Need advice about which tool to choose?Ask the StackShare community!
PMD vs SonarQube: What are the differences?
What is PMD? An extensible cross-language static code analyzer. It is a source code analyzer. It finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth. It includes CPD, the copy-paste-detector.
What is SonarQube? Continuous Code Quality. SonarQube provides an overview of the overall health of your source code and even more importantly, it highlights issues found on new code. With a Quality Gate set on your project, you will simply fix the Leak and start mechanically improving.
PMD and SonarQube can be categorized as "Code Review" tools.
Some of the features offered by PMD are:
- supports multiple languages
- enforce a coding standard for your codebase
- built-in checks
On the other hand, SonarQube provides the following key features:
- Detect tricky issues
- Security analysis
PMD and SonarQube are both open source tools. It seems that SonarQube with 3.88K GitHub stars and 1.09K forks on GitHub has more adoption than PMD with 2.42K GitHub stars and 830 GitHub forks.
Pros of PMD
Pros of SonarQube
- Tracks code complexity and smell trends26
- IDE Integration16
- Complete code Review9
- Difficult to deploy1
Sign up to add or upvote prosMake informed product decisions
Cons of PMD
Cons of SonarQube
- Sales process is long and unfriendly7
- Paid support is poor, techs arrogant and unhelpful7
- Does not integrate with Snyk1