Sonar Blog

Quality

Sonar's latest blog posts

Featured Post

Building Confidence and Trust in AI-Generated Code

To tackle the accountability and ownership challenge accompanying AI-generated code, we are introducing Sonar AI Code Assurance

Read More
https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/0bd6c0bc-c921-485b-8570-8de7e1384983/AI%20Code%20Assurance_square-index%402x.png
https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/93f72ed0-874e-4a5c-8a95-c2297ff7fdee/DEVIES%20Award_blog-index.png
Blog post

SonarQube Server Wins DEVIES Award for Code Testing & Quality Management

SonarQube Server has been honored with a 2025 DEVIES Award, recognizing its commitment to delivering a top-tier code quality and security solution for developers and organizations worldwide.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/e6e1a82d-5588-401f-b461-0d051ec59889/auto_detection_github_blog_index.webp
Blog post

Auto-Detect and Review AI-Generated Code from GitHub Copilot

Sonar can help you keep your AI-generated code from GitHub Copilot up to snuff - here’s how!

Read article >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/6f376b0b-418b-4edc-8373-0a2522f896e0/soc_2_type_ii_blog_index.webp
Blog post

Sonar Earns SOC 2 Type II Compliance

Sonar achieves SOC 2 Type II compliance, reflecting its dedication to protecting customer data and ensuring the integrity of its operations now and in the future.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/9c49ee0a-74bc-4192-a478-8068b630acd9/ai%20revolution_blog-index.webp
Blog post

The AI Revolution in Software Development: A New Era for Developers

What does the future of software development look like? Sonar's Harry Wang, VP of Growth & New Ventures, shares his expert insights.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/84899cbf-2fa7-4bc3-910f-7f41359c8614/9_more_reasons_to_upgrade_blog_index.webp
Blog post

9 More Reasons to Upgrade to SonarQube Server 2025.1 LTA

A new Long-Term Active (LTA) version of SonarQube Server represents a significant amount of work. Since the last LTA release (version 9.9 in February 2023), thousands of development tickets have been merged into SonarQube Server and its underlying components. This includes new features, improvements to existing functionalities, and bug fixes.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/1f0546dd-c24e-4670-aa74-87d2bde01afa/Enhancing%20Code%20Reviews_blog-index.png
Blog post

Enhancing Team Code Reviews with AI-Generated Code

Team Code reviews are essential to the development process. They ensure that the code meets the required standards before being merged into the main branch. Tools like SonarQube are key to making the reviews productive and valuable.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/48205ef7-d320-4bfd-8189-347899151b94/The%20Tainted%20Voyage_landscape-index.png
Blog post

The Tainted Voyage: Uncovering Voyager's Vulnerabilities

SonarQube Cloud detected an arbitrary file upload in Voyager, tracked as CVE-2024-55417. When combined with other vulnerabilities our research team found, attackers can execute arbitrary code on the server if an authenticated user clicks on a link.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/0fbfcf02-dc88-4363-af1f-266bd828aa34/LTA_Blog%20Index.webp
Blog post

SonarQube Server 2025.1 LTA Release Announcement

The new SonarQube Server LTA release is as value-packed as ever. Look forward to high-impact AI capabilities, more secure code at every angle, supercharged developer productivity, and even better enterprise and operational capabilities. As always, there's something for everyone with the LTA!

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/df2679b4-3cb6-43e6-913a-2b19a3727b71/sq_ide_2024_highlights_landscape_index.webp
Blog post

SonarQube for IDE: Our journey this year, and sneak peek into 2025

Reviewing the enhancements delivered by the SonarQube for IDE team for developers during 2024. Focusing on streamlining the UX for teams, harnessing the power of SonarQube Server and Cloud through connected mode into your IDE, and making it even easier to focus on new code.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/a1f38bdc-15bd-4852-aa89-218ca4a8502d/vulnerability_research_highlights_2024_blog_featured.webp
Blog post

Vulnerability Research Highlights 2024

Our Vulnerability Research team looks back at a great year and summarizes the highlights of 2024.

Read article >

https://assets-eu-01.kc-usercontent.com:443/6312d6a8-faef-0175-9d92-e94376ab3538/d292ee07-6cc3-46d7-99eb-33726ed07243/2025%20Leadership%20Predictions_Blog-landscape.png
Blog post

Software and AI in 2025 — Sonar Perspectives on What’s to Come in the New Year

Several Sonar leaders share their perspectives on what to expect in 2025 with AI and software development.

Read article >