Hi,
It seems that https://github.com/mc1arke/sonarqube-community-branch-plugin now support pull request decoration. Perhaps can you archive this project, referencing the sonarqube-community-branch-plugin.

(Would help to focus on a single project for contributions)

The version comparison for determine if the Bitbucket server has code insights capabilities has a bug where it returns false if the minor version is less that 15.

e.g. Server version 6.7.1 returns false since the minimum compatible version is 5.15 and 7 is less than 15.

When decorating a Maven project PullRequest, the annotation path is set to project name (wopi-core in this example):

    {
      "reportKey": "com.github.goober.sonarqube.plugin.decorator",
      "externalId": "AXFjQ3PaPs6sIuLymv_G",
      "line": 300,
      "link": "https://<sonarUrl>/project/issues?id=fr.kosmos.wopi:wopi-core&pullRequest=5&open=AXFjQ3PaPs6sIuLymv_G",
      "message": "',' is not followed by whitespace.",
      "path": "wopi-core",
      "severity": "LOW",
      "type": "CODE_SMELL"
    }

In Sonar API, this issue has following payload:

      "key": "AXFjQ3PaPs6sIuLymv_G",
      "rule": "checkstyle:com.puppycrawl.tools.checkstyle.checks.whitespace.WhitespaceAfterCheck",
      "severity": "MINOR",
      "component": "fr.kosmos.wopi:wopi-core:src/main/java/fr/kosmos/wopi/web/WebAbstractionService.java",
      "project": "fr.kosmos.wopi:wopi-core",
      "line": 300,
      "hash": "53a1de7f43f3cd86c88cb228d07e9504",
      "textRange": {
        "startLine": 300,
        "endLine": 300,
        "startOffset": 0,
        "endOffset": 111
      },
      "flows": [],
      "status": "OPEN",
      "message": "',' is not followed by whitespace.",
      "effort": "2min",
      "debt": "2min",
      "assignee": "prenom.nom",
      "tags": [],
      "creationDate": "2019-10-11T13:48:10+0200",
      "updateDate": "2020-04-10T10:44:00+0200",
      "type": "CODE_SMELL",
      "organization": "default-organization",
      "pullRequest": "5",
      "fromHotspot": false
    },

So the right path is the last part of component key, instead of second part used when mapping this property here:

I have SonarQube 8 installed and branch community plugin installed. I cant find azure devops in the list of pull request providers on SonarQube Configuration Dashboard. I can successfully run PR but can see it decorate vulnerabilities. Please assist.

SonarQube version 7.9.2

Sonar properties contains:
sonar.pullrequest.bitbucket.endpoint=https://subdomain.domain.name
In Global > Configuration > Pull reuqest, the properties is overloaded with:
sonar.pullrequest.bitbucket.endpoint=https://anothersubdomain.domain.name

When running pull-requests analysis, it's subdomain is used instead of anotherdomain.
My use case is to validate Sonar on a staging environment with a diffrent Bitbucket URL.