OpenText™ unveiled Cloud Editions (CE) 24.4, presenting a suite of transformative advancements in Business Cloud, AI, and Technology to empower the future of AI-driven knowledge work.
Sonar Introduces AI Code Assurance and AI CodeFix
October 03, 2024
Sonar announced two new product capabilities for today’s AI-driven software development ecosystem.
These new capabilities are designed to support better software development in two critical and distinct ways – Sonar AI Code Assurance and Sonar AI CodeFix improve the quality of code produced by generative AI and enhance Sonar’s offering with AI to deliver a better developer experience, respectively. Both capabilities deepen Sonar’s commitment to the delivery of high-quality, secure code and increasing developer productivity.
AI Code Assurance helps organizations ensure the quality of AI-generated code by thoroughly analyzing the codebase for issues, ensuring that projects using AI tools to generate code meet high standards of quality and security. Today, bad code is already estimated to cost businesses more than a trillion dollars, making it critical for AI-generated code, which promises to increase the volume of code written, to be comprehensively checked for quality and security issues.
“AI is transforming the way developers work, streamlining processes, and reducing the toil associated with writing code. As the adoption of AI coding assistants grows, however, we are seeing a new issue emerge: code accountability. AI-generated code needs review by developers, but accountability for doing this is increasingly diluted. As a result, we’re seeing the review step frequently being shortchanged,” said Tariq Shaukat, CEO of Sonar. “With AI Code Assurance, we’re helping organizations ensure that AI written code receives the high level of quality and security review that you would expect from your developers.”
AI CodeFix allows developers to seamlessly resolve issues detected by Sonar's code analysis engine with a single click, directly within their workflow. The AI-powered fix recommendations help streamline developer workflows, speed up issue remediation, and improve the developer experience. As leading research has established, developer experience improves with the automation that AI provides. For example, McKinsey reported that developers using generative AI tools in their work stream are “twice as likely to report overall happiness, fulfillment, and a state of flow” than those who aren’t.
“AI CodeFix helps developers streamline their workflow and ramp up their productivity. Rather than switching between solutions or manual efforts, we’re putting remediation options for Sonar-identified issues right in front of the people working on them – and giving them the ability to fix the issues in an instant. We’re excited to see how our users adopt this capability and better understand how we can further integrate AI into our solutions to improve the developer experience,” said Fabrice Bellingard, VP of Product at Sonar.
The features are currently available for both SonarQube and SonarCloud.
AI Code Assurance for Confidence in Code Quality: With AI Code Assurance for SonarQube and SonarCloud, developers can be confident that their AI-generated code is clean and secure. By implementing the Sonar AI Code Assurance workflow, organizations have the assurance that all code (AI-generated and human-developed) has been thoroughly scanned for issues and that projects leveraging AI tools are meeting high standards of quality and security.
AI Code Assurance capabilities include:
- Project Tagging: Developers can easily tag projects that contain AI-generated code, initiating a comprehensive analysis through the Sonar AI Code Assurance workflow.
- Quality Gate Enforcement: An optimized quality gate for AI-generated code ensures that only code meeting strict quality and security standards is approved for production.
- AI Code Assurance Approved Badge: Projects that pass the quality gate receive a badge signifying that the code has gone through a rigorous AI-ready analysis.
AI CodeFix for Fast Issue Remediation: Fast-paced software development environments require solutions that enhance productivity, reduce time-to-market, and maintain high code quality. Today, millions of Sonar users can detect and fix issues in their code leveraging Sonar’s database of code rules and best practices. Now, at the click of a button, developers can use AI CodeFix to automatically generate solutions to issues in the same SonarQube and SonarCloud user interface where they review issues.
AI CodeFix capabilities include:
- Instant Code Fixes: Minimize manual debugging efforts and increase productivity by automatically generating code fix suggestions.
- Contextual Understanding of Sonar findings: Leverages LLMs to understand code context and provide relevant fixes.
- Seamless Integration: Developers fix issues directly within their IDE using SonarLint connected mode, ensuring a smooth workflow.
- Continuous Learning: Ongoing suggestion improvements based on user feedback
- Multi-Language Support: Supports flagship programming languages such as Java, JS/TS, C#, Python, and C/C++.
AI Code Assurance is now available on SonarQube and will be generally available in SonarCloud by the end of October.
AI CodeFix is available for early access in SonarQube Enterprise Edition, SonarQube Data Center Edition, and SonarCloud Team and Enterprise plans.
Industry News
November 19, 2024
Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade developer portal based on the Backstage project.
November 19, 2024
Pegasystems announced the availability of new AI-driven legacy discovery capabilities in Pega GenAI Blueprint™ to accelerate the daunting task of modernizing legacy systems that hold organizations back.
November 19, 2024
Tricentis launched enhanced cloud capabilities for its flagship solution, Tricentis Tosca, bringing enterprise-ready end-to-end test automation to the cloud.
November 19, 2024
Rafay Systems announced new platform advancements that help enterprises and GPU cloud providers deliver developer-friendly consumption workflows for GPU infrastructure.
November 19, 2024
Apiiro introduced Code-to-Runtime, a new capability using Apiiro’s deep code analysis (DCA) technology to map software architecture and trace all types of software components including APIs, open source software (OSS), and containers to code owners while enriching it with business impact.
November 19, 2024
Zesty announced the launch of Kompass, its automated Kubernetes optimization platform.
November 18, 2024
MacStadium announced the launch of Orka Engine, the latest addition to its Orka product line.
November 18, 2024
Elastic announced its AI ecosystem to help enterprise developers accelerate building and deploying their Retrieval Augmented Generation (RAG) applications.
November 18, 2024
Red Hat introduced new capabilities and enhancements for Red Hat OpenShift, a hybrid cloud application platform powered by Kubernetes, as well as the technology preview of Red Hat OpenShift Lightspeed.
November 18, 2024
Traefik Labs announced API Sandbox as a Service to streamline and accelerate mock API development, and Traefik Proxy v3.2.
November 18, 2024
Kubiya announced Captain Kubernetes, an AI-powered teammate designed to simplify Kubernetes management with natural language interaction and autonomous, self-healing capabilities.
November 14, 2024
Solo.io is donating its open source API Gateway, Gloo Gateway, to the Cloud Native Computing Foundation (CNCF) to further its mission of building a complete omni-gateway connectivity solution.
November 14, 2024
LaunchDarkly announced a new approach to software delivery—Guarded Releases—that empowers organizations to ship with confidence and manage risk proactively.
November 14, 2024
Diagrid announced details of the upcoming release of Dapr 1.15, a Cloud Native Computing Foundation project maintained by Diagrid, Microsoft, Intel, Alibaba, and others.
