Sonar Blog

Home

Blog

Sonar's latest blog posts

Featured Post

What is Clean Code?

If you’ve followed us for a while, you most likely noticed that we changed the way we describe what we do: from “code quality” to “continuous code inspection,” then “code quality and code security”… to Clean Code.


But what is Clean Code, and what does it encompass?

Read More
https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/ddb995eb-cb89-4435-82fb-1b937cdf11dc/what_is_clean_code_blog_feature.webp
https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/7f4576b6-498d-4069-bb19-b6475faf0654/file-truncation_blog-index.png
Blog post

Empowering weak primitives: file truncation to code execution with Git

Let's dive into how a seemingly minor code vulnerability can hide a critical impact!

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/51cbb0a7-98e8-453b-bab1-b07c2e14f356/Develop%20Your%20Cloud%20Native%20Apps%20the%20Sustainable%20Way_Hero.jpg
Blog post

Clean Code: The Best Approach to Writing Secure Cloud Native Apps

With Sonar and the Clean as You Code methodology, developers can directly impact the security of the cloud native apps they create.

Read Blog post >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/67510349-fb04-43f9-a2ec-168a60163451/typescript-common-mistakes_03_blog-index.webp
Blog post

Common TypeScript Issues Nº 3: unused local variables and functions

We crunched the data from SonarLint to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog post >

Person's-fingers-typing-really-fast-on-a-keyboard-to-increase-developer-velocity.
Blog post

Increase developer velocity today with Clean as You Code

The Clean as You Code methodology allows developers to keep working on new and interesting projects without sacrificing quality or getting bogged down in refactoring legacy code.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/7841daa4-c902-441f-a67e-36bb3d6437b4/we-are-sonar_blog-index.jpeg
Blog post

We are Sonar!

Culture is a key aspect of working at Sonar. It is our binding agent; it is what we value, what we believe in, the way we work, and the way we interact. It is what makes us SonarSourcers!

Read Blog post >

Common mistake in Typescript #5
Blog post

Common TypeScript Issues Nº 4: Don't create and drop objects immediately

We crunched the data from SonarLint to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog post >

SonarQube LTS 9.9
Blog post

Announcing SonarQube 9.9 LTS!

Big year, big announcement – the most anticipated SonarQube 9.9 Long-Term-Support release is here! Check out this post for all details.

Read Blog post >

Common mistake in Typescript #5
Blog post

Common TypeScript Issues Nº 5: Optional property declarations

We crunched the data from SonarLint to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/6de6bf70-0216-4289-adc6-488e80c6d1e1/OpenEMR_blog-index-image.webp
Blog post

OpenEMR - Remote Code Execution in your Healthcare System

We recently discovered three vulnerabilities that allow arbitrary code execution on OpenEMR. Let’s see what we can learn from them and discuss their patches!

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/205493e1-fa6f-4f9f-971f-c7d1fe1a237e/Vulnerability%20Research%20Highlights_blog%20header_1200x627%402x.png
Blog post

Vulnerability Research Highlights 2022

Our research team looks back at a great year and summarizes the highlights of their vulnerability research in 2022.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/e2fe37e7-55cd-01b0-b5d2-5ad4e116ce31/d8dbc097-91af-469f-88ec-34a7ed9d24dc/Level%20Up%20Your%20Teams%20Skills_1200x627.jpeg
Blog post

Level up your team's skills as they code

Clear context and specific education for why an issue occurs and how to fix it should be by the developers’ side without leaving the development workflow. Sonar has your answer.

Read Blog post >