Codacy

codacy.com

Codacy is a code review tool that automates code quality analysis, helping teams identify issues early and improve code health across multiple programming languages.

DeepSource

deepsource.com

DeepSource analyzes code for security, performance, and bugs, automating reviews and assessments to enhance software quality and streamline development workflows.

Codecov

codecov.io

Codecov is a code coverage tool that helps developers identify untested code and improve test coverage through detailed reports and integration with testing frameworks.

OverOps

overops.com

OverOps issue root cause analysis at runtime instantly pinpoints why a critical issue broke your complex backend Java or .Net application in pre-prod and production. Eliminate the detective work of searching logs for the cause. Resolve issues in minutes.

SonarCloud

sonarcloud.io

SonarCloud is a cloud service for continuous code quality and security analysis, integrating with major version control and CI/CD platforms to provide real-time feedback.

Semgrep

semgrep.dev

Semgrep is a customizable security platform that scans code for vulnerabilities, integrates with development workflows, and provides actionable results for developers.

Embold

embold.io

Embold is a tool that analyzes code to identify and resolve issues, helping developers improve code quality and reduce technical debt in their projects.

Typo

typoapp.io

Typo is an AI-driven software delivery management platform that enables dev teams with real-time SDLC visibility, automated code reviews & DevEX insights to code better, deploy faster & stay aligned with business goals. It connects with the existing tool stack within 30 seconds & empowers with : - Real-time SDLC visibility, DORA Metrics & Delivery Intelligence - Automated code reviews, vulnerabilities & auto-fixes - Developer experience insights & potential burnout zones Join 1000+ high-performing engineering teams across the globe that are using Typo to ship reliable software faster.

Code Climate Quality

codeclimate.com

Code Climate Quality analyzes code for issues like duplication and complexity, helping developers improve code health and maintainability.

Qodana Cloud

qodana.cloud

Qodana Cloud is a code quality monitoring platform that analyzes and improves code integrity across multiple languages, supporting custom inspection profiles and teamwork.

GuardRails

guardrails.io

GuardRails is an end-to-end security platform that makes AppSec easier for both security and development teams. We scan, detect, and provide real-time guidance to fix vulnerabilities early. Trusted by hundreds of teams around the world to build safer apps, GuardRails integrates seamlessly into the developers’ workflow, quietly scans as they code, and shows how to fix security issues on the spot via Just-in-Time training. GuardRails commits to keeping the noise low and only reporting high-impact vulnerabilities that are relevant to your organization. GuardRails helps organizations shift security everywhere and build a strong DevSecOps pipeline, so they can go faster to market without risking security.

Hubbl Diagnostics

hubbl.com

Hubbl Diagnostics is setting the standard for Salesforce success through secure, automated, ML-driven org intelligence. - Monitor health and performance: Instantly gain a holistic view of your org. - Improve security: Pinpoint security and compliance risks. - Unlock ecosystem insights: Benchmark against industry standards. - Take action: Identify and fix your high priority issues—fast. - Streamline processes: Optimize your business process, inside Salesforce. Our solution provides the C-suite, Salesforce admins, architects, and consultants with the broadest and most actionable insights into any Salesforce org. Tackle technical debt, redundant automation, and ever-expanding org complexity to get the best return on your Salesforce investment, faster. Established in 2022, Hubbl Diagnostics is built by Uncommon Purpose (formerly Traction on Demand), a Salesforce product development and incubator firm based out of Vancouver, Canada.

CodeScene

codescene.com

CodeScene is a code analysis, visualization, and reporting tool. Cross reference contextual factors such as code quality, team dynamics, and delivery output to get actionable insights to effectively reduce technical debt and deliver better code quality. We enable software development teams to make confident, data-driven decisions that fuel performance and developer productivity. CodeScene guides developers and technical leaders to: - Get a holistic overview and evolution of your software system in one single dashboard. - Identify, prioritize, and tackle technical debt based on return on investment. - Maintain a healthy codebase with powerful CodeHealth™ Metrics, spend less time on rework and more time on innovation. - Seamlessly integrate with Pull Requests and editors, get actionable code reviews and refactoring recommendations. - Set Improvement goals and quality gates for teams to work towards while monitoring the progress. - Support retrospectives by identifying areas for improvement. - Benchmark performance against personalized trends. - Understand the social side of the code, measure socio-technical factors like key personnel dependencies, knowledge sharing and inter-team coordination. - Put findings into context based on how your organization and your code evolves. Supporting 28+ programming languages, CodeScene offers an automated integration with GitHub, BitBucket, Azure DevOps or GitLab pull requests to incorporate the analysis results into existing delivery workflows. Get early warnings and recommendations about complex code before merging it to the main branch, set quality gates to trigger in case your code health declines.

SourceLevel

sourcelevel.io

SourceLevel is a SaaS product that helps developers, managers, CTOs, and all companies with visibility on their development flow by using metrics and providing automated code review. It's Analytics for software development. Stop the guesswork, and start making data-based decisions.

The Code Registry

thecoderegistry.com

The Code Registry is an AI-driven platform that analyzes software code for quality and security, helping businesses manage projects and risks more effectively.

CodeScan

codescan.io

CodeScan Shield addresses code quality, security, and compliance liabilities with two automated modules: CodeScan and OrgScan. CodeScan provides static code analysis for total visibility into code health from the moment it’s written through production. OrgScan governs organizational policies by enforcing the security and compliance rules mandated for your Salesforce environment. Together, they ensure the code that makes up your Salesforce environment and the way the environment is being utilized will always meet high standards. The result is strengthened data security, streamlined DevSecOps processes, and an assurance of meeting compliance standards—avoiding potentially thousands of dollars in fines and lost opportunities. CodeScan Shield protects your Salesforce org from both the inside and outside. CodeScan provides dashboards and reports for consistent code visibility, while also alerting developers the moment new errors are introduced. OrgScan analyzes Salesforce policies to ensure the organization remains compliant with client-mandated specifications and guidelines. Violations are flagged and recorded in an interactive dashboard. Progress is tracked for policy reviews. Collectively, these features ensure admins maintain governance control within their organization. CodeScan Shield is part of AutoRABIT’s complete DevSecOps platform. Enabling Salesforce DevOps teams with CodeScan Shield’s powerful technology produces high-quality, secure applications and updates at speed.