Static Code Analysis for Salesforce DevOps

Empower your DevOps teams with CodeScan’s leading end-to-end static code analysis solution, designed exclusively for Salesforce.

Speed Up Your Workflow

Time - Icon
Track and Control Quality
Maintain the quality of your code
throughout the development process.
Save Time on Code Reviews

Customizable quality gates allow you to
see your project’s quality in real time.

Increase - Icon
Increase Productivity
Automate your reviews and focus on
things that matter.
Flexible Hosting Options

Check your code for bugs and vulnerabilities with the most complete rule set for Apex, Visualforce, Lightning, and metadata. CodeScan’s static code analysis solution offers different hosting options to best fit your needs for analyzing code quality.

  • CodeScan’s self-hosted option can be installed on-site, directly in your own environment, providing you with complete control of your metadata.
  • Leverage the CodeScan Cloud solution and avoid installing, running, and maintaining it on-site in your own environment. With no maintenance required, all CodeScan’s newest features are available instantaneously upon release.

To download our most recent product versions, visit our Knowledge Base.

Hosted - Illustration

CodeScan’s Static Code Analysis Features

CodeScan offers Salesforce developers a complete solution with code analysis tools that support proper coding structures from every angle. Automated code reviews offer a high-level analysis of code health through easy-to-read dashboards and reports. You can’t fix a problem if you don’t know it exists. CodeScan provides immediate alerts so you can fix simple errors before they become complex—and costly—issues.

Document - Icon

Custom Rules

Every org has different needs. CodeScan helps you create custom rules to fit your development team’s review process.

Flexible - Icon


CodeScan is a flexible solution that works with complex customized DevOps pipelines.

100% Language Coverage

Don’t worry about limitations when it comes to language coverage. We are 100% compatible with Salesforce languages and metadata.

Debt - Icon

Reduce Technical Debt

CodeScan picks up on any code issues vulnerabilities and bugs in your environment, enabling your team to reduce technical debt in real time.

Unlimited Scans

Whether you have 40 lines of code or 400,000, our solution can scan an unlimited number of lines of source code.

Security - Icon

Security Compliant

Code standardization and security are as important to us as they are to you! A full 100% of our security policy rules align with CWE, OWASP, and SANS standards.

Data Security Relies on Strong Code

Even the best developers are going to make errors. And if these errors aren’t caught before the update or application is sent to production, they can create data security vulnerabilities.

CodeScan immediately alerts Salesforce developers the moment errors are introduced to the code repository so they can address them before they become bugs in a live environment—reducing exposure as well as the cost of fixing the issue. Your users will thank you, and your ROI will reap the rewards.

CodeScan Compliance

Assisted Regulatory Compliance

Companies in regulated industries work with extremely sensitive data that needs to be protected with every available tool. Strong code is the basis of a secure environment, which greatly reduces the potential for costly data loss events and system breaches.

CodeScan aligns your coding practices with CWE, OWASP, and SANS standards, so no matter what regulatory guidelines apply to your Salesforce platform, you can be sure your code is reliable and compliant.

Our hosting options

Self Hosted


Check your code for security and quality with the most extensive database for the Salesforce platform.

CodeScan Cloud


Get all the benefits of our self-hosted service without the need for servers or internal infrastructure.

CodeScan - Editor Plugins

Editor Plugins

Plug CodeScan into your favorite editor and get real-time feedback while you code.

Develop high quality, secure code!