SonarCloud
@SonarCloud
SonarCloud, crafted by @SonarSource, is the leading online service for Code Quality & Security. Free analysis for open-source projects covering 24 languages.
ID:899543403658129409
https://sonarcloud.io 21-08-2017 08:07:14
495 Tweets
2,8K Followers
123 Following
Follow People
Heading to Lausanne for #Insomnihack ? Meet our team there; we're presenting two talks:
๐ Finding vulnerabilities in JumpServer
๐งน Bypassing HTML Sanitizers with mXSS
Excited to see you there!
๐ SonarCloud & SonarQube 10.4 expand the scanning capabilities to include Helm Chart files, alongside the existing #Kubernetes support. No extra steps needed to scans your Helm Charts, Kubernetes templates, & values.yaml. #DevOps #K8s #HelmChart
๐Uncovering critical vulnerabilities in Jenkins, which could lead to RCE (CVE-2024-23898, CVE-2024-23897):
Check out our latest blog post for the technical details on how attackers could potentially gain unauthenticated RCE on #Jenkins
sonarsource.com/blog/excessiveโฆ
#vulnerability
Critical vulnerabilities in pfSense firewall: RCE via XSS and Command Injection!
Find out how SonarCloud discovered these vulnerabilities in our newest blog post:
sonarsource.com/blog/pfsense-vโฆ
(CVE-2023-42325, CVE-2023-42326, CVE-2023-42327)
#pfSense #vulnerability #cleancode
๐ Sonar Research recently discovered multiple vulnerabilities in pfSense, using SonarCloud! pfSense CE 2.7.0 and pfSense Plus 23.05.1 are vulnerable to two XSS vulnerabilities and a Command Injection vulnerability โฌ๏ธ
๐นCVE-2023-42325
๐นCVE-2023-42327
๐นCVE-2023-42326
Peter McKee of Sonar pulled together #predictions from 6 experts on the future of coding in the age of #AI . Here are the software development #trends they expect to surface in 2024. vmblog.com/archive/2023/1โฆ
#supplychain #genAI #Cryptography #security
AI-driven real estate intelligence company, Recognyte, sees immediate ROI with Sonar! In this case study, learn how SonarCloud Quality Gates can act as a benefit, not a bottleneck, for streamlining the DevOps workflow