SonarQube Server 2025.5 release announcement

SonarQube Server 2025.5 introduces a comprehensive suite of updates designed to enhance the software development lifecycle by improving security, efficiency, and compliance. This release features non-disruptive updates that allow development teams to adopt new features without breaking CI/CD pipelines, providing a significant productivity boost. For JavaScript/TypeScript and Python developers, a new security engine offers more accurate feedback, while Angular and AWS Lambda users benefit from increased issue detection and optimized serverless functions, respectively. Security teams can now better protect CI/CD pipelines from supply-chain attacks, with advanced detection capabilities for GitHub Actions workflows. Additionally, the update facilitates strategic implementation of Software Composition Analysis, expands MISRA C++:2023 guideline support, and enhances the security of .NET desktop applications. Administrators and compliance teams benefit from improved management and communication tools, enabling better governance and compliance, particularly for safety-critical systems in industries like automotive.