WHITE PAPERS

Read and download our in-depth articles on clean code

technology spotlight

DevOps Is Insufficient Without Good Code Hygiene

In this paper, IDC highlights the importance of code quality and how modern tools can ensure code hygiene across the software development lifecycle without impacting velocity.

Read more
IDC White Paper
https://assets-eu-01.kc-usercontent.com:443/f42196a6-70a1-01d0-99f1-43134f12a58b/ef3feaf9-6f5b-42eb-a1ce-a92a3e492e7d/owasp-llm-100.jpg
LLM Code Generation Guide

How the OWASP LLM Top 10 Applies to Code Generation

With the rapid growth in generative AI (GenAI) and large language models (LLMs), new security risks have emerged. Developers of LLM-based apps are responsible for addressing those security risks. However, the newness of the LLM and GenAI space makes understanding and mitigating these risks more challenging than well-established domains like web application security.

Read White paper >

https://assets-eu-01.kc-usercontent.com:443/f42196a6-70a1-01d0-99f1-43134f12a58b/f688ecb0-ba1a-4b1e-9819-1a5f9d9a1b26/ai_guide_landscape_index.webp
AI Executive Guide

AI code generators guide for executives & c-suite

Software development is transforming from conventional manual coding to a new era driven by generative AI technology.

Read White paper >

https://assets-eu-01.kc-usercontent.com:443/f42196a6-70a1-01d0-99f1-43134f12a58b/b3f20648-f9f4-4db6-90e0-dfe3df43bc6e/costly_landscape_index.webp
Technology Spotlight

The costly consequences of bad code for the enterprise

Addressing bad code requires a holistic approach, integrating procedural measures and a cultural shift towards clean coding practices. Organizations that prioritize these principles enhance software resilience, mitigate risks, and fortify their reputation and financial stability.

Read White Paper >

Lesser spotted react mistakes and how to avoid them guide
Technology Spotlight

Lesser Spotted React Mistakes and How to Avoid Them

There are small, but common pitfalls and errors encountered when writing React code. Learn more about how to avoid them with code examples designed to be cut, pasted, and tried by the reader, whether an experienced JavaScript | TypeScript developer or just starting out.

Read White Paper >

https://assets-eu-01.kc-usercontent.com:443/f42196a6-70a1-01d0-99f1-43134f12a58b/a55d207b-e68f-4f27-b2b3-5cb2c34cf34f/omdia_on_the_radar_blog_index.webp
Technology Spotlight

Omdia: On the Radar

In this paper, Omdia provides research notes to outline two of our recent and significant innovations that address the quality and security issues that inevitably arise as application code is being developed - “Deeper” SAST and automatic analysis of C and C++ projects.

Read White Paper >

Cognitive Complexity guide by Ann Campbell
Cognitive Complexity

A Sonar exclusive metric that measures code readability

Cognitive Complexity breaks from the practice of using mathematical models to assess software maintainability. The result is a metric that developers feel is a more fair representation of complexity.

Read White paper >

https://assets-eu-01.kc-usercontent.com:443/f42196a6-70a1-01d0-99f1-43134f12a58b/7368357d-1038-4887-9ce5-676bf491a7be/omdia-paper_1200x628_white-papers_index.webp
Technology Spotlight

Proactive Application Security

Backed by primary research data, Omdia provides their viewpoint on how organizations can achieve the best security posture through developer education and empowerment.

Read White Paper >

Continuous Inspection White Paper Cover and internal pages
Continuous Inspection

Unite internal code quality with SDLC

Continuous Inspection is essential to the Clean Code methodology. You can’t truly ‘shift left’ without a continuous inspection process tightly integrated into your development life cycle.

Read White paper >

  • Legal documentation
  • Trust center
  • Follow SonarSource on Twitter
  • Follow SonarSource on Linkedin

© 2008-2024 SonarSource SA. All rights reserved. SONAR, SONARSOURCE, SONARQUBE, and CLEAN AS YOU CODE are trademarks of SonarSource SA.