Sonar Blog

Home

BLOG

Sonar's latest blog posts

Featured Post

Building Confidence and Trust in AI-Generated Code

To tackle the accountability and ownership challenge accompanying AI-generated code, we are introducing Sonar AI Code Assurance

Read More
https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/0bd6c0bc-c921-485b-8570-8de7e1384983/AI%20Code%20Assurance_square-index%402x.png
Common mistake in Typescript #5
Blog post

Common TypeScript Issues Nº 4: Don't create and drop objects immediately

We crunched the data from SonarQube for IDE to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog post >

SonarQube LTS 9.9
Blog post

Announcing SonarQube Server 9.9 LTS!

Big year, big announcement – the most anticipated SonarQube Server 9.9 Long-Term-Support release is here! Check out this post for all details.

Read Blog post >

Get new blogs delivered directly to your inbox!

Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.

By submitting this form, you agree to the storing and processing of your personal data as described in the Privacy Policy and Cookie Policy. You can withdraw your consent by unsubscribing at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Common mistake in Typescript #5
Blog post

Common TypeScript Issues Nº 5: Optional property declarations

We crunched the data from SonarQube for IDE to discover the top 5 most common TypeScript issues. In this 5 part series, we outline each issue and how to avoid it.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/6de6bf70-0216-4289-adc6-488e80c6d1e1/OpenEMR_blog-index-image.webp
Blog post

OpenEMR - Remote Code Execution in your Healthcare System

We recently discovered three vulnerabilities that allow arbitrary code execution on OpenEMR. Let’s see what we can learn from them and discuss their patches!

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/205493e1-fa6f-4f9f-971f-c7d1fe1a237e/Vulnerability%20Research%20Highlights_blog%20header_1200x627%402x.png
Blog post

Vulnerability Research Highlights 2022

Our research team looks back at a great year and summarizes the highlights of their vulnerability research in 2022.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/d8dbc097-91af-469f-88ec-34a7ed9d24dc/Level%20Up%20Your%20Teams%20Skills_1200x627.jpeg
Blog post

Level up your team's skills as they code

Clear context and specific education for why an issue occurs and how to fix it should be by the developers’ side without leaving the development workflow. Sonar has your answer.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/5e4604bf-b204-4b0a-a21b-01b850094d69/Lesser%20Spotted%20React%20Mistakes_Part%203_1200x628%402x%20%281%29Updated%20Version.png
Blog post

Lesser spotted React mistakes: What are we even rendering?

This series is dedicated to the small, but common pitfalls and errors you can encounter when writing React code. Whether an experienced JavaScript | TypeScript developer or just starting out, the results can be surprising.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/2089bc3e-b584-4e9e-be19-0249145f32f1/Cacti_Unauthenticated%20Remote%20Execution_1200x628%402x.png
Blog post

Cacti: Unauthenticated Remote Code Execution

Learn how we discovered a critical vulnerability in Cacti with the help of SonarQube Cloud.

Read Blog post >

SonarQube 9.8
Blog post

SonarQube Server 9.8 is here!

The latest version of SonarQube Server from Sonar has arrived. Check out what’s new in SonarQube Server 9.8 in this quick video and download it now.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/51cbb0a7-98e8-453b-bab1-b07c2e14f356/Develop%20Your%20Cloud%20Native%20Apps%20the%20Sustainable%20Way_Hero.jpg
Blog post

Develop Your Cloud Native Apps the Sustainable Way

Application development using cloud native technologies is a game changer for developers. With a robust, maintainable codebase, they are positioned to do their best work. Learn how Sonar has the clean code game plan to perfectly complement your cloud native initiatives.

Read Blog post >

https://assets-eu-01.kc-usercontent.com:443/7630306f-9a2f-018d-2726-3ef76ef712f4/966f2a78-5fc4-4c0c-9e09-20b4d2d88528/Sonar%20Pwn2Own%20Toronto%202022_Hero%402x.png.jpg
Blog post

Sonar @ Pwn2Own Toronto 2022

Members of the Sonar Vulnerability Research team remotely participated in Pwn2Own Toronto 2022. This competition is quite special for us: we usually focus on code vulnerabilities in open-source web application projects.

Read Blog post >