SonarSource provides code quality and security products to detect maintainability, reliability and vulnerability issues on 27 programming languages including Python, Java, C#, JavaScript, C/C++, COBOL.There are three offerings: SonarQube, SonarCloud, and SonarLint.
- SonarQube is an open core product for static code analysis, with additional features offered in commercial editions.
- SonarCloud offers free analysis of open source projects.
- SonarLint is a free IDE extension for static analysis.