Geneva-based code quality company is cashing in on heightened investor interest in the software supply chain security space
Swiss code quality software firm SonarSource on Tuesday announced a $412 million funding round at a heady valuation of $4.7 billion as investors continue to pour money into startups tackling software supply chain security.
SonarSource said the financing was led by new investors Advent International and General Catalyst. Insight Venture Partners, which invested $45 million back in 2016, also participated in the latest round.
Founded in Switzerland in 2008 by Olivier Gaudin, Freddy Mallet and Simon Brandhof, SonarSource provides products for continuous code quality of applications. The company competes with the likes of Veracode and Checkmarx in a fast growing market for tools to secure code in the software supply chain.
SonarSource, which maintains dual headquarters in Geneva and Texas, provides an IDE extension for on-the-fly analysis and coding guidance and products to handle static analysis for continuous codebase inspection and CI/CD workflows.
The company claims its products help more than 5 million developers write high-standard code that is free of bugs and security vulnerabilities.
As software gets updated continuously, SonarSource tools can be used to embed clean code directly into the development process, improving the overall health of the code base and reducing tech debt, the company said.
SonarSource said it will use the new investment to grow its go-to-market team globally as the company drives toward an ambitious $1 billion revenue target.
The company plans to open new regional headquarters in Singapore to drive a push into the APAC market.
Related: Codecov Bash Uploader Dev Tool Compromised in Supply Chain Hack
Related: Code Analysis Company SonarSource Acquires RIPS Technologies
Related: Critical GoCD Authentication Flaw Exposes Software Supply Chain

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.
More from Ryan Naraine
- Oleria Scores $8M Seed Funding for ID Authentication Technology
- Aembit Scores $16.6M Seed Funding for Workload IAM Technology
- Project Zero: Samsung Mobile Chipsets Vulnerable to Baseband Code Execution Exploits
- Rapid7 Buys Anti-Ransomware Firm Minerva Labs for $38 Million
- Microsoft Pins Outlook Zero-Day Attacks on Russian Actor, Offers Detection Script
- Microsoft Warns of Outlook Zero-Day Exploitation, Patches 80 Security Vulns
- Adobe Warns of ‘Very Limited Attacks’ Exploiting ColdFusion Zero-Day
- Cloud Forensics Startup Mitiga Completes $45M Series A
Latest News
- Verosint Launches Account Fraud Detection and Prevention Platform
- Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager
- Zoom Paid Out $3.9 Million in Bug Bounties in 2022
- Oleria Scores $8M Seed Funding for ID Authentication Technology
- Exploitation of 55 Zero-Day Vulnerabilities Came to Light in 2022: Mandiant
- News Analysis: UK Commits $3 Billion to Support National Quantum Strategy
- Malicious NuGet Packages Used to Target .NET Developers
- Google Pixel Vulnerability Allows Recovery of Cropped Screenshots
