what’s new

PHP developers can detect when a hard-coded string is passed to a function designed to receive passwords or tokens. 

See all the details in the Community post.

We're pleased to announce the SonarCloud integration with Terraform Cloud. With this functionality, HashiCorp Terraform Cloud users can fully practice the Clean as You Code methodology in their TFC pipelines. 

Get all the details along with instructions on how to set up the integration in the Community post.

We're pleased to announce the SonarCloud integration with Atlassian Compass. Featuring the Sonar scorecard, it's easy to tell if your component is built with clean, quality code. The Sonar scorecard is based on the Sonar Quality Gate, which is a clear Go/No-Go visual indicator if your component is ready for production or if there are coding issues to address before release. 

Get all the details along with instructions on how to enable the Sonar scorecard in the Community post.

Monorepo support has arrived for your GitLab projects!

See all the details in the Community post.

Hello Kotlin developers, we've upgraded the Sonar Kotlin analyzer to support v1.8.

See all the details in the Community post.

In our never-ending Clean Code quest, we've added 7 new rules dedicated to finding security issues in your Dockerfiles.

See all the details in the Community post.