Sonar's latest blog posts

Featured Post

The future is AC/DC: the Agent Centric Development Cycle

The era of Continuous Integration, with its familiar processes and workflows, is rapidly coming to an end. Traditional CI relies on developers making small, frequent, iterative commits. Today, the “continuous” part is changing.

Read article
Image
Category
Category
Day in the Life: What Being a Sonar Support Engineer Looks Like
Blog

Day in the Life: What Being a Sonar Support Engineer Looks Like

What does a Support Engineer do and how could it ever be interesting? In our first "Day in the Life" series, Support Engineer Joe Tingsanchali shares what it's like in this role and what he's learned.

Read more >

Caught in the FortiNet: How Attackers Can Exploit FortiClient to Compromise Organizations (2/3)
Blog

Caught in the FortiNet: How Attackers Can Exploit FortiClient to Compromise Organizations (2/3)

We recently discovered critical vulnerabilities in Fortinet’s endpoint protection solution that enable attackers to fully compromise organizations with minimal user interaction. In this second article, we will cover how attackers can use the compromised endpoint to achieve lateral movement within an organization.

Read article >

Get new blog posts delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

By clicking “Sign up”, you consent to receive email communications from SonarSource containing blog updates, product news, and other relevant content. We will store and process your personal data for this purpose as described in our Privacy Policy. You can withdraw your consent at any time by clicking the unsubscribe link in our emails or by contacting us in accordance with the Privacy Policy.

Caught in the FortiNet: How Attackers Can Exploit FortiClient to Compromise Organizations (1/3)
Blog

Caught in the FortiNet: How Attackers Can Exploit FortiClient to Compromise Organizations (1/3)

We recently discovered critical vulnerabilities in Fortinet’s endpoint protection solution that enable attackers to fully compromise organizations with minimal user interaction. In the first post of the series, we will see how attackers can get the first foothold within an organization.

Read article >

Solving the Engineering Productivity Paradox
Blog

Solving the Engineering Productivity Paradox

There's a huge focus on speeding up code production using tools like GitHub Copilot, Cursor, and others. And the results are honestly stunning, but increasingly, the bottleneck popping up is in the code review phase. Sonar CEO, Tariq Shaukat, shares how AI-generated code absolutely must be reviewed before it's merged into your codebase, and how SonarQube can help.

Read article >

From database burden to cloud efficiency: Sonar's journey to faster processing & lower costs
Blog

From database burden to cloud efficiency: Sonar's journey to faster processing & lower costs

This post details how we cut the file storage cost on SonarQube Cloud by 90 percent while extracting 3.4 TB of data from a relational database to a more suitable storage option.

Read article >

Unsubscribe