SonarCloud Debuts Open Source, Zero-Configuration, Automatic Analysis for C and C++ Projects

Sonar, the Clean Code solution provider, is announcing a new capability for its SonarCloud platform: Zero-configuration, automatic analysis for programming languages C and C++. This capability allows C and C++ projects that are hosted on GitHub to be analyzed by SonarCloud in just one click, according to the company. 

SonarCloud is an open source analysis solution that offers fast and efficient identification and remediation of code-level issues, ultimately increasing productivity while negating business risk and technical debt, according to the company. 

Now expanding its coverage to publicly accessible C and C++ projects, SonarCloud can scan these projects without requiring additional, time-consuming configurations. 

Manual configurations of C and C++ projects can often take up to several days to complete, stealing time away from key technological players that could otherwise be innovating for positive business outcomes. 

With SonarCloud, this manual process is eliminated, enabling development teams to more easily achieve Clean Code, or code that is consistent, intentional, adaptable, and responsible, according to Sonar. 

“I am very proud of the team that has delivered this innovation,” said Olivier Gaudin, founder and co-CEO of Sonar. “The cost it takes to configure static analysis is a big reason why project teams hesitate to use a Clean Code solution. Not only have we delivered a zero-configuration option, but data also shows that for more than 80% of projects analyzed, the analysis is just as performant as the manual configuration. This is a significant breakthrough for the C and C++ ecosystem.”

Additionally, SonarCloud works with all compilers, and is completely free for open source projects. 

"Until now, it seemed impossible to offer C or C++ static analysis with a seamless configuration experience. Users had to suffer the pain of manual configuration or not use it at all,” said Geoffray Adde, C++ ecosystem product manager at Sonar. “We have made the impossible possible with a one-step process, which also expands our coverage to all compilers. What’s more, anyone can take advantage of the new feature, as it’s free for open source projects."

“IDC developer research shows that C++ remains one of the top three languages used today. The language is found in many security-sensitive places, including operating systems, safety-critical software, and the infrastructure of many tools, so the efficient and effective analysis of C++ is important,” said Katie Norton, senior research analyst for DevOps and DevSecOps at IDC. “An easy to deploy, automatic analysis process will benefit organizations by enabling developers to take the time saved and put it towards more fulfilling, bigger-impact work.”

To learn more about SonarCloud, please visit