Governance
Modernizing finance: Insights from a platform engineering leader
We recently sat down with a Platform Engineering leader at a major financial services institution to discuss the realities of modern software development in their highly regulated, distributed environment.
Read article >
Introducing audit logs in SonarQube Cloud: Enhancing compliance and security
Introducing the initial release of audit logs for SonarQube Cloud, a new feature designed to provide enhanced governance and support for our Enterprise plan customers. This initial, API-driven release focuses on core authentication and administrative IAM events to help you meet compliance requirements.
Read article >
SonarQube and Port: Bringing code quality and security metrics into your software catalog
By integrating SonarQube's best-in-class code quality and security analysis directly into Port's software catalog, we’re providing a single pane of glass for engineering organizations to build better, more secure software, faster.
Read article >
Sonar's Take: Software Development Under America's AI Action Plan
The White House's "America's AI Action Plan" aims to accelerate innovation, but for software development, speed must not compromise security. Nathan Jones, VP of Public Sector at Sonar, explores the recently published plan, risks of AI-generated code, and explains how static analysis tools help ensure AI adoption is both fast and secure.
Read article >
Cyber Resilience Act: Navigating speed and security with AI-coding
Modern software development is caught between two powerful forces. On one hand, generative artificial intelligence (AI) coding tools are supercharging development velocity at the expense of rigorous security review.
Read article >
How Sonar Helps Achieve a Strong SOC 2 Type II Report
An SOC 2 Type II report is a critical attestation for service organizations, demonstrating their commitment to securely managing customer data over time. Learn how SonarQube can streamline your SOC 2 compliance journey!
Read article >