SonarQube 10.0 released

SonarQube Server / Community Build Releases
1

Hi all,

SonarSource is proud to announce the release of SonarQube 10.0, with faster first analysis, many new Docker security rules, and much more. Details in the official announcement.

In addition, there are a few other items to note in the release:

  • We’ve added the new scanner parameter sonar.token to set a token for the analysis. The use of sonar.login was deprecated in this release. (SONAR-18591).
    The new version of the SonarScanner for .NET (5.13) supporting this parameter will be available soon.
  • We’ve strengthened the security policy for plugins. Plugin maintainers may need to update some of their plugins to stop including inline scripts in the UI. (SONAR-18809).
  • The web services and web service parameters that were deprecated in 8.x and 9.x versions have been removed. There are noteworthy impacts on Quality Gates and Portfolios. See more details in the corresponding tickets.
  • We’ve removed the common rules that were deprecated in 9.x and already dropped for some languages. (SONAR-16198).
  • Pull Request decoration parameters that were deprecated in 8.x have also been removed. (SONAR-17711).

You’ll find more details in the upgrade notes and full details in the release notes. Please open new threads for any questions you have about these or other features.

As usual, download is available at sonarsource.com. Docker images are also available on Docker Hub.

 

Chris

1 Like
4

I’m using latest plugin versions for Findbugs, PMD and Mutation Analysis.
With Sonarqube 10.0 it looks like that all rules from those plugins are not considered anymore.
Is this a known behavior?

Was updating from 9.8 where all plugins worked as expected.

Kind regards,
Michael

6

Hi,

there’s a flaw in the latest documentation. https://docs.sonarqube.org/latest/setup-and-upgrade/install-the-server/ => Microsoft SQL Server has

To use integrated security:

  1. Download the Microsoft SQL JDBC Auth 11.2.2 package and copy mssql-jdbc_auth-11.2.2.x64.dll to any folder in the path of the SonarQube host.
    […]

As Sonarqube 10.0 ships with sonarqube-10.0.0.68432\lib\jdbc\mssql\

mssql-jdbc-11.2.3.jre17.jar

it should be the mssql-jdbc_auth.zip for v11.2.3 instead.
https://github.com/microsoft/mssql-jdbc/releases/download/v11.2.3/mssql-jdbc_auth.zip

Gilbert

3 Likes
8

Thanks Gilbert! I’ve reported it internally.

Chris

10

What is even worse, the wrong version is also named in the sonar.properties file including the link to download 11.2.2 :frowning:
But the log file web.log on failing startup files the clear hint

used by: java.lang.UnsatisfiedLinkError: Unable to load authentication DLL mssql-jdbc_auth-11.2.3.x64
2 Likes