Sonar's latest blog posts
State of Code Developer Survey report: The current reality of AI coding
Sonar analyzes over 750 billion lines of code every day. This gives us a unique, high-level view of the state of code quality and security across the globe.
Announcing SonarQube Server 2026.1 LTA
This latest LTA is our most significant leap forward to date. It is designed specifically for the AI-native developer workflow to help your software development teams reach their full potential by closing the code verification gap, ensuring every line of code is secure, healthy and production-ready.
Read article >
Shadow AI is already writing your code
In the third chapter of the report, we examine the tools developers are choosing to get the job done. The data reveals a fragmented landscape where standard corporate toolkits are competing with a massive wave of "bring your own AI" adoption.
Read article >
Get new blog posts delivered directly to your inbox!
Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.
How to choose your LLM without ruining your Java code
When evaluating a new AI model, ensuring the code compiles and executes is only the baseline. Experienced developers know that functionality is just the first step; the true standard for production-ready software is code that is reliable, maintainable, and secure.
Read article >
Stop secrets before the commit: Join the beta for SonarQube's new secrets CLI
This blog post explains why secrets detection is critical and how Sonar’s integrated approach reduces noise. It also explains how the new SonarQube Secrets CLI helps teams catch secrets locally.
Read article >
The AI trust gap: Why code verification matters
In this second chapter of our State of Code Developer Survey report, we dig deeper into the developer psyche to answer a critical question: Do developers actually trust the code that AI systems are generating?
Read article >