Does Sonar AI CodeFix has more details on how it manages users' code?

thu · September 8, 2025, 3:00pm

Hello,

As a SonarQube Cloud user, I noticed that there was an hint added on my SonarQube page to try AI CodeFix.

Is there any details on how Sonar stores its user data ? The mention of “Input Data” in the TOS is not clear and it seems that we cannot opt-out of sending snippets of code and metadata. For users inside the UE, is it specified that the data is sent outside of the territory ?
Also, if an external provider is used (such as OpenAI, Anthropic or another), is the sharing of snippets of code used “improving analysis” ?

Best regards,
Théo

ganncamp · September 9, 2025, 12:23pm

Hi Theo,

Welcome to the community (and sorry about the missing accent. AmE keyboard )!

Well, no. That’s how AI CodeFix works - it sends snippets of code off to AI to get the fix. No snippet sending, no fix.

You have the option to select a self-hosted LLM. You then control the “where” completely.

From the docs:

Service agreements with Sonar’s LLMs prevent your code from being used to train those models.

HTH,
Ann

system · September 18, 2025, 7:24am

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Question about Sonarqube's AI Features AI Code Assurance and AI CodeFix SonarQube Server / Community Build	10	164	July 23, 2025
Exclude Term "SonarSource may use snippets of Customer Data to improve AI CodeFix" SonarQube Cloud ai-codefix	3	104	March 27, 2025
AI Codefix : management of code analyzed : where is it sent? is it stored? SonarQube Server / Community Build sonarqube , ai-codefix	3	102	February 14, 2025
Have few questions regarding Sonarqube 2025.1 LTA version with AI capabalities SonarQube Server / Community Build support	1	35	April 25, 2025
AI features - Sonarqube Enterprise 10.7 SonarQube Server / Community Build sonarqube	5	225	November 19, 2024

Does Sonar AI CodeFix has more details on how it manages users' code?

Related topics