Enterprise Edition provides key features to manage Code Quality and Code Security at the Enterprise level, providing code analyzers for modern and legacy languages, adding Portfolio Management, Security Reports and expert technical support to SonarSource's industry-leading, open source products.
Portfolio Management Benefits
Organize a large portfolio of applications and projects the way you like. Create your own hierarchy and define category trees to the number and depth that works best for you
Get access to the detailed project metrics, trends and presentations you are already used to, now at any level of the defined hierarchies.
Gain visibility into health factors such as operational risks and security risks. Generate, export and schedule reports in PDF format to ensure visibility of key metrics to all stakeholders. Get fast reporting and up-to-date information, no matter the number of projects.
Consolidate projects from multiple SonarQube servers into a central instance where you can track your overall software portfolio.
Application Security Benefits
OWASP / SANS Security Reports
Built-in security reports, with developer friendly language, shorten the vulnerability feedback loop and get developers fixing security holes quickly.
Configurable SAST analysis engine
If you use proprietary frameworks to capture user input and/or persist it, the Enterprise Edition lets you declare them to our Static Application Security Testing (SAST) engine. SonarQube then makes sure such input is sanitized before hitting critical system parts (Database, File System, OS, etc.).
Programming Language Coverage
Get expert technical support in case of critical issues and anticipate future risks to avoid business disruption.
Our Support Team will understand your existing Continuous Integration environment, optimize SonarQube integration and make sure that you get maximum value from your investment.
Benefit from best practices and gain insights into how to use and adopt latest products and features to improve your process and output quality.
They Use Enterprise Edition
SonarQube is very easy to use, and it is integrated in Jenkins to manage the jobs. It fits with ThalesRaytheonSystems needs, since we have many components, and many work packages, in different languages, and the notion of ‘portfolios’ is essential.