 | |
| Industry | Opensource Software |
|---|---|
| Founded | 2008 [1] |
| Founder |
|
| Headquarters | Geneva , Switzerland |
Area served | Worldwide |
| Products |
|
| Website | Official website |
SonarSource is a Swiss company founded in 2008. It develops open source software for continuous code quality and security.
SonarSource is a company that develops open source software for continuous code quality and security. Founded by Olivier Gaudin, Freddy Mallet, and Simon Brandhof in 2008, SonarSource is headquartered in Geneva, Switzerland. [2] [3] [4] [5] [6] [7] [8]
In 2017, they had more than 6,000 customers, including eBay, Bank of America, BMW. [8]
As of 2022, SonarSource has more than 7 million users, 21,000 enterprise customers, and they now support more than 400,000 organizations. [9]
SonarSource provides code quality and security products to detect maintainability, reliability and vulnerability issues on 27 programming languages including Python, Java, C#, JavaScript, C/C++, COBOL. [10] [11] The company offers three products: SonarQube, SonarCloud, and SonarLint.
In 2016, the company raised US$ 45 million of funding from Insight Venture Partners, a US investment firm. [8] [6] [7] [12] In 2022, SonarSource received with CHF 394.6 million the second largest venture capital financing round of Switzerland of that year. [1]
In computer science, static program analysis is the analysis of computer programs performed without executing them, in contrast with dynamic program analysis, which is performed on programs during their execution.
Synopsys is an American electronic design automation (EDA) company that focuses on silicon design and verification, silicon intellectual property and software security and quality. Products include tools for logic synthesis and physical design of integrated circuits, simulators for development and debugging environments that assist in the design of the logic for chips and computer systems. In recent years, Synopsys has expanded its products and services to include application security testing.
Compuware Corporation was an American software company based in Detroit, Michigan. The company offered products aimed at the information technology (IT) departments of large businesses, and its services also included testing, development, automation and performance management software for programs running on mainframe computer systems.
FindBugs is an open-source static code analyser created by Bill Pugh and David Hovemeyer which detects possible bugs in Java programs. Potential errors are classified in four ranks: (i) scariest, (ii) scary, (iii) troubling and (iv) of concern. This is a hint to the developer about their possible impact or severity. FindBugs operates on Java bytecode, rather than source code. The software is distributed as a stand-alone GUI application. There are also plug-ins available for Eclipse, NetBeans, IntelliJ IDEA, Gradle, Hudson, Maven, Bamboo and Jenkins.
Veracode is an application security company based in Burlington, Massachusetts. Founded in 2006, it provides SaaS application security that integrates application analysis into development pipelines.
SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs and code smells on 29 programming languages. SonarQube offers reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security recommendations.
DevOps is a methodology in the software development and IT industry. Used as a set of practices and tools, DevOps integrates and automates the work of software development (Dev) and IT operations (Ops) as a means for improving and shortening the systems development life cycle. DevOps is complementary to agile software development; several DevOps aspects came from the agile way of working.
ThreadSafe is a source code analysis tool that identifies application risks and security vulnerabilities associated with concurrency in Java code bases, using whole-program interprocedural analysis. ThreadSafe is used to identify and avoid software failures in concurrent applications running in complex environments.
GitLab Inc. is an open-core company that operates GitLab, a DevOps software package which can develop, secure, and operate software. The open source software project was created by Ukrainian developer Dmitriy Zaporozhets and Dutch developer Sytse Sijbrandij. In 2018, GitLab Inc. was considered the first partly-Ukrainian unicorn.
Dynatrace, Inc. is a global technology company listed on the NYSE that provides a software intelligence platform based on artificial intelligence (AI) and automation. Dynatrace technologies are used to monitor and optimize application performance, software development and security practices, IT infrastructure, and user experience for businesses and government agencies throughout the world.
Christopher O'Malley is the current President and CEO of LogRhythm an American security software company headquartered in Broomfield, Colorado. He is best known for his business turnaround leadership achieving renewed growth, stability and profitability after a prolonged span of financial hardship, ineffective business strategies and mismanagement through continuous improvement in customer satisfaction, employee engagement, and the "why we work."
Perforce, legally Perforce Software, Inc., is an American developer of software used for developing and running applications, including version control software, web-based repository management, developer collaboration, application lifecycle management, web application servers, debugging tools and Agile planning software.
SourceMeter is a source code analyzer tool, which can perform deep static program analysis of the source code of complex programs in C, C++, Java, Python, C#, and RPG (AS/400). FrontEndART has developed SourceMeter based on the Columbus technology researched and developed at the Department of Software Engineering of the University of Szeged.
HashiCorp is a software company with a freemium business model based in San Francisco, California. HashiCorp provides open-source tools and commercial products that enable developers, operators and security professionals to provision, secure, run and connect cloud-computing infrastructure. It was founded in 2012 by Mitchell Hashimoto and Armon Dadgar.
DBmaestro is a computer software company with sales headquartered in Boston, and development in Israel. It markets its services for DevOps: collaboration between development and IT operations teams.
Tricentis is a software testing company founded in 2007 and headquartered in Austin, Texas. It provides software testing automation and software quality assurance products for enterprise software.
CodeSonar is a static code analysis tool from GrammaTech. CodeSonar is used to find and fix bugs and security vulnerabilities in source and binary code. It performs whole-program, inter-procedural analysis with abstract interpretation on C, C++, C#, Java, as well as x86 and ARM binary executables and libraries. CodeSonar is typically used by teams developing or assessing software to track their quality or security weaknesses. CodeSonar supports Linux, BSD, FreeBSD, NetBSD, MacOS and Windows hosts and embedded operating systems and compilers.
Checkmarx is a global software security company headquartered in Atlanta, Georgia in the United States. The company was acquired in April 2020 by Hellman & Friedman, a global private equity firm with headquarters in San Francisco. Founded in 2006, Checkmarx integrates automated software security technologies into DevOps. Checkmarx provides static and interactive application security testing, Software Composition Analysis (SCA), infrastructure as code security testing (KICS), and application security and training development (Codebashing).
Snyk is a Boston-based cybersecurity company specializing in cloud computing. It was founded in 2015 out of London and Tel Aviv with headquarters in Boston.