control and Security

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Pole-based Access Control (RBAC)** | Not enough data | Not enough data | Not enough data | 

#### Collaboration and Communication 

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Model Sharing and Reuse** | Not enough data | Feature Not Available | Not enough data | 

#### Agentic AI - AI Governance Tools

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | 
| **Multi-step Planning** | Not enough data | Not enough data | Not enough data | 
| **Cross-system Integration** | Not enough data | Not enough data | Not enough data | 
| **Adaptive Learning** | Not enough data | Not enough data | Not enough data | 
| **Natural Language Interaction** | Not enough data | Not enough data | Not enough data | 
| **Proactive Assistance** | Not enough data | Feature Not Available | Not enough data | 
| **Decision Making** | Not enough data | Not enough data | Not enough data | 

### Static Code Analysis

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | 6.2/10 | 8 |
| **Coverity** | N/A | N/A |

#### Agentic AI - Static Code Analysis

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Adaptive Learning** | Not enough data | 6.3 (8 reviews) | Not enough data | 
| **Natural Language Interaction** | Not enough data | 5.7 (7 reviews) | Not enough data | 
| **Proactive Assistance** | Not enough data | 6.7 (8 reviews) | Not enough data | 

### AI AppSec Assistants

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### Performance - AI AppSec Assistants

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Remediation** | Not enough data | Not enough data | Not enough data | 
| **Real-time Vulnerability Detection** | Not enough data | Not enough data | Not enough data | 
| **Accuracy** | Not enough data | Not enough data | Not enough data | 

#### Integration - AI AppSec Assistants

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Stack Integration** | Not enough data | Not enough data | Not enough data | 
| **Workflow Integration** | Not enough data | Not enough data | Not enough data | 
| **Codebase Contextual Awareness** | Not enough data | Not enough data | Not enough data | 

### Cloud Security

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### Cloud Visibility

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Data Discovery** | Not enough data | Not enough data | Not enough data | 
| **Cloud Registry** | Not enough data | Not enough data | Not enough data | 
| **Cloud Gap Analytics** | Not enough data | Not enough data | Not enough data | 

#### Security

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Data Security** | Not enough data | Not enough data | Not enough data | 
| **Data loss Prevention** | Not enough data | Not enough data | Not enough data | 
| **Security Auditing** | Not enough data | Not enough data | Not enough data | 

#### Identity

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **SSO** | Not enough data | Not enough data | Not enough data | 
| **Governance** | Not enough data | Not enough data | Not enough data | 
| **User Analytics** | Not enough data | Not enough data | Not enough data | 

### Value Stream Management

| Product | Score | Reviews |
|---|---|---|
| **CodeScene** | N/A | N/A |
| **SonarQube** | N/A | N/A |
| **Coverity** | N/A | N/A |

#### Value Analysis

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Metric Relevance** | Feature Not Available | Not enough data | Not enough data | 
| **Insight** | Not enough data | Not enough data | Not enough data | 
| **Impact Predictions** | Not enough data | Not enough data | Not enough data | 
| **Report Generation** | Not enough data | Not enough data | Not enough data | 

#### Value Management

| Feature | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Planning Tools** | Not enough data | Not enough data | Not enough data | 
| **Communication Tools** | Feature Not Available | Not enough data | Not enough data | 
| **Control** | Not enough data | Not enough data | Not enough data | 

---
## Categories
**Shared Categories (2):** [Secure Code Review Software](https://www.g2.com/categories/secure-code-review), [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis)

**Unique to CodeScene (2):** [Value Stream Management Software](https://www.g2.com/categories/value-stream-management), [Software Development Analytics Tools](https://www.g2.com/categories/software-development-analytics-tools)

**Unique to SonarQube (8):** [Application Security Posture Management (ASPM) Software](https://www.g2.com/categories/application-security-posture-management-aspm), [Software Development Analytics Tools](https://www.g2.com/categories/software-development-analytics-tools), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Bug Tracking Software](https://www.g2.com/categories/bug-tracking), [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis), [Software Bill of Materials (SBOM) Software](https://www.g2.com/categories/software-bill-of-materials-sbom), [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants), [ AI Governance Tools](https://www.g2.com/categories/ai-governance-tools)

**Unique to Coverity (1):** [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast)


---
## Reviewer Demographics

### By Company Size

| Segment | CodeScene | SonarQube | Coverity | 
|---|---|---|---|
| **Small-Business** | 37.8% | 18.1% | 10.9% | 
| **Mid-Market** | 43.2% | 39.9% | 25.5% | 
| **Enterprise** | 18.9% | 42.0% | 63.6% | 

### By Industry

#### CodeScene

- **Computer Software:** 32.4%
- **Broadcast Media:** 10.8%
- **Information Technology and Services:** 8.1%
- **Telecommunications:** 5.4%
- **Program Development:** 5.4%
- **Entertainment:** 5.4%
- **Accounting:** 2.7%
- **Banking:** 2.7%
- **Computer Games:** 2.7%
- **Consumer Services:** 2.7%
- **Other:** 21.6%

#### SonarQube

- **Information Technology and Services:** 26.7%
- **Computer Software:** 20.7%
- **Financial Services:** 7.4%
- **Banking:** 3.7%
- **Computer &amp; Network Security:** 3.0%
- **Hospital &amp; Health Care:** 3.0%
- **Manufacturing:** 2.2%
- **Automotive:** 2.2%
- **Aviation &amp; Aerospace:** 2.2%
- **Telecommunications:** 2.2%
- **Other:** 26.7%

#### Coverity

- **Computer Software:** 36.4%
- **Information Technology and Services:** 12.7%
- **Telecommunications:** 9.1%
- **Computer &amp; Network Security:** 7.3%
- **Automotive:** 5.5%
- **Semiconductors:** 5.5%
- **Airlines/Aviation:** 3.6%
- **Aviation &amp; Aerospace:** 1.8%
- **Banking:** 1.8%
- **Computer Hardware:** 1.8%
- **Other:** 14.5%

---
## Alternatives

### Alternatives to CodeScene

- [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2346 reviews)
- [Jellyfish](https://www.g2.com/products/jellyfish-2025-10-22/reviews) — 4.5/5 stars (426 reviews)
- [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (890 reviews)
- [CloudBees](https://www.g2.com/products/cloudbees/reviews) — 4.4/5 stars (622 reviews)
- [DX](https://www.g2.com/products/dx-platform/reviews) — 4.6/5 stars (316 reviews)
- [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) — 4.4/5 stars (308 reviews)
- [Swarmia](https://www.g2.com/products/swarmia/reviews) — 4.4/5 stars (294 reviews)
- [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews)
- [Harness Platform](https://www.g2.com/products/harness-platform/reviews) — 4.6/5 stars (281 reviews)
- [GitGuardian](https://www.g2.com/products/gitguardian/reviews) — 4.8/5 stars (259 reviews)

### Alternatives to SonarQube

- [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2346 reviews)
- [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (890 reviews)
- [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews)
- [Semgrep](https://www.g2.com/products/semgrep/reviews) — 4.6/5 stars (55 reviews)
- [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews)
- [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (132 reviews)
- [Aikido Security](https://www.g2.com/products/aikido-security/reviews) — 4.6/5 stars (141 reviews)
- [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (36 reviews)
- [Kiuwan Code Security &amp; Insights](https://www.g2.com/products/kiuwan-code-security-insights/reviews) — 4.5/5 stars (34 reviews)
- [Embold](https://www.g2.com/products/embold/reviews) — 4.7/5 stars (18 reviews)

### Alternatives to Coverity

- [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (36 reviews)
- [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews)
- [Klocwork](https://www.g2.com/products/klocwork/reviews) — 4.4/5 stars (23 reviews)
- [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (890 reviews)
- [Embold](https://www.g2.com/products/embold/reviews) — 4.7/5 stars (18 reviews)
- [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2346 reviews)
- [OpenText Static Application Security Testing](https://www.g2.com/products/opentext-static-application-security-testing/reviews) — 4.5/5 stars (24 reviews)
- [Codacy](https://www.g2.com/products/codacy/reviews) — 4.6/5 stars (29 reviews)
- [Semgrep](https://www.g2.com/products/semgrep/reviews) — 4.6/5 stars (55 reviews)
- [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (132 reviews)

---
## Top Discussions

### CodeScene

No discussions available for this product.

### SonarQube

No discussions available for this product.

### Coverity

No discussions available for this product.

---
**Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/codescene-vs-sonarqube-vs-coverity)