Sonar's latest blog posts
The Coding Personalities of Leading LLMs
Make smarter AI adoption decisions with Sonar's latest report in The State of Code series. Explore the habits, blind spots, and archetypes of the top five LLMs to uncover the critical risks each brings to your codebase.
Diving into the 3 traits that define your LLM’s coding personality
Our recent “State of code” report moved beyond traditional benchmarks to understand the full mosaic of an LLM's capabilities. The research revealed that while leading models share common strengths and flaws, each has a unique style.
Read article >
The Coding Personalities of Leading LLMs—GPT-5 Update
GPT-5’s arrival on the scene adds an important new dimension to the landscape, so we have updated our analysis to include it.
Read article >
Get new blogs delivered directly to your inbox!
Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.
Introducing native Jira Cloud integration for SonarQube Cloud
We are excited to announce the beta release of our new, native Jira Cloud integration for SonarQube Cloud, available for Team and Enterprise plans. This integration streamlines the development workflow by allowing users to create Jira issues from SonarQube findings, complete with all the necessary context.
Read article >
The Coding Personalities of Leading LLMs
Make smarter AI adoption decisions with Sonar's latest report in The State of Code series. Explore the habits, blind spots, and archetypes of the top five LLMs to uncover the critical risks each brings to your codebase.
Read article >
Securing Go Applications With SonarQube: Real-World Examples
Take a deep dive into some vulnerabilities in Go applications and understand how SonarQube Cloud helps developers detect and mitigate them during the development cycle.
Read article >
SonarQube IDE: Announcing support for AI-Native IDEs
As development velocity accelerates, so does the potential for introducing subtle bugs and new security vulnerabilities.
Read article >
Java24: Go deeper on parsing Java class files and broader with Stream gatherers
Version 24 version introduces several new language features which collectively simplify code, and provide powerful tools for bytecode manipulation and advanced stream processing.
Read article >
Sonar's Take: Software Development Under America's AI Action Plan
The White House's "America's AI Action Plan" aims to accelerate innovation, but for software development, speed must not compromise security. Nathan Jones, VP of Public Sector at Sonar, explores the recently published plan, risks of AI-generated code, and explains how static analysis tools help ensure AI adoption is both fast and secure.
Read article >
AI CodeFix is now generally available
AI CodeFix seamlessly integrates AI-driven code fix suggestions into your development workflow with no additional cost for eligible SonarQube subscriptions.
Read article >
SonarQube Server 2025 Release 4.1: Faster analysis, stronger security, better coverage
Our new 2025.4.1 release empowers developers with significant advancements to enhance code quality, security, and efficiency across multiple languages for your projects and while using open-source code.
Read article >
Cyber Resilience Act: Geschwindigkeit und Sicherheit mit KI-Codierung steuern
Die moderne Softwareentwicklung steht im Spannungsfeld zweier mächtiger Kräfte. Einerseits beschleunigen generative Codierungstools auf Basis künstlicher Intelligenz (KI) die Entwicklungsgeschwindigkeit auf Kosten strenger Sicherheitsüberprüfungen.
Artikel lesen >