what is long-term support?
The long-term support version of SonarQube offers organizational stability and fixes of blocker bugs for its ~18mo life span.
what is an LTS?
LTS means Long Term Support. Sonar has committed to releasing point versions of the LTS for Blocker bugs and vulnerabilities. So if you're on the current LTS, you can get fixes without being impacted by any changes to functionality or user experience. Staying on the LTS however does mean that you won't benefit when new features are introduced.
What's the current LTS version?
The current LTS is 9.9 (check the Downloads page for the latest patch version), initially released February 2023.
How long is an LTS cycle?
The LTS cycle is approximately 18 months.
Why would I want the LTS rather than the latest version?
Large organizations tend to choose the LTS in order to keep change control manageable; following the LTS means upgrading approximately every 18 months, rather than every two months as each new version of SonarQube is released. LTS users also like it because the longer cycle gives them the chance to build in-house expertise on the version they use in production, and to benefit long-term from a stable user experience.
Why would I want the latest version rather than the LTS?
Most people probably want the latest version. After all, it's in the latest that you get all the newest features and any bug fixes too. SonarSource releases a new version of SonarQube approximately every two months, and each release is packed with exciting new features and advances on what came before. Once you've adopted the latest version, you should be prepared to upgrade regularly to benefit from the latest fixes and features and good support in the community.
What if I want the latest security rules, or fixes to false positives /false negatives in existing rules?
If you need to keep up with the latest changes to analysis - coverage of new rules, new frameworks, new language versions - you'll want to be on the latest version. Fixes for severe analysis/rule problems are backported, but routine changes are not.
Are the LTS and latest versions both supported?
Both the LTS and the latest version are supported in the community and officially by the SonarSource Services team. Fixes for bugs and vulnerabilities are released in new versions of SonarQube. Only for blocker bugs and vulnerabilities in SonarQube itself and in the underlying analysis are fixes back-ported to the LTS. Versions between the LTS and the latest are not supported.
I need a feature that was added after the LTS. Will it be backported?
One of the benefits of adopting the LTS is the guarantee of stability in features and user experience. Features and improvements are not backported. Only fixes for blocker bugs and vulnerabilities in SonarQube itself and in the language analysis are backported to the LTS.
What if I'm on a version older than the current LTS?
You should upgrade to at least the current LTS at your earliest convenience. After all, the current LTS offers:
- Tight integration with GitHub, Bitbucket, GitLab and Azure DevOps, on-prem and in-cloud
- Officially supported Docker images for all editions, plus Docker images in the U.S. DoD's Iron Bank
- Huge strides in Python and C++ support
- Additional security enforcements (in SonarQube itself and its plugin Marketplace), contributing to the security of the overall environment in which you deploy SonarQube
- Great new features in every edition including security rules and reports. See the LTS announcement for details.