I have studied SONAR for my company and we have some features that can be well for a next version :
- Add JSP analysis to source code analysis (it can be great to have reports on JSP source code).
- Add deep code analysis for performance purposes (example : variable declaration in a for/while/loop).
With this kinds of features, Sonar could be a great concurent to CAST for JAVA projects even if there are some aspects non managed (transactions/connexions well closed...). The very big advantage of SONAR over CAST is the code viewer.
Another request to not create another issue : can you externalize the sonar JDBC configuration in a datasource ?