New version! Security Assessment for SonarQube Server 2.32
May 26, 2026
The Security Assessment for SonarQube Server version 2.32 is now available, an update focused on strengthening the security assessment of projects analyzed in SonarQube Server. The main new feature in this release is the addition of a new security standard: CWE Top 10 KEV Weaknesses, designed to help teams identify weaknesses that are especially relevant due to their connection with actively exploited vulnerabilities.
Security Assessment for SonarQube Server 2.32 adds support for the CWE Top 10 KEV Weaknesses standard, based on the Known Exploited Vulnerabilities (KEV) catalog by CISA, the Cybersecurity and Infrastructure Security Agency.
This standard focuses on common vulnerabilities and exposures that are being actively exploited, helping development, security, and quality teams prioritize risks with the highest potential impact.
With this addition, Security Assessment for SonarQube Server 2.32 enables organizations to better align security analysis with real-world threats observed in the market and with internationally recognized references.
If you are already using the plugin, you can access the Universal Plugin Manager for SonarQube™ Server (UPM) and click update. If you have not tried it yet, you can download the plugin and test it in your instance here: bitegarden Security Assessment for SonarQube™ Server, and configure it in your instance quickly.
bitegarden team
Helping companies to develop better software