The latest SonarQube Server news and updates

• Ready for the AI and agentic SDLC: Integrated with AI-native IDEs like Cursor, Claude Code, Windsurf and delivers deep code insights to agents to verify AI code instantly in your software development workflow.
• Significantly enhanced code security: Protect your software supply chain and detect complex dependency vulnerabilities early with Advanced Security.
• Dependable code quality: Find bugs faster with updated analysis engines that increase accuracy and speed for Java, Python, JavaScript, and TypeScript.
• Expanded compliance standards: Meet strict industry mandates automatically with full MISRA C++:2023 coverage and new reports for common code security standards.
• Broader language coverage: Maintain consistent code health across your entire tech stack with new support for new languages and the latest major language versions.
• Deeper DevOps integrations: Streamline communication by bringing code health insights directly into tools like JFrog, Slack, and Jira.
• Optimized platform operations: Smoother version updates and leverage modern ways to operate the server.

Read the full 2026.1 LTA announcement --> 

Deeper workflow integration and faster feedback

• Accelerated developer flow with new Jira Cloud and Slack integrations
• Quick feedback with up to 40% faster analysis for JavaScript/TypeScript
• 58 new quick fixes in the IDE for JavaScript/TypeScript

Expanded language coverage

• Swift (5.9 to 6.2) with SAST and secrets detection, plus Python 3.14
• Write efficient PyTorch, Apex and Ruby code including Ruby on Rails
• New code quality for Go and Shell/Bash

Inherent security and compliance

• New compliance: MISRA C++:2023, OWASP Top 10 2025,  STIG V6R3
• Enhanced supply chain security: Import CycloneDX and SPDX SBOMs
• Improved Advanced SAST: optimized top libraries in C#, Java, Python

SonarQube Server 2025.6 release announcement -->

Boost security & supply chain defense

• Fortify your CI/CD pipelines by detecting vulnerabilities in GitHub Actions
• Gain superior accuracy and speed for JavaScript/TypeScript security
• Secure .NET desktop apps with WPF framework vulnerability detection

Reduce developer toil and improve productivity

• Update the server without breaking your CI/CD pipeline
• Accelerate Python automated reviews with a massive performance boost
• Optimize Python serverless functions in AWS Lambda
• Maintain high quality web apps by finding more issues in Angular code

Enterprise-ready compliance & governance

• Achieve compliance with expanded support for MISRA C++:2023
• Roll out Software Composition Analysis (SCA) at your own pace
• Control your messages in global in-product announcements

SonarQube Server 2025.5 release announcement -->

• Expanded core security: SAST for Go, taint analysis for VB.NET, more robust JS/TS taint analysis, best-in-class secrets detection including in YAML, JSON, and Kotlin
• Achieve compliance: more MISRA C++2023 rules now available in your IDE, more comprehensive security and regulatory reports
• Elevate your code: more maintainable and performant Python/Java, faster C/C++ analysis, complex Java bug detection, full support Java 23/24, & Dart 3.8
• Advanced Security: enhanced SCA with continuous vulnerability detection without reanalysis, customizable risk severity, machine-readable reports, PHP dependency support, and dependency risks caught in the IDE

SonarQube Server 2025.4 LTA Announcement -->

• Security advancements: GA of Advanced Security (SCA & advanced SAST), SAST for Kotlin, expanded secrets detection
• AI progress: End of Early Access for AI CodeFix including AI fix suggestions directly within the IDE
• Expanded compliance: MISRA C++:2023, CWE Top 25 2024, OWASP Mobile Top 10
• Enhanced language coverage: new Rust, PySpark and more Java protection

SonarQube Server 2025 Release 3 Announcement -->

• Use your own Azure OpenAI service for AI CodeFix
• Reduce architectural drift in projects
• Support for PySpark and Jupyter Notebooks in PyCharm for AI/ML code
• Improved visibility of .NET test results within your project
• Avoid common pitfalls when using the Spring framework
• New SAST for Golang 
• Updated support for the latest Dart and Kotlin versions
• Run the server in IPv6-only infrastructures

SonarQube Server 2025 Release 2 Announcement -->