Sonar's latest blog posts

Featured Post

State of Code Developer Survey report: The current reality of AI coding

Sonar analyzes over 750 billion lines of code every day. This gives us a unique, high-level view of the state of code quality and security across the globe.

Read article
https://assets-eu-01.kc-usercontent.com:443/ef593040-b591-0198-9506-ed88b30bc023/7ab133c1-b3f7-4652-82a1-3376b953d6bd/soc_survey_report_featured_blog_article_2x.webp
Image for Interview with Sonar Python Developers Part 2
Blog post

Interview with Sonar Python Developers Part 2

Latest Python developments. Interview with Python developers from Sonar.

Read Blog >

Image for Odoo: Get your Content Type right, or else!
Blog post

Odoo: Get your Content Type right, or else!

What do we need content types for anyway? Let's look into how an incorrect content type led to a real-world vulnerability in Odoo, CVE-2023-1434.

Read article >

Get new blog posts delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By clicking “Sign up”, you consent to receive email communications from SonarSource containing blog updates, product news, and other relevant content. We will store and process your personal data for this purpose as described in our Privacy Policy. You can withdraw your consent at any time by clicking the unsubscribe link in our emails or by contacting us in accordance with the Privacy Policy.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for Interview with Sonar Python Developers Part 1
Blog post

Interview with Sonar Python Developers Part 1

Why should I learn Python language? When should I use Python? Is tooling around Python development mature?

Read Blog >

Image of Sonar Logo and Compiler Explorer integration
Blog post

Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser

Sonar ❤️ Compiler Explorer: Write clean C++ code inside your browser

Read Blog >

Image for Paying maintainers: the HOWTO
Blog post

Paying maintainers: the HOWTO

It is no surprise that lots of well-intentioned people have failed to figure out how to effectively pay maintainers.

Read article >

Image for Pretalx Vulnerabilities: How to get accepted at every conference
Blog post

Pretalx Vulnerabilities: How to get accepted at every conference

We recently discovered two vulnerabilities in pretalx and found a generic technique to gain code execution from a file write.

Read article >

Image for Another 9 reasons to upgrade to SonarQube Server 9.9 LTS
Blog post

Another 9 reasons to upgrade to SonarQube Server 9.9 LTS

SonarQube Server 9.9 LTS is here! We're back with another 9 reasons you should prioritise upgrading as soon as possible.

Read article >

Image for How bad code destroys developer velocity
Blog post

How bad code destroys developer velocity

When bad code gets overlooked, it can create lasting problems and ultimately impact developer productivity and velocity.

Read Blog >

Image for Announcing SonarQube Server 10.0
Blog Post

Announcing SonarQube Server 10.0

Learn what features - like faster first analysis and better user management with SCIM - are available to you and your teams in SonarQube Server 10.0!

Read article >

Image for It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS
Blog post

It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS

Our researchers discovered a vulnerability in LibreNMS, which could be exploited by attackers to gain RCE by sending a single SNMP trap.

Read article >

Image for Sonar is the Code Quality solution for your DevOps workflow
Blog post

Sonar is the Code Quality solution for your DevOps workflow

Code Quality from Sonar aims to streamline your DevOps workflow so that your organization can yield the best possible results from your software.

Read Blog >