FREE & OPEN SOURCE
SonarQube Community Build
SonarQube Community Build provides workflow-integrated, automated code review for quality and security, supporting dozens of languages, frameworks, and cloud technologies.
Full DevOps integration
IDE integration
SonarQube for IDE catches coding issues on the fly in your dev environment, with extensions for Cursor, Windsurf, VS Code, Visual Studio, JetBrains and Eclipse.
Build integration
Out-of-the box support for popular CI/CD platforms like Jenkins, Azure Pipelines, TeamCity and CircleCI along with build tools such as Gradle and Maven.
Pipeline and promotion
SonarQube makes it easy to promote integrated code quality and code security throughout your development pipeline and promotion processes.
The tooling you need for automated code review
Enable your team to systematically deliver code that meets high standards for code quality and code security, for every project, at every step in the workflow.
Popular & classic language support
Analyze the quality of the code in your preferred language. Support for dozens of popular & classic languages, frameworks & web technologies.
与热门 DevOps 平台集成
轻松载入项目。与 GitHub Actions、GitLab CI/CD、Azure Pipelines、Bitbucket Pipelines 和 Jenkins 集成,以便自动触发分析并显示所编写代码的健康状态。
Enforce your policies
Prevent code from reaching production that doesn't meet your policies with SonarQube quality gates. Eliminate issues in human-written code, cutting late remediation costs.
一流的分析速度和准确性
在几分钟内即可收到可执行的整洁代码指标,而不用等待数小时。Clean as You Code 会在您编写时检查较小的代码片段,为您提供有关新代码质量的准确反馈。
统一的共享配置
制定具体的编码标准,让团队始终保持代码健康,实现代码质量目标。此外,Learn as You Code 还能将开发人员的技能提升到同样的高度。
SonarQube for IDE
添加 SonarQube for IDE 扩展并将其连接到 SonarQube 服务器,以便在编码时动态查找编码问题,并确保您的团队遵循单一受监管的编码标准。
Why teams upgrade to SonarQube Server
Level up from the Community Build version and unlock:
AI CodeFix
Fix issues instantly with smart suggestions
Improved security
More powerful secrets detection and SAST with taint analysis
Language coverage
Support for C, C++, Dart/Flutter, Swift, T-SQL, PL\SQL and more
Smarter detection
Detects 70% more harder to find issues
AI Code Assurance
Validate AI-generated code and automatically detect GitHub CoPilot
Compliance & reporting
Cross-project executive visibility & compliance reporting
Advanced Security
Manage dependency risks with SCA, SBOM, and advanced SAST
Scalability & support
HA, autoscaling, enterprise-grade SLAs
Unleash SonarQube's full power
Upgrade today and unlock more for advanced language support, secret detection, compliance, and AI features.