Introducing G2.ai, the future of software buying.Try now
Compare Snyk and SonarQube 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Cyclopt Companion
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
CAST Highlight
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
OX Security
Visit Website
At a Glance
Market Segments
Mid-Market (43.1% of reviews)
Enterprise (41.9% of reviews)
Entry-Level Pricing
Free
Free
Snyk
Star Rating
(125)4.5 out of 5
Market Segments
Mid-Market (43.1% of reviews)
Pros & Cons
Entry-Level Pricing
Free
Browse all 3 pricing plansSonarQube
Star Rating
(125)4.5 out of 5
Market Segments
Enterprise (41.9% of reviews)
Pros & Cons
Entry-Level Pricing
Free
Browse all 5 pricing plansSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that SonarQube Server excels in Static Code Analysis with a score of 9.0, highlighting its ability to provide thorough insights into code quality. In contrast, Snyk, while strong in other areas, scores 8.5 in this category, indicating a slight lag in depth of analysis.
- Reviewers mention that Snyk shines in Automated Scans, achieving a high score of 9.1, which users appreciate for its efficiency in identifying vulnerabilities quickly. SonarQube Server, while effective, scores lower at 8.5, suggesting it may not be as fast in this aspect.
- G2 users note that Snyk's Ease of Setup is particularly impressive, scoring 9.0, making it a favorite for teams looking to implement security measures without extensive configuration. SonarQube Server, with a score of 7.8, is perceived as more complex to set up, which could be a drawback for some users.
- Users on G2 highlight Snyk's superior Integration capabilities, scoring 8.4, which allows for seamless connections with various development tools. SonarQube Server, with a score of 7.8, is seen as less flexible in this regard, potentially limiting its usability in diverse environments.
- Reviewers mention that SonarQube Server provides robust Code Analysis features, scoring 9.1, which is praised for its detailed reporting and actionable insights. Snyk, while effective, scores 8.7, indicating that it may not offer the same level of detail in code quality assessments.
- Users say that Snyk's False Positives rate is lower at 6.1 compared to SonarQube Server's 6.8, which is a significant factor for teams concerned about alert fatigue and the efficiency of their security processes.
Pricing
Entry-Level Pricing
Snyk
FREE - Limited Tests, Unlimited Developers
Free
For individual developers and small teams looking to secure while they build. Unlimited Developers.
- 200 Open Source tests per month
- 100 Container tests per month
- 300 IaC tests per month
SonarQube
Community Edition
Free
Explore: https://www.sonarsource.com/plans-and-pricing/
- Free
- Popular & classic languages support
- Integration with DevOps platforms
Free Trial
Snyk
No trial information availableSonarQube
Free Trial is available
Ratings
Meets Requirements
8.7
88
8.8
108
Ease of Use
8.7
89
8.5
111
Ease of Setup
9.1
52
8.1
70
Ease of Admin
8.9
51
8.5
63
Quality of Support
8.6
74
8.2
91
Has the product been a good partner in doing business?
8.8
48
8.4
57
Product Direction (% positive)
8.8
78
8.6
105
Features by Category
Administration
8.6
21
7.8
19
8.1
18
6.0
20
Analysis
8.4
22
7.4
21
8.2
21
8.0
20
8.6
23
8.9
22
8.8
20
9.0
22
Testing
7.8
18
6.6
18
6.5
14
5.9
19
7.8
19
6.0
21
8.1
15
6.9
18
6.2
13
6.8
17
7.5
19
8.2
21
6.4
17
6.9
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
8.4
29
Not enough data
Feature Not Available
Not enough data
7.9
26
Not enough data
7.5
19
Not enough data
Monitoring
8.0
17
Not enough data
6.5
13
Not enough data
7.1
15
Not enough data
Protection
7.4
16
Not enough data
7.5
17
Not enough data
7.4
14
Not enough data
6.9
12
Not enough data
Performance
8.5
36
Not enough data
8.5
40
Not enough data
6.7
32
Not enough data
9.1
41
Not enough data
Network
8.1
25
Not enough data
7.9
19
Not enough data
8.2
20
Not enough data
Application
7.8
17
Not enough data
8.5
34
Not enough data
7.4
13
Not enough data
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Not enough data
Not enough data
Functionality
Not enough data
8.1
31
Not enough data
8.4
30
Not enough data
8.2
29
Management
Not enough data
7.7
27
Not enough data
7.5
25
Not enough data
7.8
27
Bug Reporting
Not enough data
7.7
10
Not enough data
8.0
10
Not enough data
8.3
10
Bug Monitoring
Not enough data
7.8
10
Not enough data
8.2
10
Not enough data
8.5
10
Agentic AI - Bug Tracking
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Composition Analysis
8.1
24
Not enough data
8.6
27
Not enough data
8.1
27
Not enough data
Effectiveness - Software Composition Analysis
8.1
28
Not enough data
8.5
26
Not enough data
8.3
27
Not enough data
Documentation
Not enough data
7.7
35
Not enough data
7.6
35
Not enough data
8.2
36
Security
Not enough data
6.9
33
Not enough data
7.0
32
Not enough data
7.9
33
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Tracking
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Risk management - Application Security Posture Management (ASPM)
Not enough data
9.3
5
Not enough data
8.7
5
Not enough data
9.0
5
Not enough data
8.9
6
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
8.6
6
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
Not enough data
Not enough data
8.3
5
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Management - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
AI Compliance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Risk Management & Monitoring
Not enough data
Not enough data
Not enough data
Not enough data
AI Lifecycle Management
Not enough data
Not enough data
Access Control and Security
Not enough data
Not enough data
Collaboration and Communication
Not enough data
Not enough data
Agentic AI - AI Governance Tools
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
6.3
8
Not enough data
5.7
7
Not enough data
6.7
8
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Categories
Categories
Shared Categories
Snyk and SonarQube are categorized as Software Composition Analysis, AI AppSec Assistants, Static Application Security Testing (SAST), and Software Bill of Materials (SBOM)
Unique Categories
Snyk is categorized as Software Supply Chain Security Tools, Container Security, and Vulnerability Scanner
SonarQube is categorized as Application Security Posture Management (ASPM), Secure Code Review, Software Development Analytics Tools, Static Code Analysis, Bug Tracking, and AI Governance Tools
Reviews
Reviewers' Company Size
Snyk
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
SonarQube
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
21.1%
Computer Software
21.1%
Computer & Network Security
8.9%
Hospital & Health Care
5.7%
Financial Services
4.9%
Other
38.2%
Information Technology and Services
26.6%
Computer Software
21.8%
Financial Services
6.5%
Hospital & Health Care
3.2%
Computer & Network Security
3.2%
Other
38.7%
Alternatives
Discussions
What is Snyk scanning?
2 Comments
AM
Snyk scanning is a security tool that helps developers find and fix vulnerabilities in their code, containers, and infrastructureRead more
SonarQube has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
