Continuous Inspection

SonarQube JavaScript 2.16 Released

SonarSource is pleased to announce the release of the SonarQube JavaScript plugin version 2.16.

To fully comply with the SonarQube Quality Model introduced in SonarQube 5.5, most default rules severities have been adjusted. The blog entry “We Are Adjusting Rules Severities” is a good reading to deeply understand the meaning of each severity by type.

Moreover, the Symbolic Execution engine for JavaScript is now able to learn some constraints when encountering a relational operator like >, <, <=, >=, ==, ===, !=, !===. This major improvement allows existing rules relying on this SE engine to detect even more issues. Here are a few real life issues found with help of this improvement :

In the Chart.js project:

bug_js_1

 

In Angularjs:

bug_angular

 

Please read the release notes for more information. You can install or update it via the Update Center.

Documentation is available on the product page.