What’s new

Hello Kotlin developers, we've upgraded the Sonar Kotlin analyzer to support v1.8.

See all the details in the Community post.

In our never-ending Clean Code quest, we've added 7 new rules dedicated to finding security issues in your Dockerfiles.

See all the details in the Community post.

Today, we released automatic analysis for .NET projects using GitHub. With just a couple clicks, you’ll get immediate, actionable feedback to ensure you’re following Sonar Clean Code best practices. This feature is perfect if you’re just getting started with Sonar or for a quick analysis on a new project to see where things stand. For the most complete experience we still recommend integrating Sonar with your CI-based workflow. We provide guidance on how to switch directly in the user interface.

See all the details in the Community post.

Devs can now enjoy faster CFamily PR and Branch analysis on SonarQube Cloud following the deployment of the server-side cache mechanism announced a couple of days ago.

Now, by default, there is a cache on the server side that helps to speed up all your analysis. For it to work, you need to have configured your branch (Branch Analysis Setup | SonarQube Cloud Docs) and your pull request analysis ( Pull Request Analysis | SonarQube Cloud Docs) on SonarQube Cloud.

See all the details in the Community post.

We are excited to announce that you can now scan your Dockerfiles with SonarQube Cloud!

See all the details in the Community post.

Today we've enabled faster pull (merge) request analysis for all languages*.

Before, when a branch or a pull request was scanned, the analysis included all the files in your repository to ensure accuracy and only raise true positives. Now, on pull requests, only the content in the PR is scanned using an analysis methodology that minimizes the false positive rate.

On average, you can expect your pull request analysis to finish at least 50% faster however, it can be more depending on the size and language(s) in your pull requests. 

See all the details on the Community post.

* this will come soon for C++ and .NET.