Start for Free -->Explore Pricing -->

Home

Blog

Sonar's latest blog posts

Featured Post

Uncovering hidden security vulnerabilities with deeper SAST

Security vulnerabilities can be hidden in your third-party dependency code. Uncover them with deeper SAST.

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/079878db-47ec-4d8d-b0da-5b93153f750e/sq-is-for-java-devs_blog-index.webp

Why SonarQube 9.9 LTS is a must-have for Java developers

Explore the game-changing features of SonarQube 9.9 LTS, empowering Java developers to write Clean Code with enhanced speed and precision.

Read article >

Hands on with the Node.js test runner

Node.js released an experimental test runner in version 18 and made that test runner stable in version 20. What does that mean for us as JavaScript developers?

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/b404502b-37ad-4983-8da3-cb7ee7dbaf18/offensive-con-reflections_blog-index.png

Reflections from OffensiveCon 2023

Our Vulnerability Researchers are just returning from their trip to Berlin where they attended OffensiveCon 2023! Here's what they loved about the event.

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/c83333c4-67f7-4800-be5b-75026f7ba4f7/sonar-hashicorp_blog-index.webp

Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes

Learn about the Sonar - HashiCorp partnership and the SonarCloud Terraform Cloud integration.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/77a9629f-811d-4b16-aa3f-e8888e4fda58/sl-supports-go_blog-index.webp

SonarLint supports Go analysis!

SonarLint supports Go analysis!

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/fab479cb-cff3-44a4-9fad-cb5054ed9b44/Pimcore_social-landscape.png

Pimcore: One click, two security vulnerabilities

We discovered two vulnerabilities in Pimcore that could be chained together in one GET request to achieve RCE.

Read article >

SonarCloud or SonarQube? - Guidance on Choosing One for Your Team

Learn about the similarities and key differences between SonarCloud and SonarQube and which one is best for your use case.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/d1b6a85f-5b62-4512-b9ff-943f19598861/jupyter-notebook_blog-index%20%281%29.webp

Is Clean Code the solution to Jupyter notebook code quality?

Is Clean Code the solution to Jupyter notebook code quality?

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/ef97fb4e-e4f4-4a7d-8708-4872ea73e609/javascript-array-copying-methods_blog-index.webp

ES2023 introduces new array copying methods to JavaScript

There are new array methods in JavaScript and they are here to make our programs more predictable and maintainable.

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/bfbd96aa-5b05-4f2f-993e-bf80c5514c15/sonar-cncf-silver-membership_blog-index.webp

CNCF Silver membership

Sonar becomes Silver member of the Cloud native computing foundation

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/05f65288-fbbd-445e-86b1-f3c89902a130/sq-is-for-python-devs_blog-index.webp

Why SonarQube 9.9 LTS is a must-have for Python developers

Learn about the changes in SonarQube 9.9 LTS that help Python developers write Clean Code.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/a2b89e22-e46c-4a37-9b9e-1ee08d1350b7/weird-python-behaviors_blog-index.webp

Weird Python: 5 Unexpected Behaviors in the Python Interpreter

Five ways in which Python's interpreter behaves in ways that you wouldn't expect.

Read Blog post >