What are the alternatives of SonarQube for Code Quality Management?

sonarqube-alternatives

 

Alternate of SonarQube for Code Quality Management tools?

There is not a popular known alternate of SonarQube and Reasonable is definitely dominating the Software Quality management domain in terms of open source category. But you may try following tools depends on the use and project requirements.

 

JSHint (Java Script Only)
JSHint is a community-driven tool that detects errors and potential problems in JavaScript code. Since JSHint is so flexible, you can easily adjust it in the environment you expect your code to execute. JSHint is open source and will always stay this way. It is a program that flags suspicious usage in programs written in JavaScript. The core project consists of a library itself as well as a CLI program distributed as a Node module. This tool used in software development for checking if JavaScript source code complies with coding rules
More Info can be found here – http://jshint.com/about/

 

HPE Fortify
HPE Fortify Software Security Center enables any organization of any size to automate any or all aspects of a successful SSA program. Part of the family of HPE Enterprise Security Products, HPE Fortify Software Security Center is comprised of industry-leading products, solutions, and features that address the complete spectrum of your application security needs.

 

HPE Fortify Software Security Center can help you:
– Address immediate security issues in software you’ve already deployed.
– Reduce systemic risk in software you’re developing or acquiring from vendors.
– Meet compliance goals for internal and external security mandates.
– HPE WebInspect Real-Time
– Interactive vulnerability review and management
– Advanced web services security testing
– HPE WebInspect Trend Reporting
– Refined and simple usability
– Actionable remediation and compliance reports

 

Coverity
Synopsys Static Analysis (Coverity®) is an accurate and comprehensive static analysis and Static Application Security Testing (SAST) platform that finds critical defects and security weaknesses in code as it’s written before they become vulnerabilities, crashes, or maintenance headaches. It is Static Code Analysis tool. Find critical defects and security weaknesses in code as it’s written before they become vulnerabilities, crashes, or maintenance headaches.

 

More Info can be found at

You must be logged in to post a comment.

© Tutorials
CyberChimps