CloudBees announced the integration of CloudBees’ continuous delivery and release orchestration solution, CloudBees CD/RO, with Argo Rollouts.
SonarSource launched SonarQube 9.9 Long-Term Support (LTS).
The new release empowers organizations to achieve the Clean Code state quickly, securely, and at scale. With accelerated pull request analysis, support for building and deploying secure cloud-native applications, sophisticated enterprise-grade capabilities, and many innovations related to the detection engine and contextual education, SonarQube 9.9 LTS supercharges organizations to deliver new business value and keep their software a long-term asset.
Sonar’s latest 9.9 LTS release introduces key capabilities to enable enterprises to build better software in a sustained manner.
“Our mission is to equip organizations with the solution and methodology to achieve a state of Clean Code, making all code fit for development and production. When companies embrace Clean Code practices, they can derive more from their software, minimize risks, and ensure that their software continues to stay valuable,” said Olivier Gaudin, Founder and CEO of SonarSource. “SonarQube 9.9 LTS was designed to not only provide immediate value to our users for their current development but to steadily drive organizations toward a state of Clean Code in a way that’s predictable, reliable, and sustainable.”
Key release innovations:
- Pull Request Analyzed in Minutes: SonarQube 9.9 LTS provides a significant speed boost for Pull Request (PR) analysis. PRs are now analyzed more than twice as fast, while still providing the same high-precision results. With the implementation of incremental analysis and server-side caching, analysis is more efficient. As developers write and commit code, Pull Request analysis is an important step in merging new code changes to the main branch. Faster analysis means a more efficient software development lifecycle, as developers spend less time waiting and more time delivering business critical features.
- Secure Cloud Native Applications: As applications move to the cloud, organizations must ensure the security of not only the source code, but also their configuration files and deployments. SonarQube 9.9 LTS delivers in-depth analysis capabilities to detect ‘secrets’ in code, bad practices, and vulnerabilities so that developers can build and deploy secure cloud native applications. The release adds support for major cloud providers – AWS, Google Cloud, Microsoft Azure, and their underlying technologies – serverless and SAM frameworks, AWS Cloud Development Kit, Infrastructure-as-Code tools (Terraform and Cloudformation), and containerization tools with Kubernetes and Docker. With these additions, organizations can be sure that their cloud native apps are as secure as their traditional on-prem apps.
- Enterprise-grade features for Coding at Scale: SonarQube 9.9 LTS introduces stronger access management, administration, governance, and reporting capabilities, enabling organizations to better manage the security and administration of their SonarQube instance and their portfolio of code assets. Chief among these new features are advanced security and compliance reporting, project and portfolio reporting, secure token handling, SCIM integration for user management, and more. Customers using the Data Center Edition can now deploy SonarQube clusters with Kubernetes. Together, these reporting, authentication and operational improvements make it easier to use, secure, and manage SonarQube instances than ever before.
Continued innovation in the detection engine allows for improved precision, speed, accuracy, and coverage of all issue types. Users can find and fix more issues in their code. And this LTS release brings in rich educational content to make taint analysis rules easy to understand and contextual to the users’ code and framework – continuing the advancement of the company’s education initiative.
Sonar is a strong proponent of deploying compliant quality gates that will progressively drive organizations to reach a state of Clean Code. This LTS release adds enhancements to the quality gate user experience to help everyone implement and practice Clean as You Code. Quality gates that are not compliant with this methodology can be easily identified and updated.
SonarQube 9.9 LTS is now available for everyone.
Industry News
amazee.io, a Mirantis company, announced that its fully-managed application delivery platform is available in AWS Marketplace.
env0 secured an additional $18.1 million of funding to conclude its Series A investment round with a total of $35.1 million.
Planview announced a new strategic collaboration with UiPath. The integration is designed to fuse the UiPath Business Automation Platform with the Planview Value Stream Management (VSM) solution Planview® Tasktop Hub.
Noname Security announced major enhancements to its API security platform to help organizations protect their API ecosystem, secure their applications, and increase cyber resilience.
Mirantis announced the latest version of Mirantis Container Cloud -- MCC 2.23 -- that simplifies operations with the ability to monitor applications performance with a new Grafana dashboard and to make updates to Kubernetes clusters with a one-click “upgrade” button from a web interface.
Pegasystems announced updates to Pega Cloud supported by an enhanced Global Operations Center to deliver a more scalable, reliable, and secure foundation for its suite of AI-powered decisioning and workflow automation solutions.
D2iQ announced the launch of DKP Gov, a new container-management solution optimized for deployment within the government sector.
StackHawk announced the availability of StackHawk Pro and StackHawk Enterprise for trial and purchase through the Amazon Web Services (AWS) Marketplace.
Octopus Deploy announced the results KinderSystems has seen working with Octopus. Through the use of Octopus, KinderSystems automates its software deployment processes to meet the complex needs of its customers and reduce the time to deploy software.
Elastic Path announced Integrations Hub, a library of instant-on, no-code integrations that are fully managed and hosted by Elastic Path.
Yugabyte announced key updates to YugabyteDB Managed, including the launch of the YugabyteDB Managed Command Line Interface (CLI).
Ambassador Labs released Telepresence for Docker, designed to make it easy for developer teams to build, test and deliver apps at scale across Kubernetes.
Fermyon Technologies introduced Spin 1.0, a major new release of the serverless functions framework based on WebAssembly.
Torc announced the acquisition of coding performance measurement application Codealike to empower software developers with even more data that increases skills, job opportunities and enterprise value.