Codiga
best deal
Start with Codiga Free: Access real-time code analysis for public projects at no cost, or use code 'STARTUPS20' for 20% off paid plans for 12 months.
redeem nowWe start with direct ratings from our readers, then look at what real users are saying in practitioner forums and community spaces. We pair that with search demand data and profession-level persona analysis.
Editorial note: this was originally published in june of 2024
quick take
based on real user feedback, community sentiment, pricing value, and fit for target audience. see our full methodology
used Codiga? we'd love to know your thoughts
reader ratings shape our score
Codiga is a software development platform that combines code analysis, security scanning, and productivity tools. It provides real-time feedback directly within popular IDEs like VS Code, JetBrains products, and Visual Studio, catching issues as you write code.
At its core, the platform offers static code analysis to identify potential bugs, security vulnerabilities, and style issues across multiple programming languages. Developers can create custom rules tailored to their project's needs or use the extensive library of pre-built checks. The tool integrates with version control systems like GitHub, GitLab, and Bitbucket to analyze code during the review process. It also works with CI/CD pipelines and git hooks to catch problems before code is pushed or deployed.
Security is a major focus for Codiga. The platform checks for vulnerabilities aligned with OWASP Top 10, MITRE CWE, and SANS/CWE Top 25 standards. It includes autofix capabilities that can automatically resolve certain issues and vulnerabilities. Teams can share coding standards through Codiga Hub, where they can design and test new analysis rules. The platform also includes features for managing reusable code snippets directly in your IDE.
Available in free and paid tiers, Codiga offers plans suitable for individual developers up to large teams. The free version provides core functionality for public projects with a cap of 10 analyses per day, while paid plans unlock additional features like unlimited analyses, private repository support, and dedicated support channels. Codiga is now part of Datadog.
monthly search interest
210/mo now
Codiga peaked in April 2023, which coincides almost exactly with the timing of its Datadog acquisition announcement. Search interest has roughly halved since then and settled into a low, flat range. That pattern reflects a tool that's no longer being actively marketed as a standalone product: the audience that found it has moved on, and new developers aren't discovering it organically.
Whether Codiga makes sense for you depends heavily on your team size, security requirements, and how much the acquisition uncertainty matters to your workflow. Pick your role below to see the honest breakdown.
overall sentiment
select your role to see what people like you are saying
Individual Developer/Freelancer
mixedThe free tier covers public repos with 10 analyses a day, which is enough to test whether it fits your workflow. For solo work, though, SonarLint is free, has no daily cap, and has a much larger community to pull from. The acquisition by Datadog adds uncertainty that makes committing to a paid plan hard to recommend right now.
strengths
concerns
Team Lead/Engineering Manager
mixedThe custom rules engine is the real draw here: you can define team-specific coding standards and enforce them automatically in CI/CD without relying on manual review. The $14/month Team plan made that accessible at reasonable cost. The problem now is that the pricing page is down and sign-ups route to a Google Form, which makes it difficult to onboard new team members or plan around it as infrastructure.
strengths
concerns
Security/DevOps Engineer
mixedOWASP alignment and early vulnerability detection in the development cycle are things Codiga does genuinely well, and the CI/CD integration means you're catching issues before they reach review gates. The catch is false positives that require tuning, sparse documentation for security-specific configurations, and now an acquisition that puts the product's roadmap in question. It's hard to justify wiring this into a compliance pipeline until the Datadog transition is clearer.
strengths
concerns
Open Source Contributor
mixedThe free plan explicitly supports public repositories, so if you're contributing to open source, you can use the core static analysis without paying. That's a legitimate use case and the IDE integration works without disrupting your existing setup. Just know that community support and documentation are thin, so you're largely on your own when something doesn't behave as expected.
strengths
concerns
“The pricing page is down, sign-ups redirect to a Google Form, and the product is mid-acquisition: don't build a workflow around something in that state.”
Codiga's acquisition by Datadog is the most important thing to know before you start evaluating it. The pricing page now returns a 404, sign-ups redirect to a Google Form, and the product as it existed is effectively being absorbed into Datadog's platform. The two community sources available are roundup articles listing Codiga among other AI coding assistants, with no substantive user reviews or hands-on comparisons to speak of. There's no Reddit thread dissecting its custom rules engine, no forum debate about false positive rates, and no user community visibly advocating for it. That vacuum is itself informative: tools with genuinely enthusiastic user bases generate discussion, and this one doesn't have it.
The pricing page currently returns a 404, which tells you most of what you need to know. The last published tiers were: free for public projects with 10 analyses per day, $14/month for the Team plan with private repos and 100+ daily analyses, and $18/month Gold for unlimited analyses. At those prices the value was reasonable, but the product has been acquired by Datadog and isn't accepting standard sign-ups. Hold off on paying for anything until the Datadog Static Analysis transition is clearer.
It was most useful for Team Leads and Engineering Managers who needed to enforce custom coding standards across a team without manual review overhead, and for Security and DevOps Engineers who needed OWASP-aligned vulnerability detection in CI/CD pipelines. Individual developers on smaller solo projects had cheaper or free alternatives that were easier to justify.
The most immediate limitation is that the product is mid-acquisition and the pricing page is down. Beyond that, the custom rules engine has a steep configuration learning curve, and users report false positives that require ongoing tuning to avoid alert fatigue. Performance slowdowns have also been flagged on large codebases, which is a real problem for teams expecting it to scale.
SonarLint is the direct comparison. It's free, integrates with VS Code and JetBrains, has an active community, and covers most of what Codiga's static analysis does. Codiga's custom rules engine was its main differentiator for teams with specific coding standards, but given the acquisition uncertainty, SonarLint is the safer choice right now for anyone starting fresh.
Not right now. The OWASP alignment and CI/CD integration were genuinely useful for security-critical environments, but building a compliance workflow around a product in mid-acquisition is a real operational risk. The Datadog transition may preserve these features, but until the new product is clearly documented and available, don't make it a dependency in regulated pipelines.
toolsforhumans editorial team
Reader ratings and community feedback shape every score. Since 2022, ToolsForHumans has helped 600,000+ people find software that holds up after launch. how we research →
is this your tool?
claim your listing to update details, respond to our review, or upgrade to a featured partnership.
claim this listing →
Box is a cloud-native content management platform that enables secure storage, collaboration, and content management. It offers features including security controls, AI-driven insights, workflow automation, and integrations across business applications. With scalable solutions for individuals, teams, and enterprises, Box helps organizations manage, share, and protect their digital content.
best deal
Try Box free with 10GB storage or get 30% off Enterprise plans when billed annually
Barracuda Networks is a cybersecurity company founded in 2003, offering AI-powered solutions for email, network, and data protection through its BarracudaONE platform. The product suite includes email gateway defense, web security, firewalls, cloud backup services, and managed XDR with multimodal AI threat detection.
best deal
Free trials available for email protection and other products
PimEyes is an advanced online facial recognition search engine that uses AI to perform reverse image searches across publicly accessible websites. It helps users monitor their digital presence, find instances of their face online, and provides tools for privacy protection, including image removal assistance and alert systems. Available through various subscription plans, PimEyes searches an index of 3.5 billion photographic images and focuses specifically on facial features rather than entire images.
best deal
Get 25% off annual plans: PROtect for $26.24/month or Advanced for $224.99/month
Mimecast is a cloud-based cybersecurity platform that provides email security, archiving, and continuity solutions. It protects against phishing, malware, ransomware, and business email compromise using AI-powered detection engines, URL scanning, attachment sandboxing, and user awareness training.
best deal
Explore Mimecast's Protect Plan with AI-powered email security starting today.
FaceCheck.ID is an AI-powered facial recognition search engine that allows users to upload a photo to find matching faces across social media, news sites, blogs, mugshot databases, sex offender registries, and criminal news for identity verification and safety checks. The platform scans over 763 million public images and returns results in seconds with confidence scores and source links.
best deal
Try FaceCheck.ID free with basic search, or start with 36 credits for just $6
Vanta is a compliance and security platform that automates up to 90% of compliance work for major security frameworks like SOC 2 and ISO 27001. It offers automated evidence collection, policy management, access control, and AI-powered tools to help businesses streamline compliance processes, strengthen security, and build stakeholder trust.
best deal
Free trial available with no credit card required. Core plan starts at $7,500 annually.