Sonar's latest blog posts

Featured Post

Announcing SonarSweep: Improving training data quality for coding LLMs

Recent research from Anthropic has shown that even a small amount of malicious or poor quality training data can have a massively negative impact on a model’s performance, exposing users to significant security and quality issues.

Read More
https://assets-eu-01.kc-usercontent.com:443/55017e37-262d-017b-afd6-daa9468cbc30/c4c32669-0e01-4074-926a-1b257686a90c/sonarsweep_blog_or_press_featured_with_mark__2x.webp
Image for Reflections from OffensiveCon 2023
Blog post

Reflections from OffensiveCon 2023

Our Vulnerability Researchers are just returning from their trip to Berlin where they attended OffensiveCon 2023! Here's what they loved about the event.

Read blog post >

Image for 8 ways to build your continuous vulnerability management strategy
Blog post

8 ways to build your continuous vulnerability management strategy

These days, most software organizations have a vulnerability remediation strategy in place. It’s often a fully reactive approach

Read article >

Get new blog posts delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By clicking “Sign up”, you consent to receive email communications from SonarSource containing blog updates, product news, and other relevant content. We will store and process your personal data for this purpose as described in our Privacy Policy. You can withdraw your consent at any time by clicking the unsubscribe link in our emails or by contacting us in accordance with the Privacy Policy.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes
Blog post

Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes

Learn about the Sonar - HashiCorp partnership and the SonarQube Cloud Terraform Cloud integration.

Read Blog >

Image for SonarQube for IDE supports Go analysis!
Blog post

SonarQube for IDE supports Go analysis!

SonarQube for IDE supports Go analysis!

Read Blog >

Image for Pimcore: One click, two security vulnerabilities
Blog post

Pimcore: One click, two security vulnerabilities

We discovered two vulnerabilities in Pimcore that could be chained together in one GET request to achieve RCE.

Read article >

Image for Is Code Quality the solution to Jupyter notebook code quality?
Blog post

Is Code Quality the solution to Jupyter notebook code quality?

Is Code Quality the solution to Jupyter notebook code quality?

Read Blog >

Image for ES2023 introduces new array copying methods to JavaScript
Blog post

ES2023 introduces new array copying methods to JavaScript

There are new array methods in JavaScript and they are here to make our programs more predictable and maintainable.

Read blog post >

Image for CNCF Silver membership
Blog post

CNCF Silver membership

Sonar becomes Silver member of the Cloud native computing foundation

Read Blog >

Image for Why SonarQube Server 9.9 LTS is a must-have for Python developers
Blog post

Why SonarQube Server 9.9 LTS is a must-have for Python developers

Learn about the changes in SonarQube Server 9.9 LTS that help Python developers write Code Quality.

Read article >

Image for Weird Python: 5 Unexpected Behaviors in the Python Interpreter
Blog post

Weird Python: 5 Unexpected Behaviors in the Python Interpreter

Five ways in which Python's interpreter behaves in ways that you wouldn't expect.

Read Blog >

Image for Reflections from DevNexus, the largest Java conference in the U.S.A.
Blog post

Reflections from DevNexus, the largest Java conference in the U.S.A.

Reflections from DevNexus, the largest Java conference in the U.S.A.

Read Blog >