Data Center EditionDataCenter Edition is ideal for mission-critical enterprise deployments that need a secure and reliable infrastructure to manage code quality and security. It allows distributed teams to collaborate on large projects by combining SonarSource's industry-leading, open source code quality and security tools, ensuring maximum uptime and data resiliency.
Automatic code review tool to detect bugs, code smells and vulnerability issues. Easy to integrate with DevOps toolchains.
IDE extension for real-time code quality feedback. Assists developers to deliver cleaner code as they work.
Deep analysis helps track down hard-to-find bugs and quality issues. Advanced, highly accurate techniques such as data flow analysis maximize productivity by reducing false positives.
Track the quality of all feature and maintenance branches, to make sure only safe and secure code makes it in production.
With GitHub Enterprise, Bitbucket Server or Microsoft Azure DevOps, SonarQube can directly comment in Pull Requests.
Empower development teams with security feedback during code review. Security Hotspots & Security Vulnerabilities help teams get more acquainted with secure coding practices while fixing issues.
With detection of Injection Flaws, untrusted user input can be detected within the code, and sanitized before it compromises your application.
Get real-time code notifications from SonarQube in your IDE as you work. Track release status and keep abreast of issues you introduce.
See documentation
Organize a large portfolio of applications and projects the way you like. Create your own hierarchy and define category trees to the number and depth that works best for you.
Get access to the detailed project metrics, trends and dashboards you are already used to, now at any level of the defined hierarchies.
Gain visibility into health factors such as operational risks and security risks. Generate, export and schedule reports in PDF format to ensure visibility of key metrics to all stakeholders. Get fast reporting and up-to-date information, no matter the number of projects.
Consolidate projects from multiple SonarQube servers into a central instance where you can track your overall software portfolio.
Built-in security reports, with developer friendly language, shorten the vulnerability feedback loop and get developers fixing security holes quickly.
If you use proprietary frameworks to capture user input and/or persist it, the Enterprise Edition lets you declare them to our Static Application Security Testing (SAST) engine. SonarQube then makes sure such input is sanitized before hitting critical system parts (Database, File System, OS, etc.).
This feature is designed to respond to the needs of organizations who are doing a very large deployment of SonarQube and thus need to ensure maximum uptime of SonarQube. High availability is achieved by making every node of the system redundant, enabling to keep the service up at all time for thousands of users without worrying about downtime or interruption.
See documentation
Resolution and operational stability
Get expert technical support in case of critical issues and anticipate future risks to avoid business disruption.
Maximize value
Our Support Team will understand your existing Continuous Integration environment, optimize SonarQube integration and make sure that you get maximum value from your investment.
Best practices and expert insights
Benefit from best practices and gain insights into how to use and adopt latest products and features to improve your process and output quality.
