Code Quality and Security for PL/SQL

SonarSource delivers what is probably the best static code analysis you can find for PL/SQL. Based on our own PL/SQL compiler front-end, it uses the most advanced techniques (pattern matching, dataflow analysis) to analyze code and find Code Smells, Bugs, and Security Vulnerabilities. As with everything we develop at SonarSource, it was built on the principles of depth, accuracy, and speed.

SonarSource's PL/SQL analysis has a great coverage of well-established quality standards. This capability is available in Eclipse and VS Code for developers (SonarLint) as well as throughout the development chain for automated code review with self-hosted SonarQube or cloud-based SonarCloud.

Samples of Issues Detected
 
Identical operands
Identical operands
Duplicate condition
Duplicate condition
Duplicate branch
Duplicate branch
ROWNUM with ORDER BY
ROWNUM with ORDER BY
Custom Rules

SonarSource's PL/SQL analysis provides the ability to write custom rules.

Use in developer edition

See all editions


Issue Tracker