Sonar's latest blog posts

Featured Post

Announcing SonarSweep: Improving training data quality for coding LLMs

Recent research from Anthropic has shown that even a small amount of malicious or poor quality training data can have a massively negative impact on a model’s performance, exposing users to significant security and quality issues.

Read More
https://assets-eu-01.kc-usercontent.com:443/55017e37-262d-017b-afd6-daa9468cbc30/c4c32669-0e01-4074-926a-1b257686a90c/sonarsweep_blog_or_press_featured_with_mark__2x.webp
Common mistake in Typescript #5
Blog post

Common TypeScript Issues Nº 5: Optional property declarations

We crunched the data from SonarQube for IDE to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog >

Image for OpenEMR - Remote Code Execution in your Healthcare System
Blog post

OpenEMR - Remote Code Execution in your Healthcare System

We recently discovered three vulnerabilities that allow arbitrary code execution on OpenEMR. Let’s see what we can learn from them and discuss their patches!

Read Blog >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for Vulnerability Research Highlights 2022
Blog post

Vulnerability Research Highlights 2022

Our research team looks back at a great year and summarizes the highlights of their vulnerability research in 2022.

Read Blog >

Image for Level up your team's skills as they code
Blog post

Level up your team's skills as they code

Clear context and specific education for why an issue occurs and how to fix it should be by the developers’ side without leaving the development workflow. Sonar has your answer.

Read Blog >

Image for Lesser spotted React mistakes: What are we even rendering?
Blog post

Lesser spotted React mistakes: What are we even rendering?

This series is dedicated to the small, but common pitfalls and errors you can encounter when writing React code. Whether an experienced JavaScript | TypeScript developer or just starting out, the results can be surprising.

Read Blog >

Image for Cacti: Unauthenticated Remote Code Execution
Blog post

Cacti: Unauthenticated Remote Code Execution

Learn how we discovered a critical vulnerability in Cacti with the help of SonarQube Cloud.

Read Blog >

SonarQube 9.8
Blog post

SonarQube Server 9.8 is here!

The latest version of SonarQube Server from Sonar has arrived. Check out what’s new in SonarQube Server 9.8 in this quick video and download it now.

Read Blog >

Image for Develop Your Cloud Native Apps the Sustainable Way
Blog post

Develop Your Cloud Native Apps the Sustainable Way

Application development using cloud native technologies is a game changer for developers. With a robust, maintainable codebase, they are positioned to do their best work. Learn how Sonar has the Code Quality game plan to perfectly complement your cloud native initiatives.

Read Blog >

Image for Sonar @ Pwn2Own Toronto 2022
Blog post

Sonar @ Pwn2Own Toronto 2022

Members of the Sonar Vulnerability Research team remotely participated in Pwn2Own Toronto 2022. This competition is quite special for us: we usually focus on code vulnerabilities in open-source web application projects.

Read Blog >

Developer screen showing code with sonarcloud logo.
Blog post

How to enable your development team to deliver Code Quality?

Regardless of the company we work for, the project we contribute to, or our years of experience as individual developers or as a team, we inevitably make mistakes while coding. On average, a development team generates about 15 to 50 errors per 1,000 lines of delivered code.

Read Blog >

Image of different elements of clean code going across the page in different ways symbolizing the enterprise.
Blog post

Scaling Code Quality Across the Enterprise

Code is at the core of your software and dictates its behavior and performance. Code Quality makes it easier for your development teams to introduce changes and enhancements to software because it is free of issues.

Read Blog >