Gitar

Gitar is an AI code review product from SonarSource, the company behind the SonarQube platform. It is positioned as a new addition to the Sonar product family, labeled "New" on the SonarSource homepage, and described as an AI code review tool that fixes issues and commits only when your build passes. SonarSource acquired Gitar to bring AI-driven code review into its verification platform, which the company describes as purpose-built for how agents code.

What It Is

Gitar is an automated AI code review tool that integrates into CI/CD workflows to detect and fix code issues before they reach production. Unlike passive analysis tools, Gitar is designed to take action — it applies fixes and only commits those changes when the build passes, creating a safety gate that prevents broken code from being merged. It sits within SonarSource's broader ecosystem of code quality and security products, complementing SonarQube Cloud, SonarQube Server, and SonarQube for IDE.

How It Fits in the Sonar Ecosystem

Gitar is one of several products in the SonarSource portfolio targeting the agentic development era. SonarSource describes its Agent Centric Development Cycle (AC/DC) methodology as a framework for ensuring AI agents operate in a trustworthy, consistent, and transparent way. Gitar occupies the automated code review layer of this stack, while other products like the Remediation Agent, Agentic Analysis (open beta), and Context Augmentation handle adjacent parts of the AI-assisted development workflow.

• SonarQube for IDE — on-the-fly analysis in the editor
• Gitar — AI code review that fixes and commits only on passing builds
• Remediation Agent — fix code issues at scale, on demand (open beta)
• MCP Server / SonarQube CLI — brings code quality into AI and agentic workflows

Acquisition and Current Status

The SonarSource homepage explicitly states "Sonar acquires Gitar, bringing AI code review to the verification platform purpose-built for how agents code." Gitar is marked as "New" in the product navigation, indicating it is a recently launched or recently integrated product within the Sonar family. No standalone Gitar-specific pricing page was found in the available sources; the product appears to be part of the broader SonarQube offering.

Target Audience and Use Case

Gitar is aimed at development teams that use AI coding agents and want automated verification of the code those agents produce. The core value proposition, as stated on the SonarSource product page, is that it reviews code, applies fixes, and only commits when the build passes — reducing the risk of AI-generated code introducing regressions or quality issues. It is relevant for teams adopting tools like Cursor, Windsurf, Claude Code, GitHub Copilot, Devin, and Codex, all of which SonarSource lists as native integrations across its platform.

Platform and Integration Context

SonarSource states it provides native integrations with every major AI coding agent through MCP, CLI, IDE plugins, and hooks. Gitar, as part of this ecosystem, benefits from these integrations. The broader SonarQube platform supports 40+ languages and frameworks and integrates with GitHub, GitLab, Bitbucket, and Azure DevOps. Gitar's build-gate commit model means it is designed to work within existing CI/CD pipelines rather than requiring a separate workflow.