SonarQube 7.3

Analyze Kotlin, CSS, and chase down vulnerabilities like a pro

Kotlin and CSS join the party

With more than 50 new rules, cognitive complexity and duplication detection,
all Kotlin and CSS developers can now keep their code clean with SonarQube.
Come join the fun, it’s free and open-source!
Kotlin
Already using other Kotlin or CSS linters? You can easily Import issues from Detekt,
AndroidLint and stylelint.io into SonarQube and track them together with bugs
and vulnerabilities found by SonarQube’s built-in Kotlin and CSS analyzers.

More rules for Java and PHP developers

SonarQube’s analyzers are continuously being improved, and this new version brings solid improvements for Java and PHP. Available in all SonarQube Editions!
 

Java

14 new rules dedicated to users of the Spring Frameworks, adding to 400+ static analysis rules.

See rules Java

PHP

17 new rules tracking vulnerabilities, adding to 100+ static analysis rules.
 

See rules PHP

Chase down security vulnerabilities like a pro

SonarQube 7.3 introduces Security Hotspots, to help keep your codebase secure.
A hotspot is a chance to review security-sensitive code and ensure vulnerable code doesn’t slip by.
Dedicated Security Reports give you a ‘big picture’ view with the ability to drill down into specific issues.

Security Hotspots

Security Hotspots
Security Hotspots are currently available for Java and PHP code.
 

Security Reports

Security Reports

And there’s more!

We are constantly listening to user feedback and continuously improving the experience.

SAML 2.0 support for SSO

Delegate authentication to your SAML 2.0 identity provider, allowing your user to smoothly log in via SSO.

Learn more

Track issues from external linters

While you discover SonarQube’s built-in analyzers, you can import issues from other linters. Now supporting reports from PMD, SpotBugs, Checkstyle, FindSecBugs, ESLint.

Learn more

Time to enjoy these great new features!

Download SonarQube 7.3