Ready for DevSecOps
CodeSecure’s CodeSonar static application security testing (SAST) solution already has great integrations with the tools our customers rely on to develop software today. This release of CodeSonar adds new features and functionality making it easier for you to achieve DevSecOps, while helping you accelerate the delivery of quality, safe and secure code more efficiently.
This release has several new features as well as numerous bug fixes, compatibility updates, and other minor improvements. The highlights are listed below; for more complete details, see the release notes at https://support.codesecure.com/hc/en-us/articles/4414326673937.
Integrations
- The Visual Studio Code plug-in has been updated to version 1.2 to take advantage of the new hub RESTful API.
- Improved documentation for our GitHub and GitLab integrations that will help customers that do not use Docker.
- The CodeSonar LDAP login service now supports case-insensitive usernames, making it easier for administrators to integrate CodeSonar with Microsoft Active Directory.
- Improvements to the documentation of CodeSonar’s RESTful API make it even easier for third-party developers to understand the API and build new capabilities.
C/C++
- CodeSonar 7.3 now offers 100% coverage for MISRA C rules.
- We have updated our parser to support the most recent features of C++20 and C18. This will improve the accuracy of your scans and allow your users to take advantage of new language features while maintaining safe and secure code.
Java/C#
- CodeSonar now supports .NET 7.
- Parsing and analysis have been split into separate phases to increase efficiency.
CodeSonar Hub
- Ability to tag an analysis with key-value pairs to track things like what branch it comes from, what code review is it associated with, a commit hash, or anything else you can imagine. These tags can be edited and searched on in the hub for maximum flexibility in your DevSecOps workflow.
Hybrid Cloud Deployment
- Improvements to the lifecycle of project files on the server to better manage disk usage.
End of Life
- With this new release of CodeSonar, version 6.0 will be entering End of Life for support. CodeSonar 7.0 will be Sunset. Please refer to this article for details on our supported product versions.
- Internet Explorer 11 is no longer supported in CodeSonar 7.3.
- Due to the deprecation of support for Java plugins in modern browsers, CodeSonar 8 will be the final release in which full visualization is available. We will continue to offer HTML ‘lite’ visualization and will be sharing plans for improving that capability in the future.