Sonar's latest blog posts
Welcoming Gitar to Sonar
Sonar has acquired Gitar, adding a new, critical layer to its multilayer, zero-trust code verification platform. Gitar is an AI code review solution, and it doesn’t just flag issues; it also generates the fix, validates it against the CI, and commits to the branch.
Category
AI is writing more of your Terraform
Learn how AI generated Terraform introduces security risks and how SonarQube helps detect misconfigurations before they reach production.
Read article >
What NIST should know when updating the SSDF for AI
Learn how AI changes secure software development and why NIST should update the SSDF for verification, review, and supply chain risk.
Read article >
Get new blog posts delivered directly to your inbox!
Stay up-to-date with the latest Sonar content. Subscribe now to receive the latest blog articles.
Your AI bill is a code quality problem
Learn how code quality affects AI agent efficiency, token consumption, and long term software costs across modern engineering teams.
Read article >
Develop with AI: Balancing speed and confidence without becoming a bottleneck
Discover why code quality, security, and consistency matter more than prompts when AI writes most of your software and reviews become the bottleneck.
Read article >
SonarQube CLI brings multilayered verification to agentic development
Learn how SonarQube CLI helps AI coding agents verify code, detect secrets, scan dependencies, and resolve issues from the terminal.
Read article >
