Hello Sonar Community!
Coming to you live from the WeAreDevelopers World Congress in Berlin! As always, it’s amazing to come to these conferences where everyone comes up to our booth to tell us how much they love Sonar! And of course, like you all, they give us plenty of feedback. 
With our brilliant Events manager, Emma!
We’re grateful every time you give us feedback, so like every week we want to spend some time acknowledging everyone who prompted interesting discussions and gave us feedback to help us continuously improve.
SonarQube:
-
The SonarScanner for NPM isn’t exiting with a non-zero exit code when
sonar.qualitygate.wait=true, and the Quality Gate for analysis is failing. Thanks for letting us know @maks-rafalko! SCANNPM-39 -
We also found out that the Scanner for NPM isn’t mapping
sonar.loginto the new (non-deprecated)sonar.token. Thanks @gian1200! SCANNPM-40 -
@zero77995 is trying to follow the tutorial to develop custom rules for Java, but some of the examples are using dependencies that don’t work with SonarQube v9.9 LTS. We will update the examples! Thanks a lot.
SonarLint:
-
We have the possibility to better handle SCM-related exceptions, specifically when inside a Git worktree. Thanks @lg2de! SLCORE-900
-
Although we still don’t support their setup, a report by @sandilya1599 helped us realize that we made a copy-paste error for one specific compiler setting. This will still help others, so thanks for the report! SLVS-1263
SonarCloud:
-
An
UnsupportedOperationExceptionis being thrown when importing PHPStan and Psalm reports, as reported by @Ian_Ragsdale. We have to investigate further. SONARPHP-1503. -
After @dswan36 reported some confusion, we will document how to update SonarCloud when changing your GitHub account name. Thanks!
-
A new URL needs to be added to our domain whitelist. Thanks @christophernruud. We’ve already updated the documentation.
Rule & Language Improvements:
-
When analyzing Bicep files, we should support parsing objects with multiple properties. Thanks for the reproducer @supervos! SONARIAC-1549
-
Thanks @brunodani for pointing us to a bug in our C and C++ analysis. CPP-5415 is already fixed and live on SonarCloud.
-
java:S1905doesn’t handle method overloads appropriately, leading to false-positives. We want to improve the situation with SONARJAVA-5087. Thanks for the discussion @MisterPi!
Once more, we extend our thanks to everyone mentioned here - and those we may have missed - for their efforts in strengthening this community and enhancing our Sonar products.
Please leave your own recognitions below – whether for another community member or a SonarSourcer who assisted you this week. If there’s someone you think should be acknowledged in next week’s roundup, don’t hesitate to let us know.
@Colin, @ganncamp, and @leith.darawsheh