SonarQube for IDE: VS Code v4.12 delivers analyzer updates:

• The Python analyzer brings fixes for multiple false positives
• The Java analyzer offers now support for Java 22
• And the CFamily analyzer now supports WindRiver GNU C++ compiler for arm, plus we added quick fixes for rules S1264 and S1990.

Discover more with our release notes and community post.

SonarQube for IDE: Visual Studio Code v4.11 supports AI CodeFix.

AI CodeFix streamlines issue resolution for developers by generating AI-driven fix suggestions in SonarQube Cloud or SonarQube Server with a single click. In connected mode SonarQube for IDE now allows developers to view and apply these fixes directly in their VS Code IDE, delivering a diff view.

Plus

• 6 new adaptability rules in JS/TS
• 7 new rules related to PyTorch for Python

Discover more with our release notes and community post. Plus read more about AI CodeFix in this blog.

SonarQube for IDE: Visual Studio Code v4.10 brings new rules for developers using C++

• 7 new rules to help you write clean C++23 code
• Significantly faster analysis speed for users of Apple Mac with M-series chips

Discover more with our release notes and community post.

SonarQube for IDE: Visual Studio Code v4.9 brings support for identifying security flaws in Helm files.

SonarQube for IDE can now identify security flaws in Helm files within the Kubernetes analysis. This is designed to help cloud native developers using Helm charts to design and implement secure cloud architecture. 

Plus

• We have improved our secret detection capabilities, now detecting 146 secret patterns of 81 cloud services
• Improved our MISRA C++ 2023 inspired rules

Discover more with our release notes and community announcement.

SonarQube for IDE: Visual Studio Code v4.7 delivers added value for users of SonarQube Cloud. 

With the new Open in IDE button in SonarQube Cloud you can now open any issue you are investigating in SonarQube Cloud directly into VS Code with a single click. SonarQube for IDE will automatically open the correct file and take you to the line of code containing the issue.

We have also simplified the connection authentication between SonarQube for IDE and SonarQube Cloud, with token generation now achieved with a single click!

Plus, we have enabled the Clean as You Code methodology, allowing you to focus only on issues in your new code. This incremental approach empowers developers to take ownership of all new code and tackle overall technical debt in a manageable and sustainable manner.

Discover more with our release notes and community announcement.

SonarQube for IDE: Visual Studio Code 4.6 adds detection for six advanced Java issues previously only available through SonarQube Server or SonarQube Cloud, along with these additions:

• Five Python rules focusing on the machine learning library Scikit-Learn
• Seven new C# rules

Discover more with our release notes and community announcement. 

SonarQube for IDE: Visual Studio Code 4.5 enables enhanced collaboration by introducing sharing Connected Mode setup among contributors as well as new rules.

• Python received 14 new rules (4.16 and 4.17)
• Improved Javascript/Typescript with 4 new accessibility rules
• For Java, we introduced new Java 21 rules and new sustainability rules

Also of note, we are dropping support of NodeJS v16.

Discover more with our release notes and community announcement. 

SonarQube for IDE: Visual Studio Code v4.4 delivers new rules for HTML, JS/TS, Java, and C++

• We’ve added 17 new rules for accessibility in HTML.
• For JS/TS we added a rule that will prevent functions from being nested too deeply.
• Improved C++ with the addition of 2 new rules
• For Python, we added 2 new quick fixes and fixed 13 false positive rules

Plus, we have added support for Java 21 and we added 2 new rules for Java.

Discover more with our release notes and community announcement.

SonarQube for IDE: Visual Studio Code v4.3 enhances the combined power of SonarQube for IDE and SonarQube Server while streamlining the setup process.

Now, a one-click connection setup and project binding option will be shown to a SonarQube for IDE: Visual Studio Code developer utilizing the SonarQube Server “Open in IDE” button to investigate an issue directly in their VS Code IDE. This functionality, which requires SonarQube Server v10.4, assists developers in rapidly examining and resolving issues using SonarQube for IDE directly in their VS Code IDE.

Plus, with their SonarQube for IDE: Visual Studio Code v4.3 connected to SonarQube Server v10.4, developers can now detect custom secrets in their code, directly in their IDE. Using custom rules based on secret patterns defined in SonarQube Server allows developers to spot secrets before they can be leaked into repositories. (Requires SonarQube Server Enterprise or Data Center Edition).

Also, when using connected mode to SonarQube Cloud or SonarQube Server v10.4, it is now possible to mark an issue as “Accepted”. This results in the unresolved issue becoming part of the project’s technical debt.

In addition:

• 8 new Kubernetes rules
• Support for TypeScript 5.3

Discover more with our release notes and community announcement. For more details on how to set up connected mode check here.

SonarQube for IDE: Visual Studio Code v4.2 delivers advanced Python rules for users in connected mode. 

SonarQube for IDE now has access to 9 rules to detect advanced issues in your Python code that may cause your programs to crash. 

Previously only available in SonarQube Server and SonarQube Cloud branch and pull request analysis, you can now benefit from these rules directly in your IDE (requires connected mode), enabling you to detect and resolve these advanced issues early, and before sending a pull request or running unit tests.

Plus:

• In-product changes to highlight the additional team benefits available when using SonarQube for IDE in connected mode with SonarQube Cloud and SonarQube Server
• 17 new JavaScript rules for JSX

For a list of the 9 rules and further details, check out our release notes and community announcement.