Looking for older editions of SonarQube? Check out our historical downloads here.
Community Free and open source for dev productivity and code quality | Developer | Data Center | ||
|---|---|---|---|---|
| Languages and frameworks | 20 | 27 | 33 | 33 |
| Recommended for under 100K Lines of Code | ||||
| Recommended for 100K Lines of Code or above | ||||
| Recommended for 2M Lines of Code or above | ||||
| Recommended for 50M Lines of Code or above | ||||
| Detect issues in AI generated code | ||||
| SonarQube server runs in a FIPS environment | ||||
| Seamlessly integrates into your CI/CD workflow | ||||
| Detect issues in code that cause bugs, hotspots, and basic security vulnerabilities | ||||
| Track and resolve technical debt | ||||
| Monitor code quality metrics and history of activity | ||||
| Secrets detection to prevent secrets from leaking | ||||
| Combine third-party tool results with SARIF reports | ||||
| Limited to 4 integrations with DevOps platforms | ||||
| AutoConfig for C and C++ projects | ||||
| Taint analysis with deeper SAST | ||||
| Detection of advanced dataflow bugs | ||||
| Analysis of feature branches, maintenance branches, and pull requests | ||||
| Quality gate status is displayed in DevOps CI platform's pull request | ||||
| Autoprovision users and groups from GitHub and GitLab | ||||
| Permissions autosync with GitHub | ||||
| Display security vulnerabilities in GitHub and GitLab | ||||
| Collect multiple projects together as an Application for a single view | ||||
| Standard commercial support | ||||
| Set rule priority to uphold your coding standards | ||||
| Unlimited integrations with DevOps platforms | ||||
| Security engine custom configuration for more powerful taint analysis | ||||
| Custom rules to detect private secret patterns | ||||
| Aggregate projects and applications into a portfolio | ||||
| Project, application, and executive portfolio reports | ||||
| Security reports for common security standards | ||||
| Regulatory reports and audit logs | ||||
| Consolidate projects into a central instance | ||||
| Parallel processing of analyses for large teams | ||||
| Pull request decoration and guided setup for monorepos | ||||
| Additional licenses for testing and staging environments | ||||
| Automatic user and group provisioning through SCIM with Okta and Azure AD | ||||
| 24/7 white glove premium support available | ||||
| Autoscaling in a Kubernetes cluster | ||||
| Component redundancy | ||||
| Data resiliency | ||||
| Horizontal scalability | ||||
| High performance under extreme load | ||||
February 2023
SonarQube 9.9 LTA
Long Term Active version, offering something for everyone! Faster PR analysis, secure CloudNative development, enhanced enterprise capabilities and so much more! SonarQube 9.9 LTA - better than ever!
Not sure whether you need the LTA or the latest version? See our decision guide.