Introducing G2.ai, the future of software buying.Try now
Compare Cppcheck and SonarQube 
At a Glance
Market Segments
Small-Business (50.0% of reviews)
Enterprise (44.1% of reviews)
Entry-Level Pricing
No pricing available
Free
Cppcheck
Star Rating
(4)4.6 out of 5
Market Segments
Small-Business (50.0% of reviews)
Entry-Level Pricing
No pricing available
Learn more about CppcheckSonarQube
Star Rating
(119)4.4 out of 5
Market Segments
Enterprise (44.1% of reviews)
Entry-Level Pricing
Free
Browse all 4 pricing plansFeatured Products
Sponsored
Kualitee
(172)
Bug Tracking
Visit Website
Sponsored
DX
(202)
Bug Tracking
Visit Website
Sponsored
minware
Bug Tracking
Visit Website
Pricing
Entry-Level Pricing
Cppcheck
No pricing availableSonarQube
Community Edition
Free
Explore: https://www.sonarsource.com/plans-and-pricing/
- Free
- Popular & classic languages support
- Integration with DevOps platforms
Free Trial
Cppcheck
No trial information availableSonarQube
Free Trial is available
Ratings
Meets Requirements
Not enough data
8.8
103
Ease of Use
Not enough data
8.5
105
Ease of Setup
Not enough data
8.0
64
Ease of Admin
Not enough data
8.5
59
Quality of Support
Not enough data
8.3
86
Has the product been a good partner in doing business?
Not enough data
8.4
53
Product Direction (% positive)
Not enough data
8.5
99
Features by Category
Administration
Not enough data
7.8
15
Not enough data
5.9
16
Analysis
Not enough data
7.5
17
Not enough data
8.2
16
Not enough data
9.0
18
Not enough data
9.1
18
Testing
Not enough data
6.7
14
Not enough data
5.9
15
Not enough data
5.9
17
Not enough data
7.0
14
Not enough data
7.1
13
Not enough data
8.2
17
Not enough data
6.7
17
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Functionality
Not enough data
7.9
26
Not enough data
8.3
25
Not enough data
8.2
24
Management
Not enough data
7.6
22
Not enough data
7.5
20
Not enough data
7.9
22
Bug Reporting
Not enough data
9.0
7
Not enough data
9.3
7
Not enough data
9.0
7
Bug Monitoring
Not enough data
8.8
7
Not enough data
8.8
7
Not enough data
9.3
7
Agentic AI - Bug Tracking
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Documentation
Not enough data
7.7
30
Not enough data
7.4
30
Not enough data
8.2
31
Security
Not enough data
6.8
28
Not enough data
6.9
27
Not enough data
7.9
28
Application Security Posture Management (ASPM)Hide 11 FeaturesShow 11 Features
Not enough data
Not enough data
Risk management - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
AI Compliance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Risk Management & Monitoring
Not enough data
Not enough data
Not enough data
Not enough data
AI Lifecycle Management
Not enough data
Not enough data
Access Control and Security
Not enough data
Not enough data
Collaboration and Communication
Not enough data
Not enough data
Agentic AI - AI Governance Tools
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Categories
Categories
Shared Categories
Cppcheck and SonarQube are categorized as Static Code Analysis
Unique Categories
Cppcheck has no unique categories
Reviews
Reviewers' Company Size
Cppcheck
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
SonarQube
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Wireless
25.0%
Computer Software
25.0%
Computer & Network Security
25.0%
Aviation & Aerospace
25.0%
‐
Other
0.0%
Information Technology and Services
25.4%
Computer Software
22.0%
Financial Services
6.8%
Hospital & Health Care
3.4%
Computer & Network Security
3.4%
Other
39.0%
Most Helpful Reviews
Cppcheck
Most Helpful Favorable Review
Techy C.
Verified User in Computer & Network Security
the best part like that it was easily guiding me to remove the scope of variable. good examples to solve the errors. Fast and efficient.
Most Helpful Critical Review
Verified User in Wireless
There are stilll few cases of array out of bounds which are obvious but not captured. Can be improved still.
SonarQube
Most Helpful Favorable Review
Kevin B.
Verified User in Computer Software
What I love about SonarQube is how it digs deep into my code and finds hidden issues which are not as obvious when writing the code, especially bugs and security problems, across different programming languages. It hooks up smoothly with my CI/CD pipelines,...
Most Helpful Critical Review
Verified User in Financial Services
Recognizing code coverage. Speed. Recognizing accurate code issues sometimes poor.
Techy C.
Verified User in Computer & Network Security
the best part like that it was easily guiding me to remove the scope of variable. good examples to solve the errors. Fast and efficient.
Kevin B.
Verified User in Computer Software
What I love about SonarQube is how it digs deep into my code and finds hidden issues which are not as obvious when writing the code, especially bugs and security problems, across different programming languages. It hooks up smoothly with my CI/CD pipelines,...
Verified User in Wireless
There are stilll few cases of array out of bounds which are obvious but not captured. Can be improved still.
Verified User in Financial Services
Recognizing code coverage. Speed. Recognizing accurate code issues sometimes poor.
Discussions
Cppcheck has no discussions with answers
SonarQube has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
