Work smarter, not harder! 😎SonarQube decorates Quality Gate metrics right in your Azure DevOps pull requests and branches. A green Quality Gate means you can merge clean code with confidence! 👏
sonarqube.org/microsoft-azur
Follow
Click to Follow SonarQube
SonarQube
@SonarQube
SonarQube, crafted by , is the leading on-premise tool for Code Quality & Security. It nicely integrates with your workflow to analyze 30 languages.
sonarqube.orgJoined January 2009
SonarQube’s posts
If your code lives in Enterprise, this feature is your new best friend 👉Analyze your PRs with SonarQube and see the results right in GitHub Checks! Only merge clean code! ✅
With over 3800 static analysis rules across 27 languages, 🤜💥🤛 SonarQube is your teammate for Code Quality and Security!
Check out your favorite language 👉 sonarqube.org/features/multi
Come get it! SonarQube 8.5 is now available! 🍻
☑️ Security rules for C/C++, Java, C#, PHP
☑️ RIPS Tech inspired taint analyzer upgrades
☑️ Java 14 support
☑️ Simpler GH & GL integration
☑️ and more...
SonarQube 8.1 is out, with:
✅ Quality Gate comments for merge requests
✅ QG status in GitLab pipelines
✅ 26 new #Python rules
✅ Taint analysis for #Java dependency injection, factory methods
& way more than Twitter gives us room for! 👇
sonarqube.org/sonarqube-8-1/
Check out all the good vibes we’ve been cultivating with lately! 👉Analyze your Merge Request with SonarQube and see the results right in your Project Overview! Only merge clean code! 😎
Calling 📣 users. Time to add Code Quality and Security to your projects. SonarQube analyzes your Merge Request and decorates the Quality Gate result right in GitLab. A green Quality Gate means merge with confidence! 🏁
sonarqube.org/gitlab-integra
If your code lives in
, this feature is your new best friend 👉 Analyze your PRs with SonarQube and see the results right in GitHub Checks! Merge when you get a green Quality Gate! ✅
sonarqube.org/github-integra
📣 Hey Devs! With SonarQube, you'll catch coding mistakes, learn to fix them and really grow as a developer! 💪
If you ❤️ , you’ll want this 🥁 add Code Quality & Security to your projects like so👇
✅ SonarQube automatically analyzes your Pull Request
✅ SQ spots and helps you resolve any issues
✅ YOU merge that squeaky clean code with confidence 😎
sonarqube.org/azure-devops-i
Digging into old code to fix legacy technical debt brings the risk of functional regression. Instead, focus on New Code to maintain project health. #TechnicalDebt #CleanAsYouCode
By raising -related issues to developers early in the process, our SAST analysis helps you protect your systems, your data and your users.
#Java C# #Python #PHP #javascript
SonarQube analysis finds 🔍 Code Quality & Security issues in your PRs & Branches. Results are decorated right into your projects. When you get a green Quality Gate ✅ merge with confidence!
sonarqube.org/features/enhan
read image description
ALT
If your code lives in Server, this feature is your new best buddy 👉Analyze your Pull Request with SonarQube and see the results right in your Quality Report! Only merge clean code! 👏
SonarQube publishes Quality Gate and code metric results right in GitHub Checks. You always get the Right Info, at the Right Time and in the Right Place 🎯 A green Quality Gate means you’re OK to commit with confidence! ✅ sonarqube.org/github-integra
read image description
ALT
It’s easy to overlay Code Quality & Security in
based projects 👉SonarQube integrates with your workflow to display issues right in your PRs & branches. When you get a green Quality Gate, merge with confidence! sonarqube.org/features/enhan
read image description
ALT
The wait is over: SonarQube 7.9 LTS is here! 🎉
Quick sample of what you get as we wrap-up the 7.x series:
✅Six new languages
✅Developer-led #appsec tools
✅Pull Request decoration
✅Live Portfolios
And so much more: sonarqube.org/sonarqube-7-9- 🚀 #codequality #codesecurity
SonarQube 8.0 is out!
✅ merge request analysis
✅ Easy log in for GitLab users
✅ Ton of new rules
Plus a few more! 👇
sonarqube.org/sonarqube-8-0/
SonarGo 1.0 is finally out. becomes a first class citizen in the Sonar ecosystem sonarsource.com/resources/prod
#opensource #free
SonarQube 7.1 is out with webhooks console, project badges and far more ... see sonarsource.com/resources/prod. Download available from sonarqube.org.
New SonarQube release! 🎉Analyze , #CSS , and chase down vulnerabilities like a pro with SonarQube 7.3 💪sonarqube.org/sonarqube-7-3/
Attention 📣 GitLab users. Add Code Quality and Security to your projects. SonarQube analyzes your Merge Request and decorates the Quality Gate result right in GitLab. A green Quality Gate ✅ means merge with confidence! 😎
sonarqube.org/gitlab-integra
read image description
ALT
Come get SonarQube 7.7!
✅ Quality Gate in Pull Requests
✅ #bitbucket Server decoration
✅ #php Injection Flaw Detection
✅ Find Security Hotspots in #js and #Python
Plus a few more! 👇
sonarqube.org/sonarqube-7-7/
SonarQube 7.0 released: read the news and see it in screenshots!
sonarsource.com/resources/prod
Hooray! SonarQube v7.4 has arrived! With it comes Ruby support, open-source VB.NET and much more!
Get all the details: sonarqube.org/sonarqube-7-4/
Announcing SonarQube 7.5 !
✅Scala Support
✅Apex Support
✅Duplications on branches & PRs
And much more! 👇
sonarqube.org/sonarqube-7-5/
#SonarJava 5.5 is out with 14 additional rules dedicated to the . Kudos to for their support.
sonarsource.com/resources/prod
New release! 🎉 Analyze Go code, detect SQL injections, hook up external analyzers. Your code will be cleaner than ever with SonarQube 7.2. 😎
sonarqube.org/sonarqube-7-2/
SonarQube Scanner for Jenkins 2.6 adds the support of quality gates in pipeline jobs.
sonarsource.com/resources/prod
No one wants late feedback. SonarQube and give #cpp / #cplusplus devs fast, accurate insight throughout the workflow.
blog.sonarsource.com/timely-accurat
🆗 Y'all! SonarQube v7.8 is freshly released! Learn all about it and then download starting here:
🎯sonarqube.org/sonarqube-7-8/
Work smarter, not harder!😎 SonarQube decorates Quality Gate and code quality metrics right in your Azure DevOps pull requests and branches. A green Quality Gate means you can merge clean code with confidence! 👍sonarqube.org/azure-devops-i
SonarQube and have joined forces to Elevate Your Game 🚀 With SonarQube helping you find and fix code quality showstoppers, you’ll feed your GitLab workflow clean, safe code 😄
Check out SonarQube 7.6!
✅UX improvements
✅Increased vulnerability detection
✅New language rules
And a few more! 👇
sonarqube.org/sonarqube-7-6/
✅ Advanced static analysis with hundreds of valuable rules.
✅ Easy to configure and integrate into your environment.
✅ Priced by lines of code, starts at $150 for 100k LOC.
#micdrop #cpp #cplusplus
rb.gy/zbjfpj
SonarQube 6.6 released: read the news and see it in screenshots!
sonarsource.com/resources/prod
With 29 rules added on the new SonarJava 5.9 (12 Security Hotspot, 7 Bug Detection and 10 Code Smell) it's now 527 rules you can use to manage your Java code quality.
sonarsource.com/resources/prod
The SonarQube 8.2 cup runneth over
✅ Security Hotspot review
✅ New-code focused project homepage
✅ Python code security: Kicking asp🐍 & taking names!
SonarQube 6.2 released: read the news and see in it screenshots!
sonarsource.com/resources/prod
blog.sonarsource.com/sonarqube-6-2-
SonarQube 9.9 LTS is LIVE! 🚀
✅ Faster PR analysis
✅ Secure development for Cloud Native apps
✅ Improved Android #TaintAnalysis precision
✅ Enhanced enterprise capabilities
✅ Integrations & UX improvements
✅ LOTS of new rules
Full thread below 👇
#CleanCode
#SonarCSS 1.0 is out and so CSS, Less and SCSS source files can be analyzed with SonarQube. SonarCSS is already friendly with popular by supporting out of the box the import of Stylelint issues.
sonarsource.com/resources/prod
#opensource
So many new features released every two months! 🚀 We’ve built a special page just so you can catch up. #codequality #AppSec
Check-it out! 👉 sonarqube.org/whats-new/
SonarQube 6.4: read the news and see in it screenshots!
sonarsource.com/resources/prod
blog.sonarsource.com/sonarqube-6-4-
SonarQube VSTS/TFS Extension 4.1 allows to trigger analyses of .NET Core projects on hosted Linux agents.
sonarsource.com/resources/prod
📣 SonarQube v8.3 has arrived! Git, Git Hooray! 🎉
✅ New Python rules to catch more bugs & vulnerabilities
✅ Security Hotspot review joins New Code Quality Gate
✅ Spot XSS vulnerabilities in Java & C# frameworks
SonarQube 9.7 is LIVE!
✅ 🚀 Fast / PR, COBOL analysis
✅ security reporting
✅ ASVS reports🔐
✅ #Python rules for tests, CDK, path-sensitive bug detection 🎉
✅ Easier SAML config, PII deletion
Full thread below 🧵⬇️
SonarQube 6.5: read the news and see in it screenshots!
sonarsource.com/resources/prod
blog.sonarsource.com/sonarqube-6.5-
No barriers on SonarQube.com! Sign up & start analyzing your OSS projects today!
about.sonarqube.com/news/2016/09/0
Woo hoo! SonarQube 8.4 out! 🥳
✅ Adds Python rules for 5 of the OWASP Top 10
✅ Detects XXE in C, #cplusplus
✅ Finds insecure deserialization for #Java and #csharp
✅ Supports hot backups
✅ Accepts analysis reports during startup
#SonarJava 5.4 is out with 13 new rules including 11 vulnerability detection rules.
sonarsource.com/resources/prod
#SonarTS 1.4 is available and provides 4 new rules including the detection of commented-out code.
sonarsource.com/resources/prod
We hope everyone is staying safe & enjoying #GithubSatellite! The SonarQube GitHub integration raises the bar 🏋️♀️ for your team & adds Code Quality & Security metrics right into your PRs. With SonarQube, you only commit clean code!💯
bit.ly/35DiiP4
#SonarJava 5.3 is out with a support for 10 (yes now there is a 'var' keyword in Java) and with 9 new rules.
sonarsource.com/resources/prod
SonarQube community is growing continuously to reach 5000 followers on Twitter today! Thank you all!
sonarqube.org
"Breaking the SonarQube Analysis with Jenkins Pipelines", by
SonarQube as a Service free for open-source projects? This is now available at nemo.sonarqube.org, come and ask for your account!
First release of the SonarQube plugin for Intellij IDEA
sonarsource.com/2014/01/15/son
SonarQube 9.6 is here! 🚀
✅ analysis
✅ #JS & rules for
✅ rules
✅ Incremental analysis for PRs
✅ PCI DSS security report
✅ Improved SAML security
✅ Token expiration
Full thread below 🧵⬇️
SonarJava 4.3 Release: cross-procedural dataflow analysis in a file and support for Cognitive Complexity sonarsource.com/resources/prod #Java
Issue found in #git source code by the C rule in charge to detect unconditionally true/false conditions
SonarQube Scanner for Jenkins 2.5 brings support of pipelines with a streamlined, easy-to-use DSL.
sonarsource.com/2016/10/24/son
SonarJS 3.0 Released: Being Lean and Mean in JavaScript. Blog Entry: blog.sonarsource.com/sonarjs-3-0/ and Product News: sonarsource.com/resources/prod
SonarQube Java 4.0 Released: 6 new rules and a new tutorial to write your own custom rules sonarsource.com/2016/07/07/son
SonarQube 5.3 is released! Check out its brand new Project Space and enjoy!
sonarsource.com/2016/01/11/son
SonarC# 6.0 Released: 15 new Rules, end of support of MSBuild 12 and more ...
sonarsource.com/resources/prod #csharp
SonarJava 4.6 able to detect null pointer dereferences across method calls inside the same compilation unit sonarsource.com/resources/prod
#SonarTS 1.7 is out !
8 new rules and the ability to easily import TSLint and ESLint issues with 7.2+
sonarsource.com/resources/prod
Powered by open-source Security Hotspots, and detection of injection flaws in Developer Edition. More to come in 2019!💪 #DevSecOps #appsec
Quote
We've got security on our mind! 
In 2019, Static Application Security (SAST) is a topic you'll hear from us a lot.
Check out the pragmatic solution we're putting into place 
blog.sonarsource.com/pragmatic-appl
In 2019, Static Application Security (SAST) is a topic you'll hear from us a lot.
Check out the pragmatic solution we're putting into place
blog.sonarsource.com/pragmatic-applSonarQube VSTS/TFS Extension 4.0 redesigns the 3 tasks to make build definitions easier and to be able to run them on any operating system
sonarsource.com/resources/prod
9.8 is LIVE!
✅ Fast PRs for Kotlin
✅ JS rules for the CDK
✅ #cpp 20 concepts
✅ SARIF import
✅ Okta/SCIM integration
✅ Better project onboarding
✅ Run the server on 17
✅ And so much more
Full thread below 🧵
Don't change the code because SonarQube says you should. Change it because you've learned to do better.
#Maintainability #Productivity
SonarQube Scanner for MSBuild 4.0 adds support for .Net Core multi-platform projects and support for running the scanner on non-Windows platforms.
sonarsource.com/resources/prod
SonarLint for IntelliJ 2.5 allows developers to analyze at once all changed files since their last commit in VCS
sonarsource.com/resources/prod
SonarQube 5.2 is released! Too many features to sum up in one tweet, so please read groups.google.com/d/msg/sonarqub.
Enjoy!
SonarQube 8.9, the new LTS, is finally here!
🎉 Developer-led Code Security
🎉 Integrations for everyone
🎉 Better operability
🎉 Full Python support
🎉 #CPP performance & rules
🎉 And much more!
Check it out for yourself: bit.ly/2RiiBf3
#SonarGo 1.1 is out. Part of this strategy to be friendly with any external code analyser (jira.sonarsource.com/browse/MMF-1212), it's straightforward to import #GoLint, #GoVet and #GoMetaLinter issues into .
sonarsource.com/resources/prod
#SonarJS 4.1 Released: 2 bug detection rules and 5 to detect code smells. sonarsource.com/resources/prod #js #javascript
After SonarPHP, it's time for SonarPython and SonarJS to support Security Hotspot rules.
sonarsource.com/resources/prod
What's worse than coding without tests? Coding with bad tests
blog.sonarsource.com/whats-worse-th
SonarQube 6.1 released - see it in screenshots!
sonarsource.com/2016/10/25/son
sonarqube.org/sonarqube-6-1-
SonarTSQL 1.0 is out: first version of the code analyzer for Transact-SQL language
sonarsource.com/resources/prod
SonarQube 5.5 Released! Read more at
sonarsource.com/2016/05/19/son and see it in screenshots at sonarqube.org/sonarqube-5-5-
SonarJava 4.14 Released: exceptions thrown/caught along execution paths are well listed to understand issues sonarsource.com/resources/prod
SonarQube VSTS/TFS extension 2.0 Released : with a new SQ Endpoint and support of SQ Scanner CLI sonarsource.com/resources/prod cc
Want to integrate Code Quality & Security into your dev toolchain? SonarQube's 2020 roadmap has you covered!
#SonarHTML 3.0 is available : 4 new rules and almost all source files containing some HTML code are analyzed.
sonarsource.com/resources/prod
