LOGIN
Sign In or Register
Avatar
Not Registered Yet?

Join Now! It's FREE. Get full access and benefit from this site

Reset My password - Remind Me My username

Username
Password
Remember me

Alternate of Sonarqube for Code Quality Management tools?

Alternate of Sonarqube for Code Quality Management tools?

There is not a popular known alternate of Sonarqube and Sonarqube is definitly dominating the Software Quality management domain in terms of open source cateogry. But you may try following tools depends on the use and project requirements.
 
JSHint (Java Script Only)
JSHint is a community-driven tool that detects errors and potential problems in JavaScript code. Since JSHint is so flexible, you can easily adjust it in the environment you expect your code to execute. JSHint is open source and will always stay this way. It is a program that flags suspicious usage in programs written in JavaScript. The core project consists of a library itself as well as a CLI program distributed as a Node module. This tool used in software development for checking if JavaScript source code complies with coding rules
More Info can be found here - http://jshint.com/about/
 
HPE Fortify
HPE Fortify Software Security Center enables any organization of any size to automate any or all aspects of a successful SSA program. Part of the family of HPE Enterprise Security Products, HPE Fortify Software Security Center is comprised of industry-leading products, solutions, and features that address the complete spectrum of your application security needs.
 
HPE Fortify Software Security Center can help you:
- Address immediate security issues in software you’ve already deployed.
- Reduce systemic risk in software you’re developing or acquiring from vendors.
- Meet compliance goals for internal and external security mandates.
- HPE WebInspect Real-Time
- Interactive vulnerability review and management
- Advanced web services security testing
- HPE WebInspect Trend Reporting
- Refined and simple usability
- Actionable remediation and compliance reports
More Info can be found at - https://saas.hpe.com/en-us/software/fortify-on-demand
 
Coverity
Synopsys Static Analysis (Coverity®) is an accurate and comprehensive static analysis and Static Application Security Testing (SAST) platform that finds critical defects and security weaknesses in code as it’s written before they become vulnerabilities, crashes, or maintenance headaches. It is Static Code Analysis tool. Find critical defects and security weaknesses in code as it's written before they become vulnerabilities, crashes, or maintenance headaches.
 
More Info can be found at 
https://www.synopsys.com/software-integrity/resources/datasheets/coverity.html
Rate this item
(4 votes)
Rajesh Kumar

.

Total, Over 12 years of extensive experience in the Software Configuration Management domain having depth knowledge of DevOps, Continuous Integration and Delivery, Configuration Management, Build and Installer, Release Management and Application Management.