Harness and Traceable have entered into a definitive merger agreement, creating an advanced AI-native DevSecOps platform.
Sonar Introduces SonarQube Server LTA Release
January 23, 2025
Sonar announced the release of its latest Long-Term Active (LTA) version, SonarQube Server 2025 Release 1 (2025.1).
This release introduces a range of advanced features and enhancements designed to integrate the use of AI in the Software Development Lifecycle (SDLC), enhance code security, and improve overall software quality.
New as of the 2025.1 release, Sonar has adopted a 12-month release cadence for SonarQube Server in a new versioning scheme. Sonar’s accelerated delivery cycle will help to streamline the LTA process, bring new capabilities to market faster, and provide more predictable updates.
Key highlights of SonarQube Server 2025.1 LTA include:
- Accelerating safe AI adoption in the SDLC: AI Code Assurance and AI CodeFix help developers and organizations benefit from AI while maintaining code quality and security. Available in the new LTA release, SonarQube Server can automatically detect AI-generated code in GitHub projects that use GitHub Copilot, which users can then run through the AI Code Assurance workflow.
- Enhanced security measures: The latest version includes expanded SAST coverage for more third-party dependencies, ensuring all code is secure and reliable. Advanced secrets detection prevents secrets from entering repositories, enhancing security and compliance. New reports for CWE Top 25 and support for STIG and CASA ensure compliance with key security frameworks.
- Faster analysis, better integration, improved developer productivity: The new LTA offers a more intuitive and efficient user interface, faster scans, and quicker first analysis. Developers can maintain high standards and reduce technical debt more easily without disruption to their workflow. DevOps engineers can now streamline operations through auto-provisioning and auto-sync with GitHub and GitLab, and SCIM integration for automated user and group management.
- New language support, improved code quality taxonomy: Sonar’s new taxonomy in the Multi-Quality Rule (MQR) mode enables organizations to adopt the best practices in keeping their code and applications of the highest quality. This LTA also comes with new and enhanced language support across a variety of programming languages and frameworks such as Dart/Flutter and Helm.
"SonarQube Server 2025.1 LTA represents our ongoing dedication to providing developers with the tools they need to produce high-quality, secure code in a shifting development environment," said Fabrice Bellingard, VP of Product at Sonar. "This release not only enhances the security and reliability of software, but also improves the developer experience, making it easier for teams to leverage new technologies, like generative AI, in harmony with their workflows."
SonarQube Server 2025 Release 1 LTA is available now.
Industry News
February 10, 2025
Endor Labs announced a partnership with GitHub that makes it easier than ever for application security teams and developers to accurately identify and remediate the most serious security vulnerabilities—all without leaving GitHub.
February 07, 2025
Are you using OpenTelemetry? Are you planning to use it? Click here to take the OpenTelemetry survey.
February 06, 2025
GitHub announced a wave of new features and enhancements to GitHub Copilot to streamline coding tasks based on an organization’s specific ways of working.
February 06, 2025
Mirantis launched k0rdent, an open-source Distributed Container Management Environment (DCME) that provides a single control point for cloud native applications – on-premises, on public clouds, at the edge – on any infrastructure, anywhere.
February 06, 2025
Hitachi Vantara announced a new co-engineered solution with Cisco designed for Red Hat OpenShift, a hybrid cloud application platform powered by Kubernetes.
February 06, 2025
Onapsis announced Onapsis Control Central for SAP application security testing and custom code security supporting RISE with SAP transformations.
February 05, 2025
Progress announced its recognition in the 2025 Gartner Magic Quadrant for Digital Experience Platforms.
February 05, 2025
Copado announced comprehensive DevOps support for Salesforce Data Cloud deployments, enabling organizations to streamline the development and deployment of Agentforce solutions.
February 05, 2025
Appfire announced its acquisition of Flow, an enterprise software product for Software Engineering Intelligence (SEI), from Pluralsight.
February 04, 2025
Check Point® Software Technologies Ltd. announced new Infinity Platform capabilities to accelerate zero trust, strengthen threat prevention, reduce complexity, and simplify security operations.
February 04, 2025
WaveMaker announced the release of WaveMaker AutoCode, an AI-powered plugin for the Figma universe that produces pixel-perfect front-end components with lightning fast accuracy.
February 04, 2025
DoiT announced the acquisition of PerfectScale, an automated Kubernetes (K8s) optimization and governance platform.
February 03, 2025
Parasoft earned a top spot as a Leader and Fast Mover in the latest GigaOm Radar Report on API Functional Automated Testing.
February 03, 2025
Linux Foundation Europe and OpenSSF announced a global joint-initiative to help prepare maintainers, manufacturers, and open source stewards for the implementation of the EU Cyber Resilience Act (CRA) and future cybersecurity legislation targeting jurisdictions around the world.
