Sonar's latest blog posts
Building Confidence and Trust in AI-Generated Code
To tackle the accountability and ownership challenge accompanying AI-generated code, we are introducing Sonar AI Code Assurance


ES2023 introduces new array copying methods to JavaScript
There are new array methods in JavaScript and they are here to make our programs more predictable and maintainable.
Read blog post >

CNCF Silver membership
Sonar becomes Silver member of the Cloud native computing foundation
Read Blog post >
Get new blogs delivered directly to your inbox!
Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

Why SonarQube Server 9.9 LTS is a must-have for Python developers
Learn about the changes in SonarQube Server 9.9 LTS that help Python developers write Clean Code.
Read article >

Weird Python: 5 Unexpected Behaviors in the Python Interpreter
Five ways in which Python's interpreter behaves in ways that you wouldn't expect.
Read Blog post >

Reflections from DevNexus, the largest Java conference in the U.S.A.
Reflections from DevNexus, the largest Java conference in the U.S.A.
Read Blog post >

Interview with Sonar Python Developers Part 2
Latest Python developments. Interview with Python developers from Sonar.
Read Blog post >

Odoo: Get your Content Type right, or else!
What do we need content types for anyway? Let's look into how an incorrect content type led to a real-world vulnerability in Odoo, CVE-2023-1434.
Read article >

Interview with Sonar Python Developers Part 1
Why should I learn Python language? When should I use Python? Is tooling around Python development mature?
Read Blog post >

Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser
Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser
Read Blog post >

Paying maintainers: the HOWTO
It is no surprise that lots of well-intentioned people have failed to figure out how to effectively pay maintainers.
Read article >

Pretalx Vulnerabilities: How to get accepted at every conference
We recently discovered two vulnerabilities in pretalx and found a generic technique to gain code execution from a file write.
Read article >