With SonarLint for Eclipse v8.0 we introduce the adoption of Clean Code attributes to categorize issues, plus enhanced secret pattern detection.

Firstly, we have made various product changes in alignment with our Clean Code vision. For each issue raised in your code, SonarLint will report the Clean Code attribute and software qualities impacted.

In addition, and leveraging a new Sonar open-source secret detection engine, this version delivers a powerful approach to identifying potential security vulnerabilities related to secrets (tokens, passwords, API keys). SonarLint can now detect secrets for an additional 22 popular cloud applications and providers.

Plus:

• 9 new core Python rules
• Support for PHP 8.3
• Enhanced SonarLint documentation is now available here.

For further details, check out the release notes and community announcement.

SonarLint for Eclipse v7.13 delivers the opportunity to change the status of an issue without leaving your IDE.

With connected mode activated to either SonarQube or SonarCloud, you can now resolve an issue that you don’t intend to fix by marking it as Won’t Fix or False Positive. This newly assigned status will then automatically sync to SonarQube or SonarCloud, as well as all other contributors using SonarLint in connected mode.

For further details, check out the release notes and community announcement.

SonarLint for Eclipse v7.12 builds upon the new format for Rule Descriptions with syntax highlighting.

This enhances the clarity of non-compliant/compliant code examples, making it easier for you to understand and take appropriate action. (See example below)

Plus:

• 5 new rules for core JavaScript & TypeScript concepts
• Support for TypeScript 5

For further details, check out our release notes and community announcement.

SonarLint for Eclipse v7.11 brings a new format for its Rule Descriptions with the addition of rich educational information to enhance the developer experience.

Now, when clicking on an issue's code in the Error List, you will be presented with contextualized guidance as follows:

Why this is an issue? | How to fix it? | More info 

Initially available for a selection of rules including the top 15 security vulnerabilities, this feature is being progressively rolled out for all remaining rules, helping developers learn as they code.

Plus:

• A new Java rule linked to static methods introduced in Java 19
• New rules for TypeScript that enhance our support for TS built-ins
• 6 new Python rules for the Django framework

For further details, check out our release notes and community announcement.

SonarLint for Eclipse v7.8 enhances the connected mode setup experience with a new, simplified authentication process to SonarQube.

 

With SonarQube (minimum v9.7), SonarLint now offers to automatically generate and securely store the authentication token for you.

Plus:

• 11 new Quick Fixes for Java rules, making 54 in total. Discover them here.

For further details, check out our release notes and community announcement.

This release brings additional support for Front-end Developers, plus simplified binding for your Eclipse projects.

We have added support for CSS and TypeScript analysis, which, together with existing support for JavaScript and HTML, enables developers to write clean front-end code.

In addition, we have enabled one-click project binding for your Eclipse projects to both SonarQube and SonarCloud. SonarLint will detect those projects already configured for analysis in SonarQube or SonarCloud and offer hassle-free binding.

Plus:

• The Java analysis detects more precisely hard-coded passwords
• We've added 6 new JavaScript rules for detecting performance issues in React.
• There are 4 new quick fixes for Python issues.
• Support for Python 3.11, TypeScript 4.8, and PHP 8.2

For further details check out our release notes and community announcement.

SonarLint for Eclipse v7.5 brings tighter integration to SonarQube, plus additional benefits for Java, Python, and JavaScript developers.

Enjoy real-time issue sync from SonarQube when using connected mode. Now, an issue suppressed in SonarQube will be synced to SonarLint in seconds, automatically.

Plus for Java developers:

• 7 new rules designed to help you develop clean cloud-native applications for AWS
• 6 new rules help you reduce the complexity of your regular expressions for better readability and maintainability (making 30 regex rules in total).

And Python developers:

• Introducing access to Python quick fixes with SonarLint for Eclipse! Check out which Python rules offer quick fixes here.

Additionally for JavaScript developers:

• New rules to detect React-specific bugs and code smells
• Analysis of JS code embedded inside AWS template files in YAML

For further details check out our release notes and community announcement.

This release enables SonarLint’s branch support in ‘Connected Mode’, and more!

Building upon its existing ability to synchronize issue suppressions (i.e issues marked as Won’t Fix, False Positives) SonarLint now offers branch awareness for Eclipse. In addition to the main branch, you can now enjoy issue synchronization to any branch (feature branch, dev branch …) you’re actually working with.

Simply bind your local project to SonarQube so you can focus on relevant issues in your IDE.

In addition, you’ll see other improvements and features for your programming language:

• Improved Java analysis to detect additional security issues in your XML files.
• Enhanced Python analysis performance 

Learn more in our release notes or check out this community release announcement.

With this release, we've improved the synchronization of Quality Profiles in Eclipse (no more manual sync!) when using SonarLint in ‘Connected Mode’.

If you bind your projects to SonarQube using ‘Connected Mode’, SonarLint now automatically synchronizes SonarQube rules and settings (quality profiles) in your Eclipse IDE, enabling project contributors to focus on relevant issues only. 

Plus, many improvements and features for your programming language: 

• Support for scanning Java 17 code; improved accuracy of nullability rules
• Support for 8 new JavaScript rules targeting unit test code using Mocha and Chai. Support for TypeScript.
• 13 new regex rules for Python. See all regex rules.  
• Support for scanning PHP 8 and Python 3.10 which includes structural pattern matching syntax
• And more!

Learn more in our release notes or check out this community release announcement.