SonarCloud is working on detecting injection attacks in applications by using the "taint analysis" technique to track input variables for sanitization, targeting common injection problems in Java and C# including SQL Query Injection, OS Command Injection, XPath Expressions Injection, LDAP Query Injection, I/O Function Calls Injection, and Regular Expressions Injection. The goal is to eradicate injection attacks from the OWASP Top 10 standard by detecting more languages such as PHP and raising issues on low-hanging fruit related to security. SonarCloud will provide a dedicated security space for checking compliance with OWASP Top 10 and SANS Top 25 standards, aiming to improve application security by identifying and mitigating injection attacks.