Secure Your PHP Code With Taint Analysis by Qodana

PyCharm now bundles a plugin, which allows users to interact with analysis results delivered by Qodana – a new code quality platform from JetBrains. The platform is designed to bring server-side static analysis to your preferred CI tool. By using the same code inspections and profiles as PyCharm and other JetBrains IDEs do, Qodana helps ensure consistent code quality checks both in your IDE and your CI.

Have you ever wondered how to make sure that your determination to live a healthier life, not sweat the small stuff, and work smarter, not harder continues past Valentine's Day? Psychologists say that breaking big goals into small steps is the best way to stick to your New Year's resolutions. This advice applies to programmers’ resolutions too. If you plan a large project that involves code refactoring, you may want to see the full picture of the required changes and plan accordingly. This is exactly what the IntelliJ team did when they needed to localize the IDE’s entire UI into Chinese, J

A public preview is now open for Qodana Cloud – a centralized cloud-based solution that collects and displays data from different Qodana linters under one roof.

We’re delighted to announce the release of Qodana 2022.3 EAP. This version of the platform brings support for NET. and Go, and over 100 new inspections for cleaner code.

We’ve added CircleCI Orb to our integration toolset along with new code inspections for Java, Kotlin, Android, PHP, JavaScript, and Python!

License auditing now comes in Qodana linters out of the box. PHP, Java, and Kotlin inspections have been added to your pipelines.

Learn how to automate license auditing, make it a part of your CI/CD, and mitigate compliance risks.

What makes CI/CD tools so great for quality control? Let’s find out.

Qodana linters are now integrated into your Azure DevOps repositories to make code analysis a part of your build pipeline.

Why is static code analysis important? How can you benefit from adding another step in the project lifecycle? Find the answers to these questions and others in our blog post.

Even before we started to work on Qodana, we knew from our own experience and user interviews that it's hard to add static analysis to a project, which leads people to delay this decision. If you join a project with established code quality procedures, you can just follow the rules. If you start a shiny new project, you can pick any set of rules you want. This option has its pitfalls, but at least you know that your code meets your own standards from the beginning. In contrast, if you join or work for a project where quality gates are not yet part of the process, being pressured to implemen

Qodana specializes in build quality management, delivering the static analysis smarts of IntelliJ Platform to project-level checks. In May, we extended the platform with a second linter,  Clone Finder, which detects code duplicates. Today, we are happy to announce the EAP for License Audit to detect incompatible third-party licenses on which your code relies, making the compliance verification process easier for your project and company. Qodana License Audit is still very much in the early stages, but making it available earlier helps us to catch problems earlier. This makes prepar