SonarSource provides code quality and security products to detect maintainability, reliability and vulnerability issues on 27 programming languages including Python, Java, C#, JavaScript, C/C++, COBOL.There are three offerings: SonarQube, SonarCloud, and SonarLint.

  • SonarQube is an open core product for static code analysis, with additional features offered in commercial editions.
  • SonarCloud offers free analysis of open source projects.
  • SonarLint is a free IDE extension for static analysis.