Hello team ,
Documentation briefly mentions how AI code detection works
*With access to your GitHub App, SonarQube Server can evaluate users’ GitHub Copilot usage and code contribution patterns to identify potential AI-generated code. If there is a match in user data, SonarQube Server will display the AI code detected status on the project’s Overview and Project Information pages.
Few clarifications regarding this.
1.) How does user data matching happens , Does account which is generating and accepting ai code ( github copilot ) need to be present as a user in sonar ?
2.) Does delegation to GitHub authentication after Dev-ops integration necessary for ai-detection ?
3.) How can we debug if user from co-pilot side if user data is not matching.
4.) If PR contains AI code , Does detection feature take that into account or only branches are scanned or detection ?
In our case ,
We have LDAP integration to SonarQube and a different account which is used for GitHub co-pilot.
We have not been able to make auto-detection work.
ps. if you need logs and other details pls refer to SUPPORT-52155