Code Quality and Security for Go

SonarSource provides static code analysis for Go. Based on our own technology, it analyzes Go code to find Code Smells, Bugs, and Security Vulnerabilities. As with everything we develop at SonarSource, it was built on the principles of depth, accuracy, and speed.

SonarSource's Go analysis has a great coverage of well-established quality standards. This capability is available throughout the development chain for automated code review with self-hosted SonarQube or cloud-based SonarCloud.

SonarSource's Go analysis can easily load the coverage data generated by the native coverage tool provided by GoLang and supports Cognitive Complexity metric.

Samples of Issues Detected
 
Useless block
Useless block
Always true condition
Always true condition
Collection size condition
Collection size condition
Metrics

It supports all the standard metrics implemented by SonarQube including Cognitive Complexity.

Free & Open Source

Github

Issue Tracker

Use in community edition

See all editions