Bob the Fixer – open-source AI code-fixing tool that runs locally (0.1.0-beta) (bobthefixer.dev)

Bob the Fixer (v0.1.0-beta) is an open-source, locally run AI assistant that automates security and code-quality remediation by integrating SonarQube scans with command-line AI models. Installed via a one-line script, it scans repositories, surfaces issues (e.g., SQL injection flagged as CRITICAL), generates and applies fixes, runs test suites, and re-scans to measure technical debt reduction — all on your machine. It’s AGPL-3.0 licensed, bundles an “intelligent installer” for Linux/macOS SonarQube and tool dependencies, and connects to supported AI CLI tools using the MCP protocol so no extra cloud API keys are required. Technically, Bob orchestrates SonarQube’s analysis with 16 integrated MCP tools, uses local LLMs or CLI assistants to synthesize context-aware patches, and validates changes by running tests (example: applied a parameterized query to fix SQL injection; converted raw List usage to List<Order>, added null checks and modern Java streams). The product promises continuous monitoring to drive “zero technical debt,” but it’s an early beta: outcomes depend on model accuracy, test coverage, and SonarQube rules. For teams wanting private, automated remediation workflows, Bob offers a compelling local-first option; however, evaluate fixes and licensing implications (AGPL) before adopting in production.