SonarQube Hunter Agent: Enterprise Open Beta Invitation

Hello,

We are happy to announce that our new product, the SonarQube Hunter Agent, is moving from Alpha to Open Beta. The Open Beta will run for 4 weeks.

As an Enterprise customer on SonarQube Cloud, you are invited to participate.

What is the SonarQube Hunter Agent?

The Hunter Agent uses AI-driven instructions (called Playbooks) to reason through code logic. This allows it to find deep security flaws that regular static analysis misses.

The agent currently focuses on backend vulnerabilities, including:

  • Broken Access Control and IDOR (Insecure Direct Object Reference)

  • Business Logic Flaws

  • Authentication & Session Management issues

Beta Requirements & How to Join

To participate, your environment must meet the following criteria:

  • Platform: SonarQube Cloud with an Enterprise Plan.

  • SCM: GitHub, GitLab, and AzureDevOps.

  • Languages: All languages supported by SonarQube Cloud.

How to join: You do not need to reply to this post to get access. You can join the beta directly from the Administration menu of your organization.

Benefits of Participation

  • Early Access: Detect new classes of vulnerabilities in your private code repositories at no cost. This is limited to 800 credits, which is more or less equivalent to 8 full scans of a medium-sized (M) project. This will be a paid feature upon general release.

  • Product Influence: Your feedback will directly shape the development of the tool.

For more details on how the tool works, you can read the Hunter Agent Documentation.

Please share your questions and feedback with us in this thread!

Alex

5 Likes