Sonar Blog

Home

BLOG

Sonar's latest blog posts

Featured Post

Building Confidence and Trust in AI-Generated Code

To tackle the accountability and ownership challenge accompanying AI-generated code, we are introducing Sonar AI Code Assurance

Read More
https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/0bd6c0bc-c921-485b-8570-8de7e1384983/AI%20Code%20Assurance_square-index%402x.png
https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/5b5ad127-f19d-47a7-afdd-9d303324e829/c_sast_benchmarks_blog_index.webp
Blog post

Sonar's Scoring on the Top 3 C# SAST Benchmarks

Sonar's Scoring on the Top 3 C# SAST Benchmarks

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/eda788d6-c636-4492-b70d-da91a829c6d7/vs_code_security_deep_dive_into_your_favorite_editor_blog_index.webp
Blog post

Visual Studio Code Security: Deep Dive into Your Favorite Editor (1/3)

We took a look at the security of the most popular code editor, Visual Studio Code! This blog post covers common risks and attack surfaces so you know what to expect when using it.

Read article >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/62ac0224-8354-433f-b12d-a1ce9383128f/linux_foundation_chat_blog_index.webp
Blog post

Linux Foundation Chat: Open Source & Clean Code

Linux Foundation Executive Director Jim Zemlin joins Sonar Founder and co-CEO Olivier Gaudin to discuss Clean Code, open-source development, cybersecurity, and more!

Read article >

get the most out of your sonarcloud trial blog feature
Blog post

9 Steps to get the most out of your SonarQube Cloud Trial

To maximize the benefits of your SonarQube Cloud trial, it's essential to approach the trial with a clear plan. Start a 14-day trial for your private projects & repositories completely free to get all the features of the application that you can get as a paid subscription.

Read article >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/a2b0b9e4-30f0-4183-80c0-8dd86152a324/shifting_right_for_secure_platforms_and_devops_blog_index.webp
Blog post

Shifting Right for Secure Platforms and DevOps

Dev tooling is not only helping shift issues left, but the tools also help identify issues that happen later, or to the right, in the development lifecycle. Like detecting secrets before they go into production or platform configuration issues.

Read article >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/f1052fde-539c-4934-8274-323f48ca2757/highlights_hexacon_2023_blog_index.webp
Blog post

Highlights from Hexacon 2023

Last week, members of our AppSec and Vulnerability Research teams attended the Hexacon in Paris to learn, share, and network. Read more about our highlights.

Read article >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/77ae853a-51ae-474b-b9ab-04e7629ada1d/what_is_clean_code_blog_index.webp
Blog post

What is Clean Code?

If you’ve followed us for a while, you most likely noticed that we changed the way we describe what we do. It feels like in the last couple of years, we finally managed to settle on what we had been looking for from the beginning: Clean Code. But what is Clean Code, and what does it encompass?

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/3f0f356e-ad73-4f7b-8c76-ef2489feb469/Hero.webp
Blog post

Security Vulnerabilities in CasaOS

We recently uncovered two critical code vulnerabilities in the personal cloud system CasaOS. Let's see what we can learn from them.

Read article >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/2f9f9f8c-2c32-4b09-9f3a-544fc9dafbaf/java_sast_benchmark_why_you_shouldnt_trust_them_blindly_blog_index.webp
Blog post

Java SAST Benchmarks: why you shouldn't trust them blindly

Java SAST Benchmarks: why you shouldn't trust them blindly

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/7031f784-ed58-4cbb-9054-5a352e680357/interview_with_java_devs_blog_index.webp
Blog post

Interview with Sonar Java Enthusiasts

Interview with Sonar Java Enthusiasts

Read blog post >

https://assets-eu-01.kc-usercontent.com:443/69414945-f022-01b0-62c9-fdd1323f5fe5/7fdaf01f-8f86-4022-981e-a4b578ab24a2/ismg_interview_blog_index.webp
Blog Post

ISMG Interview - Securing Applications, Accelerating DevOps with Clean Code

Sonar founder and co-CEO, Olivier Gaudin, sits down with ISMG's Tom Field at Black Hat USA 2023 to discuss how development can be improved to avoid security issues.

Read blog post >

Go to SonarSource homepage
sonar logo
  • Legal documentation
  • Trust center
  • Follow SonarSource on Twitter
  • Follow SonarSource on Linkedin

© 2008-2024 SonarSource SA. All rights reserved. SONAR, SONARSOURCE, SONARQUBE, and CLEAN AS YOU CODE are trademarks of SonarSource SA.