SonarCloud 2025 Pricing, Features, Reviews & Alternatives
- Score 3.20
- 5 reviews
SonarCloud is a cloud-based alternative of the SonarQube platform, offering continuous code quality and security analysis as a service. SonarCloud integrates seamlessly with popular version control and CI/CD platforms such as GitHub, Bitbucket, and Azure DevOps. It provides static code analysis to identify and help remediate issues such as bugs and security vulnerabilities. SonarCloud enables developers to receive immediate feedback on their code within their development environment, facilitating the maintenance of high-quality code standards, and promoting a culture of continuous improvement in software development projects.
Simple and powerful tool to improve your delivery process
We have more than 45 repos, and we practice continuous delivery, Sonar help us reduce the overhead by automating some tasks that previously were executed by a developer. They gain more control over their time, without sacrificing code quality
6 months ago
SonarCloud is a must have in your stack
It's still a good tool that help the dev teams to increase their knowledge in a specific language, it's still gives good indicator, overall it's still a good companion
1 year ago
Good tool, easy to setup, cloud means limited in customisation
Overall it was great
1 year ago
Essential tool for professional code delivery
SonarCloud improves software quality and developers' skills since it shows where the bugs and security hotspots are and how to correct them.
1 year ago
SonarCloud one of the cloud-based code quality and security analysis tools
SonarCloud has a strong focus on security and compliance, with features such as vulnerability detection, security hotspots, and compliance reporting.
2 years ago
GitLab 2025 Pricing, Features, Reviews & Alternatives
- Score 3.12
- 250 reviews
GitLab is an integrated, open source DevOps lifecycle management platform for software development teams to plan, code, test, deploy and monitor product changes within a single application. GitLab allows users to streamline their collaborative workflows and visualize, prioritize, coordinate, and track progress using flexible project management tools. GitLab helps streamline collaborative workflows whether a team uses Agile, Waterfall, or conversational development methods. Users are able to securely write and manage code and project data, and consolidate source code into a single DVCS that can be managed without disrupting the workflow. GitLab’s git repositories are provided with branching tools and access controls for a scalable, single source of truth for collaboration on projects and code. Users are able to customize their approval workflow controls, and automatically test the quality of code. GitLab verification tools help users spot errors sooner while shortening feedback cycles with features such as built-in code review, code testing, code quality, and review apps. Users can manage custom container images with GitLab’s container registry, which provides users with enhanced security and access controls without third party add-ons. Organizations can minimize complexity by building, testing, and releasing their code securely, whether deploying to one server, or thousands, using GitLab’s continuous delivery and deployment feature. Users can automate the entire workflow and customize everything from buildpacks to CI/CD. Best practice templates help users get started with minimal configuration. GitLab collects and displays performance metrics for deployed apps using Prometheus, allowing users to analyze shipping velocity and monitor application performance.
Developer experience
CI/CD pipelines, easy to use and easy to integrate products I am working on.
3 months ago
Útil en el día a día
Me resulta muy útil en mi día a día, desde que lo hemos empezado a utilizar hemos optimizado el trabajo.
3 months ago
Complete solution for version control, collaboration, devops, and deployment
Git Lab helps me to manage version control, issue tracking, wiki and documentation, code review, CI/CD pipelines, project management, and security scanning. It easily integrate with l tools like Jira, Slack, and Kubernetes.
3 months ago
Logiciels de développement d'applications
GitLab est un bon logiciels de développement d'applications. Je le trouve excellent
3 months ago
Logiciel de gestion de code source
Avec gitlab , j'ai eu la facilité de gérer mes codes sources. C'est vraiment un bon logiciel
3 months ago
Thanks to GitLab, we are able to iterate faster and more efficiently.
GitLab is an open-source, code collaboration platform that enables real-time collaboration for all team members involved in a software project. Our adoption of GitLab has resulted in efficient project repository management, streamlined code merging, and faster bug tracking, which are significant benefits for our team
3 months ago
Advanced source code manager
One of most advanced source code manager in the market. Adding or creating private keys for the projects are very easy.
3 months ago
Logiciel de gestion
il a des avantages de gérer les tâches et les entreprises. Il contrôle les équipes de développement à gérer la collaboration et à optimiser la productivité.
3 months ago
Outil gestionnaire des projets informatiques
Conçu pour l'expansion des logiciels, cet outil de gestion contrôle l'équipe de développement à collaborer et à optimiser la capacité productive accélérant ainsi la livraison et augmentant la visibilité.
4 months ago
GitLab
Pretty good.
4 months ago
Aikido Security 2025 Pricing, Features, Reviews & Alternatives
- Score 3.00
- 5 reviews
Aikido is a security management system designed to help businesses streamline their security operations across codes and the cloud with custom rules and a single dashboard. The platform offers a suite of features designed to improve security and productivity, including personalized notifications, instant requests for security reports, and comprehensive scans across major cloud providers. Aikido prioritizes privacy and security by allowing users to operate within an end-to-end encrypted framework controlled by an ISO 27001-certified data center. The system offers an automatic triage feature that targets critical issues, ensuring teams have the support they need to address the most pressing security risks. It also offers Static Code Analysis (SAST) scans along with infrastructure-as-code scanning, open-source dependency scanning (SCA), and container scanning capabilities, making it a comprehensive security solution that covers all aspects of security management. Users can easily integrate Aikido's scanning capabilities into their existing workflow and digital infrastructure, including task management, messaging tool, and compliance suite. By using Aikido Security, organizations can easily export security reports and share them with leads in just a few clicks, making it possible to navigate the security review process quickly and efficiently. The platform is designed to help organizations improve their technical vulnerability management systems and comply with regulatory requirements, including ISO 27001, SOC 2, OWASP Top 10, and more.
Great value for money
It's great collaborating with the team at Aikidio, who took all my suggestions on board and implemented any that made sense.
6 months ago
All-in-one vulnerability monitoring
I liked how easy to setup it was and how quickly it gives useful results by integrating different security tools: SAST, dependencies monitoring, etc.
1 year ago
Just try it!
Simple, quick setup, for a (monthly) fixed fee. Contains a rich feature set, which is difficult to all find combined in one other tool.
1 year ago
Great disruptor in the security tooling ecosystem
Aikido's biggest benefit is their ease-of-use. You can literally get started in 2 minutes. Findings are actually useful and have a good resolve advise.
1 year ago
Best valuefor their money!
Excellent simple integration and a great dashboard. The superb mechanism that prevents false positives and ignores findings that are not valid vulnerabilities. Good SAST and SCA mechanisms. DAST is still upgrading, but it is helpful now.
2 years ago
DeepSource 2025 Pricing, Features, Reviews & Alternatives
- Score 2.90
- 10 reviews
DeepSource is the code health platform that all tools needed to write maintainable and secure code to improve software's stability and increase developer velocity. Engineering and security leaders of the organization can track the maintainability and security of the team's code base from a single view. This helps them easily understand and prioritize actions in the roadmap to improve code health and increase developer velocity.
Avaliação do Software
O produto é muito fácil de usar. Tem recursos ótimos.
4 months ago
DeepSource helps drive up our code quality
I like how DeepSource helps us catch issues, enforce coverage and code standards and prevent committing secrets.
6 months ago
Helpful for automated code checking
It automatically scans code on each commit, and the autofix feature allows you to make quick fixes easily.
9 months ago
Automated Analysis of KeepTrack.Space Code
As my project grows there will always be new mistakes made and in some cases new vulnerabilities found on code that used to be "safe". Having a tool automatically find these is invaluable. I use this as a github integration on an open source project.
1 year ago
The strength of DeepSource its capacity to offer thorough feedback on the security and code quality.
Overall, DeepSource is a great solution for teams looking to increase the security and quality of their code. It is simple to use, effortlessly incorporates with current procedures, and offers thorough feedback on code errors. Teams that wish to produce better code and steer clear of future costly blunders should give it some serious thought.
1 year ago
DeepSource analyzes, improves code quality and keeps our codebase clean
Most of the time, developers miss out on formatting their code in the local development environment, and having DeepSource integrated removes the headache of manually going through the code and seeing if there are any accidental linting or formatting errors that developers might've left in their code. So it just does the job automatically for us.
1 year ago
DeepSource Review
Its robust code analysis capabilities significantly contributed to improving code quality and maintainability. The seamless integration with my development workflow made it easy to adopt and incorporate into my projects. While there were occasional false positives, the benefits of catching potential issues early on outweighed this minor inconvenience. DeepSource proved to be a valuable tool in my code review and quality assurance process.
1 year ago
DeepSource- Best Bug Finder
Overall it’s a good tool for continuous code quality and automated code review for identifying common issues and bugs.
1 year ago
How good is DeepSource for code
It very easy to use, and useful for improving code quality and save time.
2 years ago
Pros and Cons of DeepSource: My Personal Review
DeepSource's ease of use and comprehensive code analysis impressed me. I also liked how simple the setup process was, as well as the comprehensive dashboard, which allows me to easily track the progress of my codebase. Furthermore, the ability to customize the rules for code analysis and track code quality trends over time was a huge plus. Overall, DeepSource has been an excellent tool for assisting us in quickly identifying and resolving potential coding issues.
2 years ago
GuardRails 2025 Pricing, Features, Reviews & Alternatives
- Score 2.80
- 5 reviews
GuardRails provides with complete security from code to cloud, empowering developers to find, fix, and prevent vulnerabilities in web and mobile applications. GuardRails is the perfect security solution for organizations that need a customizable approach to their internal process. With thousands of possible vulnerabilities, you can stay ahead of threats and weaknesses in your organization by tracking the ones that matter most. Streamline your process with less security headaches and overhead. Include the latest coding advancements to make sure that you can always stay ahead of emerging threats in every step, no matter how simple or complex a project might be for its size. Fixing a vulnerability as soon as it is reported can be the difference between a breach and one that puts your company at risk. You should invest in security tools to help you keep up with all of these threats, so they don't overwhelm or distract from developing great software.
Simple Bitbucket plugin that finds security issues in your code
easy to use, no configuration needed, pull request scanning, great for small teams
6 months ago
Scanning for source code vulnerabilities
A useful addition to our security suite.
1 year ago
A great vulnerability management security tool
GuardRails helped our team with source code level vulnerability detection to improve the company's internal vulnerability and security maintenance process.
1 year ago
review for guardrails
to get some findings of sourcode from gitlab repository before publish on production.
1 year ago
Great software to scan for vulnerabilities into code repositories
Overall, the experience with GuardRails is great.
2 years ago
Bytesafe 2025 Pricing, Features, Reviews & Alternatives
- Score 2.80
- 5 reviews
Bytesafe is a firewall for dependencies. Using the source code and vulnerability management platform, businesses can protect applications, stay in control and keep unwanted dependencies out of the organization.
Review bytesafe
Really easy to setup hosting of own npm repository and freezing nuget packages.
6 months ago
Amazing for private packages
The fact that you can create private NPM packages, instead of paying massive fees at NPM or Github is absolutely amazing. And the security aspect of it all just seals the deal.
1 year ago
It can be used as a vulnerability scanner for Maven project, but has some flaws
Bytesafe is used in vulnerability scanning. It can be used, but not that easily as expected (see above "cons").
1 year ago
Easy to setup and instant feeling of ease
Wonderful!
1 year ago
Bytesafe: My Personal Pros and Cons Review
ByteSafe's ease of use, as well as its secure encryption capabilities, appealed to me. I also liked how easy it was to manage user access and how many integrations were available. Finally, I found the customer support team to be extremely helpful and responsive.
2 years ago
SiteLock 2025 Pricing, Features, Reviews & Alternatives
- Score 2.27
- 27 reviews
SiteLock is a static application security testing (SAST) software designed to help businesses protect websites against malware and distributed denial-of-service (DDoS) attacks. Key features of the platform include threat detection, database scanning, bad bot blocking, automated plugin patching, security vulnerability repair, and website acceleration. Administrators can detect and patch vulnerabilities across various content management systems (CMS). SiteLock provides a virtual private network (VPN), allowing teams to securely browse the internet via encrypted sessions. It enables managers to receive email alerts regarding cross-site scripting (XSS) attacks and SQL injection vulnerabilities across web pages. Operators can also utilize the SiteLock SMART PLUS module to automatically remove malware and spam from WordPress, Joomla, and MySQL databases. SiteLock lets businesses backup website files and databases to protect them against hardware corruption and ransomware. Supervisors can also secure customers’ credit card data in accordance with payment card industry data security standard (PCI DSS) compliance protocols.
I am pleased
With Site Link, I have had quick responses, even when I have requested assistance outside of their business hours. They have called me back ASAP even without my leaving a message. I am very pleased with their product as well as their customer support.
3 months ago
Great Experience
I haven't had any negative experiences with SiteLock so far, and I don't expect to. It's extremely comforting knowing that I don't have to worry about malware attacks anymore. Their customer service is great, which just makes the whole experience that much better. I would definitely recommend this product.
4 months ago
Worked as expected
Compared to it's competitors, SiteLock seemed to be very fairly priced. I integrated SiteLock with my website about six months ago and it has done exactly as I had anticipated. It was easy to integrate, and when I did stumble at one point, their customer service was very quick and eager to help resolve my issue. Any website vulnerability concerns I had 6 months ago are no longer present thanks to SiteLock.
4 months ago
They have the most incredible customer service of any company
Sitelock was instrumental in helping us protect our commercial website. His customer service was quick and friendly.
5 months ago
Unimpressed with Customer Service
The fact that the customer support isn't very helpful. I had to request a database scan and specified two folders that needed to be double-checked for malware. The support agent seemed to be the least bit interested. I was told I would be notified in a set number of hours. I had to call back a week later to confirm the information. The support agent i spoke with at that time was very casual and stated "it should be fine. if you don't see anything standing out in your dashboard scan." I had to request a confirmation email just to make sure things were taken care of.
6 months ago
Impossible to get a reply from them about my issue
Very negative. I can't get anyone to speak to me about the issue I am having with their VPN.
7 months ago
saved my website! my site was infected with malware and viruses
They were prompt in removing all viruses from my website and keeping my website safe. I got reports on the health of my website
8 months ago
Worst Service Ever
Probably the worst online service I have ever used. Their poorly trained customer support are very hard to understand and unable to resolve anything over the phone. Do not get this service!
9 months ago
Great service to protect your websites
Great website security
10 months ago
SiteLock saved our website
I was on vacation when our manager called me in a panic. Our company website had been hacked and was displaying an offensive message to all who visited it. I called SiteLock and within 2 hours they had fixed the breach and safeguarded our site from future attacks. Being able to handle the situation while I wasn't at the office, and getting it resolved so quickly, was a lifesaver for us.
11 months ago
Sigrid 2025 Pricing, Features, Reviews & Alternatives
- Score 2.13
- 16 reviews
A single platform and one source of truth to manage your entire software portfolio. Sigrid® is a data-driven software intelligence platform, that will analyze the source code of all your applications, no matter the technology, and derive holistic insights into risks, costs, and opportunities on multiple software quality aspects and translate those into business risks and concrete actions. Illuminate the hidden risks and give you actionable insight to cut costs, tackle security threats, and bring high-quality applications to market faster. Sigrid enables you to measure, evaluate, and monitor your entire software landscape health at every stage of its life cycle – whether buying, building, or operating. Sigrid gives you continuous insights and recommendations on the performance of your software portfolio. HOLISTIC OVERVIEW From high-level portfolio overviews to deep-dive findings on all your systems in a single platform. Sigrid delivers the information you need and all your stakeholders need for greater alignment. Helping the organization achieve those strategic business objectives together. BENCHMARK Sigrid ranks your software capabilities against 10,000 systems and over 100 billion lines of code in our software analysis database to help you reduce risk and improve overall effectiveness. By leveraging this vast amount of data, Sigrid offers valuable insights into your software landscape that enable you to get ahead of the competition. SINGLE SOURCE OF TRUTH Whether you're the CIO making strategic decisions or the last developer tackling a specific issue, Sigrid empowers all individuals to obtain the necessary insights. Our powerful analytics and unified reporting ensure a consistent and reliable source of information for all stakeholders. COMPLETE TRANSPARENCY Sigrid provides unparalleled visibility into the current state of your software that helps your team quickly identify, categorize, and prioritize tasks. Say goodbye to information overload and help everyone to be agile at scale. LOWER MAINTENANCE COSTS Strategically manage maintainability to boost your team’s productivity. Our benchmark database shows that maintenance over the years takes 80% of your team’s time. Write clean code from the start and build sustainable and future-proof software. STRENGTHEN SECURITY Confidently manage your software security within one platform, scan, rank and recommend our security findings. Utilize our prioritized recommendations for security without headaches. IMPROVE OPEN-SOURCE HEALTH Approximately 80% of all software landscapes consist of open-source code. With the success of open-source libraries also comes the responsibility of managing their health and freshness, security, and legal obligations. Organize and manage these processes for all teams, systems, and technologies across your entire landscape. BETTER ARCHITECTURE Improve communication about architecture among stakeholders. Sigrid shows you the actual architecture of your software landscape, by combining information from multiple sources and presenting it in a structured, comprehensive overview. BUILT FOR EVERYONE Insight from bit to boardroom: Sigrid® provides high-level portfolio overviews of code-level violations as well as deep-dive findings around aspects such as system architecture. Whether it's the CIO or the last developer, all stakeholders get the appropriate insight. * CxO: Put your money where your strategy needs it most * Enterprise Architect: Get transparency on the AS-IS status of your IT landscape and boost cooperation * Product: Manage software health and security within your definition of done * Developer: Manage software quality and security in your pipeline.
Portfolio Manager
Great. I still learning how to extract the best from the tool.
3 months ago
The best review ever
One of Sigrid's standout features is its intuitive interface, making it incredibly user-friendly even for those not tech-savvy.
4 months ago
I can easily recommend Sigrid for any software company
Code review screens are informative and help you write better code.
6 months ago
Score applications
I like to my check my applications for correct syntax
8 months ago
Tracking maintainability with Sigrid
The quick feedback you get whenever you push code. It is very easy to go to the refactoring candidates and see where the biggest improvements can be made. But it is also very useful to go to specific files to see how to improve maintainability for this piece of code.
9 months ago
Le correcteur de code source
Sigrid en terme de rendement est efficace je suis tout à fait d'accord avec ce système d'amélioration continue de la qualité des applications et la manière professionnelle de le faire. S'il fallait recommencer avec Sigrid je le choisirais encore
11 months ago
A useful tool with some room for improvement
Sigrid can help you improve the quality of your code. Beyond duplication, size and complexity issues that a developer can easily locate by himself, also issues concering the coupling and dependencies issues
1 year ago
Sigrid for Software Maintainability
Overall, a great product for keeping your code quality in check with quantifiable metrics
1 year ago
Sigrid review
What I like most is that it's easy to use, the set-up wasn't too complex. It's intuitive and it has a lot of features. We use it both to identify vulnerabilities and for code quality, it's impressive for how many things it can scan the code for. For example, it found outdated packages with vulnerabilities and configurations with potential security risks. It also provides links with more information for each finding and ways to fix them.
1 year ago
Good product to improve quality for developers and architects
Sigrid provides actionable points of improvement, and you can track improvement well in time.
1 year ago
Fortify 2025 Pricing, Features, Reviews & Alternatives
- Score 2.00
- 2 reviews
Fortify enables businesses of all sizes to protect their applications, data and the rest of their assets from cyber criminals. With strategic outcomes ranging from DevSecOps to secure data analytics, Fortify helps enterprises gain visibility into their applications, detect threats quickly and defend against them effectively with automated incident response capabilities. With Fortify, users can remove vulnerabilities before they become breaches, reduce control gaps between IT staff and security teams, improve time-to-detection of threats through new threat intelligence technologies and automation capabilities, accelerate speed to remediation, and improve resiliency of applications at scale.
A Perfect SAST Solution
A Perfect SAST Solution to implement in an DevSecOps pipeline. The tool is matured and perfect on its own flow.If your budget meets the cost, you can just go for it as it is a perfect SAST solution.
1 year ago
Fortify is the most widely used product for vulnerability detection in code and security analysis
Overall, it's a great and must have tool for every organization working on software development.
2 years ago
SonarLint 2025 Pricing, Features, Reviews & Alternatives
- Score 2.00
- 5 reviews
SonarLint, a core component of the Sonar solution, is a free and open-source IDE plugin, that is a developer's first line of defense to find and fix coding issues in real time. SonarLint resolves issues in code and provides rich contextual guidance to help developers improve their skills while enhancing their productivity. Supporting over 25 languages and the most popular IDEs, SonarLint leverages over 5,000 language-specific Clean Code rules to instantly highlight common coding issues that may lead to, bugs, and vulnerabilities.
Great tool for writing good quality code
It helps to improve our coding standard especially for less experienced people. It helps to avoid more issues from higher environment after code deployment
6 months ago
SonarLint easy to use
Je suis satisfait de cet outil.
1 year ago
One of the best plugin out there
One of the best tools out there in the market.
1 year ago
Plugin used to check issues before deploying
After submitting my first merge request to the supervisor in my first company, I was asked whether I have check the code smells. I said no and then I was asked to add sonar-lint plugin to my IDE, then check the code issues and finally send him the merge request once I fix all those issues. Since that moment I use this everyday to check issues in the code that I daily write.
1 year ago
Easy SAST in your IDE
SonarLint allows users to customize the rules that are used to analyze their code, making it possible to tailor the tool to the needs of specific project. It integrates with popular IDEs such as Eclipse and Visual Studio, making it easy to use within a developer's existing workflow. The reports include the location of the issue and a description of the problem. SonarLint includes code snippets and examples to help developers understand and fix the issues that have been identified which I find very useful.
2 years ago