Sonar's latest blog posts

Featured Post

Announcing SonarSweep: Improving training data quality for coding LLMs

Recent research from Anthropic has shown that even a small amount of malicious or poor quality training data can have a massively negative impact on a model’s performance, exposing users to significant security and quality issues.

Read More
https://assets-eu-01.kc-usercontent.com:443/55017e37-262d-017b-afd6-daa9468cbc30/c4c32669-0e01-4074-926a-1b257686a90c/sonarsweep_blog_or_press_featured_with_mark__2x.webp
Image for Maintainer burnout is real. Almost 60% of maintainers have quit or considered quitting maintaining one of their projects
Blog post

Maintainer burnout is real. Almost 60% of maintainers have quit or considered quitting maintaining one of their projects

Against a backdrop of increasing demands on open source maintainers from industry and government, we wanted to use this year’s survey to see how they are hanging in there.

Read article >

Image for Reflections from OffensiveCon 2023
Blog post

Reflections from OffensiveCon 2023

Our Vulnerability Researchers are just returning from their trip to Berlin where they attended OffensiveCon 2023! Here's what they loved about the event.

Read blog post >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for 8 ways to build your continuous vulnerability management strategy
Blog post

8 ways to build your continuous vulnerability management strategy

These days, most software organizations have a vulnerability remediation strategy in place. It’s often a fully reactive approach

Read article >

Image for Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes
Blog post

Sonar and HashiCorp Partner to Deliver Clean Terraform Code & Good Vibes

Learn about the Sonar - HashiCorp partnership and the SonarQube Cloud Terraform Cloud integration.

Read Blog >

Image for SonarQube for IDE supports Go analysis!
Blog post

SonarQube for IDE supports Go analysis!

SonarQube for IDE supports Go analysis!

Read Blog >

Image for Pimcore: One click, two security vulnerabilities
Blog post

Pimcore: One click, two security vulnerabilities

We discovered two vulnerabilities in Pimcore that could be chained together in one GET request to achieve RCE.

Read article >

Image for Is Clean Code the solution to Jupyter notebook code quality?
Blog post

Is Clean Code the solution to Jupyter notebook code quality?

Is Clean Code the solution to Jupyter notebook code quality?

Read Blog >

Image for ES2023 introduces new array copying methods to JavaScript
Blog post

ES2023 introduces new array copying methods to JavaScript

There are new array methods in JavaScript and they are here to make our programs more predictable and maintainable.

Read blog post >

Image for CNCF Silver membership
Blog post

CNCF Silver membership

Sonar becomes Silver member of the Cloud native computing foundation

Read Blog >

Image for Why SonarQube Server 9.9 LTS is a must-have for Python developers
Blog post

Why SonarQube Server 9.9 LTS is a must-have for Python developers

Learn about the changes in SonarQube Server 9.9 LTS that help Python developers write Clean Code.

Read article >

Image for Weird Python: 5 Unexpected Behaviors in the Python Interpreter
Blog post

Weird Python: 5 Unexpected Behaviors in the Python Interpreter

Five ways in which Python's interpreter behaves in ways that you wouldn't expect.

Read Blog >