What's New
the latest news and updates from SonarQube's product team
Discover the latest features released in SonarQube
February 07, 2023
SonarQube 9.9 - Scale, Security, Speed: Best LTS Ever
- Faster Pull Request Analysis - PR analysis gets a significant speed boost for all programming languages
- Secure CloudNative Applications - In-depth analysis to build and deploy secure CNApps with your preferred cloud provider and technology
- Enterprise-grade features for your scaling organization - Authentication, reporting, and operational improvements for secure and easy instance management
- Android taint analysis; better precision & accuracy - Lots of new rules including rules for Kotlin, Java to deliver safe, compliant Android apps. Plus improved precision, speed, and coverage of the taint analysis engine
- UX improvements in-app & IDE - Better issues clarity & focus; significant accessibility upgrades; real-time synch of Quality Profiles in the IDE & easier Connected Mode setup for a streamlined Clean Code delivery
December 19, 2022
SonarQube 9.8 - Fast Kotlin PRs; SARIF import; C++20 concepts; JS + AWS CDK; SCIM deprovisioning
- PRs more accurate & faster for Kotlin
- JavaScript rules to master security in the AWS CDK
- New rules help you master C++20 concepts
- SARIF report import
- Ops: Okta/SCIM integration & more
October 17, 2022
SonarQube 9.7 - Fast JavaScript, TypeScript PR analysis, GitHub Security & OWASP ASVS reporting
- Faster analysis for JS/TS PRs, COBOL
- Vulnerabilities reported in GitHub Security & OWASP ASVS reports
- Easier SAML config, PII deletion, user messages
- Rules more helpful, understandable than ever
August 15, 2022
SonarQube 9.6 - K8S analysis, Azure Function support, Incremental Java PR analysis & more
- Azure Function rules & deconstruction support
- Incremental Java PR analysis
- React: New rules, improved accuracy for JS/TS
- PCI DSS security report
June 07, 2022
SonarQube 9.5 - Faster first analysis, updated Issues UI, project release reporting
- Issue UI improves focus, clarity
- Advanced bug rules prevent Java runtime crashes in Developer and Enterprise editions
- Python rules for CDK S3 buckets and Java secret detection
- Detailed project release reporting for Enterprise and Data Center editions
April 04, 2022
SonarQube 9.4 - Terraform for GCP, faster Java analysis, OWASP Top 10 2021 support, and more
- 18 new GCP Terraform rules and better Security Hotspot review
- Java analysis 30% faster on average
- OWASP Top 10 2021 Support
- Java Taint Analysis goes deeper for Developer, Enterprise and Data Center editions
- SonarLint gets even better
January 31, 2022
SonarQube 9.3 - Terraform for Azure Cloud, BIDI detection, Android taint analysis and more
- Terraform for Azure Cloud & DB injection in Python AWS Lambdas
- Bidirectional character detection sees what you can't
- Taint analysis for Android in Developer, Enterprise and Data Center editions
- Analyze your SalesForce Lightning Components
- New rules help you master C++20 coroutines
November 22, 2021
SonarQube 9.2 - CloudFormation & Terraform, Python Lambda taint analysis; Android rules and more
- New cloud-native support: find security problems in Terraform, CloudFormation IaC files
- Taint analysis for Python AWS Lambdas in Developer, Enterprise and Data Center editions
- Secure your Android development across Kotlin, Java and XML languages
- Advanced regex rules for Kotlin and Python
- Metric badges for private projects
September 20, 2021
SonarQube 9.1 - Product PDFs, JS AWS Lambda taint analysis, Kotlin coroutine rules...
- Project PDF reports delivered daily to your inbox - plus CWE 2021 report & full issue export
- Taint analysis for JavaScript AWS Lambdas in Developer, Enterprise and Data Center editions
- Kotlin rules for coroutines, data storage and privacy
- Advanced regex rules for JS/TS, PHP
- Beta: manage your cluster with K8S in Data Center edition
July 05, 2021
SonarQube 9.0 - Official Bitbucket Pipes & GitHub Actions, Kotlin security for mobile devs, C++20
- Full support for Bitbucket Cloud, plus official Pipes & GitHub Actions
- Kotlin security for mobile development
- Taint analysis precision honed across languages in Developer, Enterprise and Data Center editions
- C++20 parsing, rules and Compilation Database support for Developer, Enterprise and Data Center editions
May 04, 2021
SonarQube 8.9 LTS - Developer-led Code Security, integrations for everyone & So. Much. More!
- SAST added for JavaScript, TypeScript, Python, C & C++. With more rules, better detection and improved workflows for all!
- In-cloud? On-prem? Your platform is covered!
- Operating SonarQube is easier than ever with Official Docker support plus image hardening, hot DB backups, and faster recovery.
- Python gets full support with in-depth analysis and high performance with minimal configuration
- C++ brings the rules and performance developers want in Developer, Enterprise and Data Center editions