Sonar's latest blog posts
Announcing SonarSweep: Improving training data quality for coding LLMs
Recent research from Anthropic has shown that even a small amount of malicious or poor quality training data can have a massively negative impact on a model’s performance, exposing users to significant security and quality issues.
Sonar launches integration program to unify code governance across the SDLC
We are thrilled to announce the launch of the Sonar Integration Program. This strategic initiative formalizes and expands our partner ecosystem, unifying SonarQube's integrations with leading technology partners under a single, comprehensive program.
Read article >
Announcing SonarSweep: Improving training data quality for coding LLMs
The promise of AI-assisted coding is immense, but it rests on a simple, fundamental reality: the quality and security of the code generated by a Large Language Model (LLM) depends on the quality of the data that it was trained on.
Read article >
Get new blogs delivered directly to your inbox!
Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.
Sonar honored in Fast Company's Next Big Things in Tech — Bringing trust to AI-driven development
We’re excited to announce that Sonar has been named a Fast Company Next Big Things in Tech honoree for Applied AI! This prestigious award honors technology breakthroughs poised to define the future of their industries.
Read article >
Securing GitHub Actions With SonarQube: Real-World Examples
This blog introduces SonarQube's enhanced analysis capabilities for GitHub Actions, designed to proactively identify and remediate security vulnerabilities like Command Injection and Code Execution that pose a significant supply chain risk.
Read article >
SonarQube and Port: Bringing code quality and security metrics into your software catalog
By integrating SonarQube's best-in-class code quality and security analysis directly into Port's software catalog, we’re providing a single pane of glass for engineering organizations to build better, more secure software, faster.
Read article >
SonarQube Named a Leader and Fast Mover in GigaOm's Application Security Testing Radar
Following an in-depth evaluation of 27 vendors, GigaOm positioned Sonar in the top-tier ‘Maturity/Platform Play’ quadrant, recognizing our significant impact on the market.
Read article >
Announcing SonarQube MCP Server: Bringing code quality into your AI workflow
AI is transforming software development and turbocharging many aspects of a developer's daily work. But it’s also bringing new challenges to your teams: how do you maintain code quality and security standards as the volume of AI-generated code doubles, triples, or increases even more exponentially?
Read article >
Introducing native Jira Cloud integration for SonarQube Cloud
We are excited to announce the release of our new, native Jira Cloud integration for SonarQube Cloud, available for Team and Enterprise plans. This integration streamlines the development workflow by allowing users to create Jira issues from SonarQube findings, complete with all the necessary context.
Read article >
How has AI changed your workflow? Share your story in Sonar's State of Code developer survey
Artificial intelligence is rapidly changing how we develop software. But beyond the hype, how are developers like you actually using these new tools in your daily workflows?
Read article >
Python Machine Learning: Care & Quality for Developers
This post will discuss machine learning (ML) in Python, examining the unique considerations for application developers as AI's role in everyday software continues to expand.
Read article >
Introducing Scoped Organization Tokens for SonarQube Cloud
Secure your CI/CD pipelines with SonarQube Cloud's Scoped Organization Tokens (SOT). A resilient, user-decoupled way to manage authentication and prevent broken builds.
Read article >