Looking for older editions of SonarQube Server? Check out our historical downloads here.
SonarQube Server 2025 Release 2 | March 2025
Community Build
Free and open source for productivity & code quality
Release 25.4.0.105899
Static code analysis for 20 languages and frameworks: Java, C#, JavaScript, TypeScript, CloudFormation, Terraform, Docker, Kubernetes/Helm Charts, Kotlin, Ruby, Go, Scala, Flex, Python, PHP, HTML, CSS, XML, VB.NET, and Azure Resource Manager/Bicep- SonarQube runs in a FIPS environment
- Detect bugs & basic vulnerabilities in code
- Review security hotspots
- Track and resolve technical debt
- Monitor code quality metrics and history of activity
- Basic secrets detection
- Combine results from third-party tools with SARIF reports
- CI/CD integration with GitHub, GitLab, Bitbucket and Azure DevOps
- Extensible, with 50+ community plugins
Developer Edition
Essential capabilities for small teams & businesses
Community Build, plus:
- Additional languages: C, C++, Obj-C, Dart/Flutter, Swift, ABAP, T-SQL, PL/SQL, and Ansible
- AI Code Assurance
- AI CodeFix (early access)
- AutoConfig for C and C++ projects
- Detection of injection vulnerabilities (SAST with Taint Analysis) for Java, C#, JavaScript, TypeScript, Python and PHP
- Advanced secrets detection
- Detection of advanced bugs causing runtime errors in Python, Java, C#, and VB.NET
- Analysis of feature branches, maintenance branches, and pull requests
- Display quality gate status in DevOps pull requests for GitHub, GitLab, Bitbucket, and Azure DevOps
- Autoprovision users and groups from GitHub and GitLab
- Permissions autosync with GitHub
- Display security vulnerabilities in GitHub and GitLab
- Collect multiple projects together as an Application for a single view
- Standard commercial support available
Enterprise Edition
Designed to meet Enterprise-level requirements
Developer Edition, plus:
- Additional languages: Apex, COBOL, JCL, PL/I, RPG and VB6
- Unlimited integrations with DevOps platforms
- Security engine custom configuration for more powerful taint analysis
- Custom rules to detect private secret patterns
- Aggregate projects and applications into a portfolio
- Project, application, and executive portfolio reports
- Security reports for common security standards
- Regulatory and audit reports to record state & quality of release
- Consolidate projects into a central instance
- Parallel processing of analysis reports
- Pull request decoration and guided setup for monorepos
- Additional licenses for testing and staging environments
- Automatic user and group provisioning through SCIM with Okta and Azure AD
- Standard commercial support
- 24/7 white glove premium support available
Data Center Edition
For high availability, scalability, & performance
Enterprise edition, plus:
- Autoscaling in a Kubernetes cluster
- Component redundancy
- Data resiliency
- Horizontal scalability
- High performance under extreme load
- Standard commercial support included
- 24/7 white glove premium support available
Active | January 2025
SonarQube 2025.1 LTA
Current Long Term Active version. Look forward to high-impact AI capabilities, more secure code at every angle, supercharged developer productivity, and even better enterprise and operational capabilities. As always, there's something for everyone with the LTA!
Not sure whether you need the LTA or the latest version? See our decision guide.