Blog
Sonar's latest blog posts
What Code Issues Caused the CrowdStrike Outage?
This blog post takes a look at the potential code issues behind the recent global CrowdStrike outage.
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/7b69d1cd-74f7-4610-a793-6bd3e35737fa/crowdstrike_blog_featured_2x.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/7b69d1cd-74f7-4610-a793-6bd3e35737fa/crowdstrike_blog_featured_2x.webp?w=1201&h=1201&auto=format&fit=crop)
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/ef04fb57-2a75-452e-8a29-0dc699e6407d/typhooncon-reflections_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/ef04fb57-2a75-452e-8a29-0dc699e6407d/typhooncon-reflections_blog-index.webp?w=325&h=200&auto=format&fit=crop)
TyphoonCon 2023 Wrap Up
Last week, our Vulnerability Researchers traveled to TyphoonCon 2023 in Seoul to present their talk "Patches, collisions and root shells: a Pwn2Own Adventure".
Read article >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/c51b3247-f51d-456c-a029-bcdc060acd33/why-orms-and-prepared-statements-cant-win_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/c51b3247-f51d-456c-a029-bcdc060acd33/why-orms-and-prepared-statements-cant-win_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Why ORMs and Prepared Statements Can't (Always) Win
We always assume prepared statements and ORMs are enough to protect us from SQL injection, but be careful not to misuse their APIs! Let's look into a real-world case and see what we can learn from it.
Read article >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/cad62a32-f577-47e0-80cc-9bbe672884ec/sq-9-9-is-for-js-ts-devs_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/cad62a32-f577-47e0-80cc-9bbe672884ec/sq-9-9-is-for-js-ts-devs_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Why SonarQube 9.9 LTS is a must-have for JavaScript and TypeScript Developers
Read about the new features of SonarQube 9.9 LTS which help JavaScript and TypeScript developers to write Clean Code.
Read article >
![SonarQube 10.1 release](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/704c188c-4362-4184-a525-f5aebd4f4021/sq-10.1_blog-index.webp?w=325&h=200&auto=format&fit=crop)
SonarQube 10.1 is here!
Smoother centralized access management with GitHub, multiple code variant analysis for C/C+, a big coverage boost in Java security, and more in the latest from SonarQube.
Read article >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/0c61eece-f67d-4f97-bf11-f9adfee831b7/stronger-together_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/0c61eece-f67d-4f97-bf11-f9adfee831b7/stronger-together_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Smarter Together: Fostering a culture of collaboration and growth at Sonar
The Sonar culture is the shared vision, mission, values, and behaviors that make up our day-to-day experience at Sonar. Our goal as an organization is that our culture will unite and motivate SonarSourcers to work and grow together and achieve company goals while creating meaningful benevolent relationships. Discover more about our Smarter Together core value in this blog post.
Read Blog post >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/738d77ed-8c59-4952-b83e-0f2646e027be/js-nation-reflections_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/738d77ed-8c59-4952-b83e-0f2646e027be/js-nation-reflections_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Sonar at JSNation 2023 in Amsterdam
We take a look at our highlights from JSNation 2023 in Amsterdam, including our favourite talks, memorable conversations and key takeaways.
Read Blog post >
![Daniel-San balances a laptop in one hand while performing his patented crane kick. Mr. Miyagi is proud.](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/ffe3570e-9688-4001-8529-0ff6b202e8d1/mr_miyagi_and_clean_code_blog_index.webp?w=325&h=200&auto=format&fit=crop)
What Mr. Miyagi can teach you about writing Clean Code
Just like it's not enough to simply practice karate for Mr. Miyagi, it's not enough for Sonar to find and fix issues when guiding developers to practice Clean Code. Developers should be able to find, understand, and fix issues to write Clean Code optimally.
Read blog post >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/079878db-47ec-4d8d-b0da-5b93153f750e/sq-is-for-java-devs_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/079878db-47ec-4d8d-b0da-5b93153f750e/sq-is-for-java-devs_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Why SonarQube 9.9 LTS is a must-have for Java developers
Explore the game-changing features of SonarQube 9.9 LTS, empowering Java developers to write Clean Code with enhanced speed and precision.
Read article >
![The Node.js logo](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/a62e7abd-0486-4d2c-a11a-11a85fee0c86/node_js_blog_index.webp?w=325&h=200&auto=format&fit=crop)
Hands on with the Node.js test runner
Node.js released an experimental test runner in version 18 and made that test runner stable in version 20. What does that mean for us as JavaScript developers?
Read article >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/b404502b-37ad-4983-8da3-cb7ee7dbaf18/offensive-con-reflections_blog-index.png](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/b404502b-37ad-4983-8da3-cb7ee7dbaf18/offensive-con-reflections_blog-index.png?w=325&h=200&auto=format&fit=crop)
Reflections from OffensiveCon 2023
Our Vulnerability Researchers are just returning from their trip to Berlin where they attended OffensiveCon 2023! Here's what they loved about the event.
Read blog post >
![https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/c83333c4-67f7-4800-be5b-75026f7ba4f7/sonar-hashicorp_blog-index.webp](https://assets-eu-01.kc-usercontent.com:443/275a16f7-9b36-0172-ed6f-fce50dc34f53/c83333c4-67f7-4800-be5b-75026f7ba4f7/sonar-hashicorp_blog-index.webp?w=325&h=200&auto=format&fit=crop)
Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes
Learn about the Sonar - HashiCorp partnership and the SonarCloud Terraform Cloud integration.
Read Blog post >