Qodana
| Qodana | |
|---|---|
Qodana insights dashboard example | |
| Developer | JetBrains |
| Initial release | 2023 |
| Stable release | 2025.3
/ December 19, 2025[1] |
| Written in | |
| Operating system | Cross-platform |
| Type | Static program analysis |
| License | Proprietary |
| Website | jetbrains |
Qodana, created by developer tools company JetBrains, is a code quality platform with a static analysis engine that integrates into CI/CD pipelines.[2] It is used by software development teams to improve code quality by assisting them with the code review process, mitigating some human error, enforcing quality guidelines, and building quality gates, among other features.[3]
History and product development
Qodana preview was released in 2021, and the product was officially launched to the public in 2023, with support for over 60 programming languages and frameworks, most CI pipelines, and many JetBrains IDEs.[3]
JetBrains made a Visual Studio Code extension available in late 2023.[4][5] In 2024, hardcoded password detection was implemented as well as self-hosting.[6]
In 2025, integration with the AI-enabled Cursor was introduced, as well as a public API, native mode configuration, an insights dashboard, single sign-on for enterprise clients, SOC 2 compliance and OWASP security inspections.[7][8][9]
While developers can use the tool to support code reviews, spot bugs, and build quality gateways, it was also designed for QA engineers, security managers, development team leads, and legal teams.[3] For these teams, it is a code quality monitoring tool to identify and suggest fixes for bugs, security vulnerabilities, duplications, licence audits and imperfections.
Capabilities
The static code analysis tool integrates with CI/CD pipelines, allowing developers to address code problems within the IDE.[2] Qodana is the sole code quality platform that leverages inspections directly integrated into JetBrains IDEs.[3]
Features
- Insights dashboard
- Self-hosting
- SOC 2-compliant
- Baseline state comparison
- Project license audit (SBOM)[10]
- Quality gates
- Code inspections
- Global configuration
- Quick fix
- Taint analysis
- Vulnerability checker
- Multi-IDE support
- CI/CD integration
- Public API
- SSO
- OWASP inspections
- Hardcoded password detection
See also
References
- ^ "New in version 2025.3 | Qodana". Qodana Help. December 19, 2025. Retrieved March 6, 2026.
- ^ a b Lewkowicz, Jakub (October 19, 2021). "JetBrains launches code quality platform Qodana". SD Times. Retrieved December 6, 2023.
- ^ a b c d Corrales, Enrique (September 1, 2023). "Exploring Qodana: A Comprehensive Review". Developer.com. Archived from the original on December 11, 2023. Retrieved December 11, 2023.
- ^ "Download Qodana 1.0.0 Extension (Vsix File) for VS Code". VsixHub. September 29, 2023. Retrieved December 11, 2023.
- ^ Daws, Ryan (July 20, 2023). "JetBrains launches code quality platform Qodana". Developer Tech News. Retrieved November 15, 2023.
- ^ Waters, John K. (July 10, 2024). "JetBrains Launches Self-Hosted Version of Qodana -". ADTmag. Retrieved March 8, 2026.
- ^ "JetBrains | Cursor Docs". Cursor Documentation. Retrieved March 8, 2026.
- ^ Cankurt, Suphi (February 12, 2026). "Qodana 2026: JetBrains IDE Inspections in CI/CD". AppSec Santa. Retrieved March 11, 2026.
- ^ Hollingsworth, Kieran (April 16, 2025). "JetBrains Qodana is now SOC 2 certified". Grey Matter. Retrieved March 11, 2026.
- ^ Marques, Daniel (June 12, 2025). "Review Qodana static code analysis and SCA/SBOM license audit". DEV Community. Retrieved March 11, 2026.