SonarSource is proud to announce the release of SonarQube 7.8, which includes greatly enhanced security capabilities and a far better security review experience. More details in the official announcement.
Before you upgrade, there are a number of things you should be aware of. They’re detailed in the upgrade notes, but we list some of the most significant here:
- Support has been added in SonarQube and the scanners for Java 11 and for Java 12 in SonarJava. The SonarQube / scanner support means you may need to upgrade your scanners.
- Notifications have been reworked. You’ll see less spam (one email per event instead of one per issue!) and better performance.
- We’ve made a start on strict MISRA support. If you’re on Developer Edition or above, you’ll find 32 rules from MISRA C++ 2008 available, with more to come!
- The recalculation of Portfolios (Enterprise Edition and above) can now be held for scheduled times, rather than run immediately, potentially improving overall responsiveness.
- This is the last version that will support MySQL. Now’s the time to start investigating the free database migrator tool we’ve crafted if you haven’t already.
sonar.branchnow fails analysis. See the upgrade notes for migration.
- If you’re running on Linux, you may need to upgrade the numbers of open files and processes your SonarQube instance can have because we’ve started enforcing Elasticsearch’s bootstrap checks.
- We’ve dropped web services that were deprecated in 5.x versions. If you’re still using them, it’s finally time to migrate.
As usual, download is available at sonarqube.org.
Ann & Chris