Sonar's latest blog posts

Featured Post

Announcing SonarSweep: Improving training data quality for coding LLMs

Recent research from Anthropic has shown that even a small amount of malicious or poor quality training data can have a massively negative impact on a model’s performance, exposing users to significant security and quality issues.

Read More
https://assets-eu-01.kc-usercontent.com:443/55017e37-262d-017b-afd6-daa9468cbc30/c4c32669-0e01-4074-926a-1b257686a90c/sonarsweep_blog_or_press_featured_with_mark__2x.webp
Image for Paying maintainers: the HOWTO
Blog post

Paying maintainers: the HOWTO

It is no surprise that lots of well-intentioned people have failed to figure out how to effectively pay maintainers.

Read article >

Image for Pretalx Vulnerabilities: How to get accepted at every conference
Blog post

Pretalx Vulnerabilities: How to get accepted at every conference

We recently discovered two vulnerabilities in pretalx and found a generic technique to gain code execution from a file write.

Read article >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for Another 9 reasons to upgrade to SonarQube Server 9.9 LTS
Blog post

Another 9 reasons to upgrade to SonarQube Server 9.9 LTS

SonarQube Server 9.9 LTS is here! We're back with another 9 reasons you should prioritise upgrading as soon as possible.

Read article >

Image for How bad code destroys developer velocity
Blog post

How bad code destroys developer velocity

When bad code gets overlooked, it can create lasting problems and ultimately impact developer productivity and velocity.

Read Blog >

Image for Announcing SonarQube Server 10.0
Blog Post

Announcing SonarQube Server 10.0

Learn what features - like faster first analysis and better user management with SCIM - are available to you and your teams in SonarQube Server 10.0!

Read article >

Image for It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS
Blog post

It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS

Our researchers discovered a vulnerability in LibreNMS, which could be exploited by attackers to gain RCE by sending a single SNMP trap.

Read article >

Image for Sonar is the Code Quality solution for your DevOps workflow
Blog post

Sonar is the Code Quality solution for your DevOps workflow

Code Quality from Sonar aims to streamline your DevOps workflow so that your organization can yield the best possible results from your software.

Read Blog >

Image for Your Guide to Code Quality in Cloud Native Apps
Blog post

Your Guide to Code Quality in Cloud Native Apps

Companies are adopting cloud native practices because it puts their core business first and affords them speed and efficiency advantages over the competition. However, reaping these rewards requires a solid, sustainable foundation - a Code Quality foundation.

Read Blog >

Image for The top 5 common TypeScript issues found by SonarQube for IDE
Blog post

The top 5 common TypeScript issues found by SonarQube for IDE

We crunched the data from SonarQube for IDE to discover the top 5 most common TypeScript issues. This is a summary of the top 5

Read Blog >

Image for Cloud native features in SonarQube Server 9.9 LTS
Blog post

Cloud native features in SonarQube Server 9.9 LTS

The best LTS ever - SonarQube Server v9.9 - packed together a lot of new features and functionality. Read more to learn about the cloud native, IaC and serverless analysis capabilities included in the LTS.

Read Blog >

Image for 9 more reasons to upgrade to SonarQube Server 9.9 LTS
Blog post

9 more reasons to upgrade to SonarQube Server 9.9 LTS

SonarQube Server 9.9 LTS is here! Not every improvement could be mentioned in the release announcement, so check out these LTS easter eggs that make this the Best LTS Ever.

Read Blog >