SonarQube 10.2 released

Hi all,

Sonar is proud to announce the release of SonarQube 10.2, with many new rules to support MISRA C++ 2023 and improved secrets detection. Details in the official announcement.

In addition, there are a few other items to note in the release:

  • The use of Java 11 for scanner runtime environment is deprecated. The minimum recommended version is Java 17. See more details in this post and the scanner environment documentation for more information.
  • Automatic user and group provisioning with GitHub now includes permission synchronization. If you were using automatic user and group synchronization, administrator’s action is required to adopt this enhancement. See more details in the GitHub authentication documentation.
  • The maximum number of days allowed for the New Code definition of all your projects is now limited to 90. See more explanations in this post. (SONAR-20155).
  • In case your Quality Gate on a project is not compatible with Clean as You Code, this information is now displayed to Quality Gate administrators only. (SONAR-20219) (SONAR-20220).
  • We’ve removed the old deprecated way of referencing environment variables in the configuration. (SONAR-19960).

You’ll find more details in the upgrade notes and full details in the release notes. Please open new threads for any questions you have about these or other features.

As usual, download is available at Docker images are also available on Docker Hub.



1 Like

Hi all,

We’ve learned of a problem with 10.2 related to setting a new branch as the main branch and deleting the old main branch ( SONAR-20481).

We’re planning to release a patch this week. In the meantime, you can choose a new main branch, but please do not delete the old one from your project until after you’ve upgraded to the patch version.


Edit Deleting the old main branch from an unpatched 10.2 instance results in partial project deletion, and this is unrecoverable. Further, it will bork your entire instance. Upgrading a borked 10.2 instance to 10.2.1 will not fix the problems created by a old-main deletion in 10.2.


Hi all,

We’ve now released SonarQube 10.2.1 which fixes this problem.
For more details about this version, please refer to the corresponding announcement here.