Thought leadership and in-depth content covering important facets of the developer industry.
Using SonarLint with SonarQube or SonarCloud helps you follow the best practices laid out in the NIST SSDF to meet code security requirements.
Learn More >
Developer velocity refers to speed and efficiency with which developers can create, modify, and deploy high-quality code. Learn how can Generative AI coding assistants increase development velocity.
Learn More >
Artificial Intelligence (AI) Code Generators have emerged as a transformative force, reshaping the way we approach coding tasks while increasing efficiency & innovation but what are the pitfalls for tech executives and developers?
Learn More >
DevOps underperformance challenges stem from the ongoing conflict between code quality and faster delivery timeframes. Discover how Static Code Analysis helps solve the underlying performance issues in today's highly automated DevOps cycle.
Learn More >
In the ever-changing world of software development and IT operations, DevOps aims to improve collaboration, quality, and automation across the entire software development lifecycle. Proper planning and evaluation are essential for ensuring the success of DevOps projects of all sizes.
Learn More >
Integrating SonarCloud and GitHub is straightforward. Follow along in an interactive demo to see how simple it is to link these two vital software development services.
Learn More >
It is effortless to integrate Azure DevOps with SonarCloud. Discover how easy it is to connect these two essential software development services by following along in an interactive demo.
Learn More >
Integrating SonarCloud and GitLab is straightforward. Follow along in an interactive demo to see how easy it is to integrate these two essential DevOps tools.
Learn More >
In an outsourced setting, where collaboration might involve multiple teams across different locations, maintaining a high standard of code quality becomes even more critical to ensure a seamless integration of efforts.
Learn More >
Tackling scope creep with an outsourced development team requires effective proactive management strategies and contributions from all stakeholders.
Learn More >
Code standardization is pivotal in mitigating risks within software development processes and is a proactive measure to identify and address potential issues early in the development cycle.
Learn More >
Distributed software development presents both opportunities and challenges. While it offers flexibility and access to a global talent pool, it introduces communication, coordination, and cultural issues that can impede productivity and project success. Prioritizing code quality is essential in overcoming these challenges.
Learn More >
Technical debt accumulates interest over time, meaning the longer it remains unaddressed, the more time and resources it will require to resolve. This makes identifying and measuring technical debt not just a technical necessity but a strategic imperative for businesses invested in their software's health, maintenance, and evolution.
Learn More >
The philosophy behind Secure by Design is simple yet profound: make systems inherently secure by design, thereby reducing the attack surface and making it significantly harder for attackers to exploit vulnerabilities. This approach not only enhances security but also improves the overall quality and reliability of the software.
Learn More >
The shift-left approach marks a significant evolution in software security practices. It advocates for the early integration of security measures to mitigate risks efficiently and cost-effectively. The following article delves into the essence of the shift-left philosophy and how Sonar's tools and methodologies can be instrumental in redefining organizations' security posture.
Learn More >
Large language model (LLM) code generation uses generative AI, NLP, and ML algorithms to write software code based on natural language descriptions. Integrated into IDEs, these models can quickly and accurately generate, complete, refactor, and optimize code.
Learn More >
As developers increasingly rely on AI tools like GitHub Copilot for code generation, ensuring the quality of AI-generated code becomes crucial. This can be solved by implementing best practices such as code reviews and automated testing.
Learn More >
Quality gates are predefined criteria that ensure only high-quality code progresses through the development pipeline. Integrating quality gates into your CI/CD pipelines ensures these checks are performed automatically and continuously to improve software reliability and security.
Learn More >
Clean Code is code that’s easily understandable, portable, and capable to change through structure and consistency but remains maintainable, reliable, and secure for performance demands.
Clean Code is well-documented coding standards that are clear and concise for increasing developer collaboration and communication.
A clean codebase simplifies the principles and processes to introduce changes to your code allowing business goals and objectives to be prioritized. Ensuring code readability improves team collaboration, communication, and code review processes across your enterprise.
Clean Code as you write maintainable, readable quality code. Sonar’s tool kit allows you to continually review and make incremental clear quality improvements as you edit or write code. Deliver high-quality, efficient code standards that benefit the entire team or organization.
Clean Code is secure through early detection and feedback of security vulnerabilities and hotspots during code review.
Clean Code creates and sustains reliability. When your software is reliable, anywhere and anytime, it creates trust among your teams and customers.
Clean Code makes maintenance easy. A codebase that is maintainable enables an optimized development workflow for more scalable software.
