Sonar Logo
Start for Free -->Explore Pricing -->

Sonar Blog

Home

Blog

Sonar's latest blog posts

Featured Post

Uncovering hidden security vulnerabilities with deeper SAST

Security vulnerabilities can be hidden in your third-party dependency code. Uncover them with deeper SAST.

Read more -->
https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/5a163ee9-f907-45c4-a36f-eaf381c91066/devnexus-reflections_blog-index.webp
Blog post

Reflections from DevNexus, the largest Java conference in the U.S.A.

Reflections from DevNexus, the largest Java conference in the U.S.A.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/ce802ac3-be3b-47a7-ae31-b2471e778d2e/interview-with-python-devs_blog-index%20%281%29.webp
Blog post

Interview with Sonar Python Developers Part 2

Latest Python developments. Interview with Python developers from Sonar.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/e8442955-a296-4bf2-8f92-69930193e34f/odoo-scripting_blog-index.webp
Blog post

Odoo: Get your Content Type right, or else!

What do we need content types for anyway? Let's look into how an incorrect content type led to a real-world vulnerability in Odoo, CVE-2023-1434.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/ce802ac3-be3b-47a7-ae31-b2471e778d2e/interview-with-python-devs_blog-index%20%281%29.webp
Blog post

Interview with Sonar Python Developers Part 1

Why should I learn Python language? When should I use Python? Is tooling around Python development mature?

Read Blog post >

Image of Sonar Logo and Compiler Explorer integration
Blog post

Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser

Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/40870ddd-2321-4066-8441-13d3aa98ce7a/get-accepted-at-every-conference_blog-index.webp
Blog post

Pretalx Vulnerabilities: How to get accepted at every conference

We recently discovered two vulnerabilities in pretalx and found a generic technique to gain code execution from a file write.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/e1c8b219-a203-4cf5-ba12-eee11888c596/another-9-reasons-to-upgrade_blog-index.webp
Blog post

Another 9 reasons to upgrade to SonarQube 9.9 LTS

SonarQube 9.9 LTS is here! We're back with another 9 reasons you should prioritise upgrading as soon as possible.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/89db6937-0e09-4b6f-a9df-72f36a294a3d/dev-velocity_blog-index.png
Blog post

How bad code destroys developer velocity

When bad code gets overlooked, it can create lasting problems and ultimately impact developer productivity and velocity.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/8335204d-8ea7-48bf-b064-4f71ee6fadaf/sq-10_0_social-landscape.webp
Blog Post

Announcing SonarQube 10.0

Learn what features - like faster first analysis and better user management with SCIM - are available to you and your teams in SonarQube 10.0!

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/a9ccfae2-fd35-40d8-9560-332c1c04c037/librenms-malicious-trap_blog-index.webp
Blog post

It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS

Our researchers discovered a vulnerability in LibreNMS, which could be exploited by attackers to gain RCE by sending a single SNMP trap.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/6c0b7bb2-6489-47f7-9c1e-3d9ea2f54fac/what-is-sonar_blog-index%20%281%29.webp
Blog post

Sonar is the Clean Code solution for your DevOps workflow

Clean Code from Sonar aims to streamline your DevOps workflow so that your organization can yield the best possible results from your software.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/6cc4ce1e-8db0-0171-a6b3-352aa24017de/51cbb0a7-98e8-453b-bab1-b07c2e14f356/Develop%20Your%20Cloud%20Native%20Apps%20the%20Sustainable%20Way_Hero.jpg
Blog post

Your Guide to Clean Code in Cloud Native Apps

Companies are adopting cloud native practices because it puts their core business first and affords them speed and efficiency advantages over the competition. However, reaping these rewards requires a solid, sustainable foundation - a Clean Code foundation.

Read Blog post >

Go to SonarSource homepage
Sonar Logo
  • Follow SonarSource on Twitter
  • Follow SonarSource on Linkedin

© 2008-2023, SonarSource S.A, Switzerland. All content is copyright protected. SONAR, SONARSOURCE, SONARLINT, SONARQUBE and SONARCLOUD are trademarks of SonarSource SA. All other trademarks and copyrights are the property of their respective owners. All rights are expressly reserved.