Alternate of Sonarqube for Code Quality Management tools?
There is not a popular known alternate of Sonarqube and Sonarqube is definitly dominating the Software Quality management domain in terms of open source cateogry. But you may try following tools depends on the use and project requirements.
JSHint (Java Script Only)
More Info can be found here - http://jshint.com/about/
HPE Fortify Software Security Center enables any organization of any size to automate any or all aspects of a successful SSA program. Part of the family of HPE Enterprise Security Products, HPE Fortify Software Security Center is comprised of industry-leading products, solutions, and features that address the complete spectrum of your application security needs.
HPE Fortify Software Security Center can help you:
- Address immediate security issues in software you’ve already deployed.
- Reduce systemic risk in software you’re developing or acquiring from vendors.
- Meet compliance goals for internal and external security mandates.
- HPE WebInspect Real-Time
- Interactive vulnerability review and management
- Advanced web services security testing
- HPE WebInspect Trend Reporting
- Refined and simple usability
- Actionable remediation and compliance reports
More Info can be found at - https://saas.hpe.com/en-us/software/fortify-on-demand
Synopsys Static Analysis (Coverity®) is an accurate and comprehensive static analysis and Static Application Security Testing (SAST) platform that finds critical defects and security weaknesses in code as it’s written before they become vulnerabilities, crashes, or maintenance headaches. It is Static Code Analysis tool. Find critical defects and security weaknesses in code as it's written before they become vulnerabilities, crashes, or maintenance headaches.
More Info can be found at