github SonarSource/sonar-java

Release Notes - SonarSource Code Analyzer for Java - Version


  • [SONARJAVA-3316] - FP S5542 (EncryptionAlgorithmCheck) more secure algorithms and algorithm name using different case

  • [SONARJAVA-3320] - S1165/S2039: Fix false positives for Lombok's field modifier annotations

  • [SONARJAVA-3321] - FP S5542 (EncryptionAlgorithmCheck): should support default security java provider

  • [SONARJAVA-3330] - FP in S3749 when fields are injected by Lombok @RequiredArgsConstructor

  • [SONARJAVA-3338] - FP on S1118: improve support of Lombok's annotation generating constructor


New Feature



  • [SONARJAVA-2410] - Issue filter should also filter rules depending of the java warning suppressed

  • [SONARJAVA-3313] - Improve log message for missing compiled classes

  • [SONARJAVA-3315] - Unify JavaCheckVerifiers and simplify its usage to test rules

  • [SONARJAVA-3317] - Improve performance

  • [SONARJAVA-3318] - S2077 should present to the user all the locations where the formatted SQL query string is used

  • [SONARJAVA-3323] - S1166 should be able to be configured with an empty whitelist

  • [SONARJAVA-3325] - Remove dependency on Ant for JSP transpiling

  • [SONARJAVA-3326] - Remove dependency on Eclipse JDT for JSP transpiling

  • [SONARJAVA-3331] - FN in S3749: support @Component annotation

  • [SONARJAVA-3337] - Update branding to drop 'SonarJava'

latest releases: test_rules_cov,,
9 months ago