Early Access Program — By using this feature, you agree to the SonarSource Early Access Terms and acknowledge the Privacy Notice.

Sonar Review is an AI-powered code review bot for GitHub Pull Requests, combining AI analysis and reasoning with SonarQube Cloud deterministic analysis. It reviews your PRs automatically, posts concise feedback inline, and stays quiet when there's nothing to say.

---

What it does

Every time a PR is opened or updated, the bot runs a full review grounded in SonarQube Cloud data: bugs, vulnerabilities, code smells, security hotspots, test coverage gaps, and code duplication. Feedback is posted as inline comments on the relevant diff lines, alongside a plain-language summary of what the PR does and why.

On follow-up commits, it only reviews what changed. Already-known issues are skipped, resolved ones are marked as fixed, and if nothing new was introduced, the bot stays silent.

On demand

Comment @sonar-review-alpha review on any PR to trigger a review, or @sonar-review-alpha cancel to stop one in progress. Reviews can also be re-triggered from the GitHub Checks tab without pushing new code.

Extras

The summary comment includes two optional one-click actions: Generate Walkthrough for a step-by-step breakdown of the changes, and Generate Diagram for a Mermaid flow or architecture diagram. Use 👍 / 👎 reactions on any comment to signal whether the feedback was useful.

Language support

The bot detects the developer's language from the PR description and writes feedback accordingly, with support for English, French, German, Spanish, and more.

Compatibility

Works with monorepos (multiple SonarQube Cloud project bindings), skips draft PRs, and falls back to an AI-only review for repos not yet bound to a SonarQube Cloud project.

---

Alpha feature, available to selected organizations. Subject to change.