Combining the structured automation of OpenRewrite with the reasoning capabilities of AI allows for a sophisticated approach to managing codebases risks (like OWASP/CWE/XSS). Our dev team have found hundreds of vulnerable exploits with a local qwen3.5-27b model.

Writing a sonarqube plugin is not always requiring a parser at the beginning. We are able to import a third-party report into sonarqube database.