Code security
The Cyber Resilience Act: Why AI velocity demands automated verification
Ensure EU Cyber Resilience Act compliance without slowing down AI-assisted development. Use SonarQube for automated AI code verification, SAST & SBOM generation. Secure your SDLC today.
Read article >
Secure the AI SDLC with the new SonarQube CLI
We are excited to announce the open beta of SonarQube CLI. It transforms this workflow by moving security from the end of the pipeline directly into the developer's agentic workflow.
Read article >
How to optimize SonarQube for reviewing AI-generated code
Without guardrails, AI-generated code introduces technical debt, security vulnerabilities, and reliability issues that are hard to track.
Read article >
Code generation tradeoffs: A comparison of Claude Opus 4.5 and 4.6
We recently ran a small experiment to see how Claude Opus 4.5 and the newer Opus 4.6 handled a specific backend task. The goal wasn't to see which one was necessarily better, but to understand the differences in their coding styles.
Read article >
Thoughts on Claude Code Security
This blog post aims to explain what Claude Code Security is (recognizing few details are currently available), and how enterprises and developers should think about its role in their cybersecurity toolchain.
Read article >
Security that works for you: Exploring the new enhancements in SonarQube
Our latest enhancements in SonarQube establish a non-negotiable code verification layer designed to bridge this trust gap, unifying the analysis of first-party, AI-generated, and third-party code.
Read article >