GENEVA & AUSTIN – December 8, 2025 – Sonar, the industry standard for code quality verification, and trust, today announced the launch of the Sonar Research Grant Program, committing $2.8 million in licenses for SonarQube Cloud Enterprise and SonarQube Advanced Security to the academic research community. The initiative seeks to empower academic researchers to deepen their ability to leverage the full depth of Sonar’s code quality and code security analysis features, especially as AI continues to transform the Software Development Lifecycle.
"Every organization is grappling with the complexity of modern software development, from managing massive codebases to understanding how to use AI coding tools safely and effectively,” said Tariq Shaukat, CEO of Sonar. “This grant program puts our most advanced analysis features into the hands of researchers, enabling them to conduct high-impact studies. We are eager to see the resulting insights, looking at how companies can effectively evolve their quality, verification, and trust practices in a world of AI driven transformation."
Accelerating research with enterprise tools
The Sonar Research Grant Program is designed to remove the financial and technological barriers preventing high-impact research. By providing access to commercial licenses, Sonar is providing the definitive verification mechanism necessary to study code health at a full level of depth and across over 30 programming languages.
This access unlocks SonarQube features essential for complex, enterprise-grade studies,
including:
- Analysis at Enterprise scale with governance: Researchers receive SonarQube Cloud Enterprise licenses, enabling analysis of up to one million lines of code (LOCs). This includes access to detailed reporting and governance reports suitable for studying and managing large, complex data sets and architectures.
- Deep security context: Access to SonarQube Advanced Security provides high-fidelity features like Advanced SAST and Software Composition Analysis (SCA), allowing for the study of real-world vulnerabilities and third-party dependency risks in AI-generated code.
- Remediation studies: The capacity to measure and develop best practices for using AI CodeFix for automated code repair and refactoring is now unlocked, enabling studies focused purely on maximizing developer productivity.
Sonar is currently accepting proposals from accredited research universities and institutions. The full application requirements and proposal guidelines can be found here.
About Sonar
Sonar is the trust and verification layer for AI code, and the industry standard for automated code review for 17+ years. Integrating code quality and code security into a single platform, Sonar delivers deterministic, repeatable, and actionable code verification at scale, analyzing over 750 billion lines of code daily to ensure software is secure, reliable, and maintainable. Rooted in the open source community, Sonar is trusted by 7M+ developers globally, including teams at Microsoft, Adobe, Deutsche Bank, AstraZeneca, and Ford Motor Company.
To learn more about Sonar, please visit: www.sonar.com