Overview
A quick summary of SonarQube Server’s AI features that can be managed by an instance administrator.
SonarQube Server offers several instance-level AI features designed to enhance code quality and security.
Autodetect AI-generated code
SonarQube Server includes a feature that automatically identifies AI-generated code from your DevOps platform. This functionality, active by default, notifies instance administrators about projects with recent AI activity, allowing for the implementation of Sonar’s AI Code Assurance. To enable this, SonarQube Server needs specific permissions to access information on your DevOps platform to compare AI usage statistics.
See the Autodetect AI code page.
Permissions for AI autodetection
To detect AI-generated code, SonarQube Server needs access to the DevOps AI provider. The AI Code Autodetection feature must be enabled by an instance administrator in SonarQube Server, and the DevOps administrator must grant the necessary permissions on the DevOps platform. This setup allows SonarQube Server to analyze AI-assisted usage and identify potential AI contributions, showing the detection status on project overview pages.
See the Permissions for AI autodetect page.
AI-generated fix suggestions
Sonar’s AI CodeFix employs large language models to propose automatic code fixes. Instance administrators have the option to activate this feature and select one of the available LLMs. Once enabled, developers can view AI-generated fix suggestions for compatible languages through the SonarQube Server interface or directly in their IDEs when in connected mode. The goal of AI CodeFix is to simplify issue resolution and enhance code quality by leveraging AI-powered assistance.
See the Enabling AI CodeFix page.
Related pages
Overview of AI capabilites
Learn how toSet your AI standards for AI Code Assurance
Opening issues in your IDE for information about getting AI CodeFix in the IDE
Last updated
Was this helpful?