Continuous Inspection

Products News

SonarQube Scanner 2.8 Released

September 26, 2016
SonarSource is pleased to announce the release of the SonarQube Scanner version 2.8.
This new version supports HTTP proxy authentication, and activates the display of timestamp in the logs when using the debug mode. It also fixes a couple of bugs.
Please, read the release notes for more information.
Documentation is available on the product page.

SonarQube Scanner for Gradle 2.1 Released

September 26, 2016
SonarSource is pleased to announce the release of the SonarQube Scanner for Gradle version 2.1.
This new version natively supports the analysis of Android projects: this is no more required to manually specify some configuration like the source or classpath properties. This should make it far easier to analyse Android projects.
This version also brings some improvements, like the support for Gradle 3.X versions, for the “compileOnly” dependencies introduced in Gradle 2.12 and for HTTP proxy authentication.
Please, read the release notes for more information.
Documentation is available on the product page.

SonarQube Scanner for Maven 3.2 Released

September 26, 2016
SonarSource is pleased to announce the release of the SonarQube Scanner for Maven version 3.2.
This new version supports HTTP proxy authentication, and activates the display of timestamp in the logs when using the debug mode.
Please, read the release notes for more information.
Documentation is available on the product page.

SonarLint for Visual Studio 2.7 Released

September 23, 2016

SonarSource is pleased to announce the release of SonarLint for Visual Studio version 2.7.

In this version, the symbolic execution engine for C# was improved to better handle expressions of value types and 30 new VB.NET rules are available :

  • Identical expressions should not be used on both sides of a binary operator – Rule S1764
  • Two branches in the same conditional structure should not have exactly the same implementation – Rule S1871
  • Variables should not be self-assigned – Rule S1656
  • Related “If/ElseIf” statements should not have the same condition – Rule S1862
  • Functions should not be too complex – Rule S1541
  • Expressions should not be too complex – Rule S1067
  • Files should not have too many lines – Rule S104
  • Lines should not be too long – Rule S103
  • “With” statements should be used for a series of calls to the same object – Rule S2375
  • Comments should not be located at the end of lines of code – Rule S139

And a bunch of rules to enforce naming conventions:

  • Namespace names should comply with a naming convention – Rule S2304
  • Class names should comply with a naming convention – Rule S101
  • Interface names should comply with a naming convention – Rule S114
  • Method parameters should follow a naming convention – Rule S1654
  • Generic type parameter names should comply with a naming convention – Rule S2373
  • Indexed properties should be named “Item” – Rule S2353
  • Function names should comply with a naming convention – Rule S1542
  • Properties should comply with a naming convention – Rule S2366
  • Enumeration types should comply with a naming convention – Rule S2342
  • Enumeration values should comply with a naming convention – Rule S2343
  • Event handlers should comply with a naming convention – Rule S2347
  • Events should comply with a naming convention – Rule S2348
  • Non-private constants should comply with a naming convention – Rule S2367
  • Private constants should comply with a naming convention – Rule S2362
  • Local variable and function parameter names should comply with a naming convention – Rule S117
  • Non-private “Shared ReadOnly” fields should comply with a naming convention – Rule S2370
  • “Private Shared ReadOnly” fields should comply with a naming convention – Rule S2363
  • Non-private fields should comply with a naming convention – Rule S2369
  • “Private” fields should comply with a naming convention – Rule S2364

If you have any feedback or any idea of new rules, feel free to join the SonarLint Google Group.

Have fun with SonarLint for Visual Studio!

SonarQube COBOL 3.2 Released

September 22, 2016

SonarSource is pleased to announce the release of the COBOL plugin version 3.2.

The main purpose of this release was to do a massive update of rules severities to fully comply with the SonarQube Quality Model introduced in SonarQube 5.6 LTS and underlying new meaning of the rules severities.

Moreover, this version contains a bunch of bug fixes and improvements. Please read the release notes for more information. You can install or update the COBOL plugin via the Update Center.

Documentation is available on the product page.

SonarQube 5.6.2 Released

September 19, 2016

SonarSource is pleased to announce the release of  SonarQube 5.6.2 (LTS)

This new version fixes bugs and vulnerabilities.

Please, read the release notes.
Download is available at sonarqube.org.

SonarQube JavaScript 2.16 Released

September 9, 2016

SonarSource is pleased to announce the release of the SonarQube JavaScript plugin version 2.16.

To fully comply with the SonarQube Quality Model introduced in SonarQube 5.5, most default rules severities have been adjusted. The blog entry “We Are Adjusting Rules Severities” is a good reading to deeply understand the meaning of each severity by type.

Moreover, the Symbolic Execution engine for JavaScript is now able to learn some constraints when encountering a relational operator like >, <, <=, >=, ==, ===, !=, !===. This major improvement allows existing rules relying on this SE engine to detect even more issues. Here are a few real life issues found with help of this improvement :

In the Chart.js project:

bug_js_1

 

In Angularjs:

bug_angular

 

Please read the release notes for more information. You can install or update it via the Update Center.

Documentation is available on the product page.

SonarLint for IntelliJ 2.3.2 Released

September 7, 2016

SonarSource is pleased to announce the release of SonarLint for IntelliJ version 2.3.2.

This new version mainly fixes a bug related to the deactivation of automatic trigger of source code analysis.

For more information, have a look to the release note or visit the dedicated SonarLint for IntelliJ web site.

Have fun with SonarLint !

SonarQube ABAP 3.3 Released

September 7, 2016

SonarSource is pleased to announce the release of the ABAP plugin version 3.3.

This version fixes false positives in two rules, and adds five new rules:

Please read the release notes for more information. You can install or update it via the Update Center.

Documentation is available on the product page.

SonarQube Scanner 2.7 Released

August 31, 2016
SonarSource is pleased to announce the release of the SonarQube Scanner version 2.7.
This new version mainly fixes a bug on Windows (SONAR_RUNNER_OPTS not taken into account).
Please, read the release notes for more information.
Documentation is available on the product page.
Page 1 of 5712345...102030...Last »