Dear VS Code community,
We are thrilled to announce the release of SonarQube for IDE: VS Code v4.28! This new version introduces dependency risk management directly within the IDE.
When in Connected Mode, the SonarQube report view will display dependency risks and license violations identified in your SonarQube Server project analysis along with the other types of issues. For more details on analyzing projects for dependencies, refer to the SonarQube Cloud Server documentation.
You can interact with these issues by opening them in the server or changing their status from the IDE.
We’ve also enhanced binding detection between your local projects and SonarQube Server or Cloud analyzed projects using Git information. This streamlines the connected mode setup after the creation of your initial SonarQube for IDE connection.
For Cursor users who imported SonarQube for IDE from VS Code, we assist in checking and correcting your connected mode state. This ensures you benefit from the advanced analysis capabilities it provides.
Finally, C++ developers analyzing code with MISRA C++:2023 rules early access can now achieve the same analysis within the IDE.
You can find the full SonarQube for IDE: VSCode release notes here.
Thank you for your continued support!
Farah