4.1.0

This version adds support for T-SQL, AzureResourceManager templates, and Bicep files.

More details in the Sonar Community announcement and in the release notes.

4.0.5

This version fixes an error that could occur when opening an issue from SonarQube.
For full release notes, see JIRA

4.0.1

This version delivers initial support for C#: Please share feedback on our Community Forum.
This version also adds the possibility to open any SonarQube issue in the IDE to investigate it and fix it without having to manually locate the code; it also enables instant synchronization of SonarCloud issue status changes (e.g. Won't Fix or False Positive) to the IDE, and adds rules for Spring, Pandas and React.

More details in the Sonar Community announcement and in the release notes.

3.22.0

This version introduces an option to focus the analysis scope on the new code (code that has been recently added or modified). In addition, it adds the capability to detect 42 new secrets for cloud applications and allows to configure file or directory exclusions from analysis

More details in the Sonar Community announcement and in the release notes.

3.21.0

This version introduces our new Clean Code definitions, adds plenty of cloud provider secret detections, and enables users to resolve new issues even before their new code is analyzed by SonarQube (requires SonarQube 10.2+).

More details in the Sonar Community announcement and in the release notes.

3.20.2

This version adds a walkthrough to help first-time users to make the best out of SonarLint. It also adds plenty of C and C++ MISRA 2023 rules and other improvements to C, C++, Java and Python analyis.

More details in the Sonar Community announcement and in the release notes.

3.19.2

This version fixes a bug affecting the synchronization of taint vulnerabilities in connected mode with SonarCloud.

3.19.0

With this SonarLint version, developers have the ability to resolve an issue as Won't Fix or False positive, as well as to change the status of a Security Hotspot, directly in VS Code; moreover, the Security Hotspot status is now real-time synchronized from SonarQube to the IDE.
This release also introduces support for Cobol analysis (in Beta for now).

More details in the Sonar Community announcement and in the release notes.

3.18.0

With this version, SonarLint reports Security Hotspots directly in the IDE for users in connected mode with SonarCloud (in addition to those connected to SonarQube); we also added the possibility to display all unreviewed Security Hotspots in the current folder (i.e not only in the file currently opened) so that they can all be reviewed at once. This version also provides syntax highlighting for all code examples in SonarLint rule descriptions and code diff highlighting between compliant and uncompliant code examples.

More details in the Sonar Community announcement and in the release notes.

3.17.0

This version adds support for analyzing files for several Infrastructure as Code domains:

• Terraform
• CloudFormation
• Docker
• Kubernetes

It also adds support for a new rule descriptions format to help users eliminate issues faster with contextualized guidance and avoid introducing them in the future. More details in the Sonar Community announcement and in the release notes.