Sonar's latest blog posts

Featured Post

State of Code Developer Survey report: The current reality of AI coding

Sonar analyzes over 750 billion lines of code every day. This gives us a unique, high-level view of the state of code quality and security across the globe.

Read article
https://assets-eu-01.kc-usercontent.com:443/ef593040-b591-0198-9506-ed88b30bc023/7ab133c1-b3f7-4652-82a1-3376b953d6bd/soc_survey_report_featured_blog_article_2x.webp
Filter by Category...
Image for Announcing SonarQube Server 2026.1 LTA
Blog post

Announcing SonarQube Server 2026.1 LTA

This latest LTA is our most significant leap forward to date. It is designed specifically for the AI-native developer workflow to help your software development teams reach their full potential by closing the code verification gap, ensuring every line of code is secure, healthy and production-ready.

Read article >

Image for Shadow AI is already writing your code
Blog post

Shadow AI is already writing your code

In the third chapter of the report, we examine the tools developers are choosing to get the job done. The data reveals a fragmented landscape where standard corporate toolkits are competing with a massive wave of "bring your own AI" adoption.

Read article >

Get new blog posts delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

I do not wish to receive promotional emails about upcoming SonarQube updates, new releases, news and events.

By clicking “Sign up”, you consent to receive email communications from SonarSource containing blog updates, product news, and other relevant content. We will store and process your personal data for this purpose as described in our Privacy Policy. You can withdraw your consent at any time by clicking the unsubscribe link in our emails or by contacting us in accordance with the Privacy Policy.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Image for How to choose your LLM without ruining your Java code
Blog post

How to choose your LLM without ruining your Java code

When evaluating a new AI model, ensuring the code compiles and executes is only the baseline. Experienced developers know that functionality is just the first step; the true standard for production-ready software is code that is reliable, maintainable, and secure.

Read article >

Image for Stop secrets before the commit: Join the beta for SonarQube's new secrets CLI
Blog post

Stop secrets before the commit: Join the beta for SonarQube's new secrets CLI

This blog post explains why secrets detection is critical and how Sonar’s integrated approach reduces noise. It also explains how the new SonarQube Secrets CLI helps teams catch secrets locally.

Read article >

Image for The AI trust gap: Why code verification matters
Blog post

The AI trust gap: Why code verification matters

In this second chapter of our State of Code Developer Survey report, we dig deeper into the developer psyche to answer a critical question: Do developers actually trust the code that AI systems are generating?

Read article >

Image for Modernizing finance: Insights from a platform engineering leader
Blog post

Modernizing finance: Insights from a platform engineering leader

We recently sat down with a Platform Engineering leader at a major financial services institution to discuss the realities of modern software development in their highly regulated, distributed environment.

Read article >

Image for State of Code Developer Survey report: The current reality of AI coding
Blog post

State of Code Developer Survey report: The current reality of AI coding

What we found challenges the common narrative. While AI adoption is massive, it hasn’t led to a simple, linear boost in productivity. Instead, it has shifted the bottleneck from writing code to verifying it.

Read article >

Image for Vibe, then verify: SonarQube 2025 year in review
Blog post

Vibe, then verify: SonarQube 2025 year in review

As we look back at the year we just closed, one thing is clear: 2025 was the year of acceleration. Development teams moved faster than ever.

Read article >