New in v1

AI PR Review

Automated AI-powered code review for pull requests. Catches security vulnerabilities, performance issues, and style violations before they hit production.

Key Features

Automated Review

Instant analysis of every PR, no manual trigger needed

Security Scanning

Detect SQL injection, XSS, hardcoded secrets, and more

Performance Analysis

Spot inefficient code patterns and memory leaks

Best Practices

Follow language-specific conventions automatically

Auto-Fix Generation

One-click fixes for common issues

GitHub Integration

Post reviews as comments directly to PRs

Test Coverage

Ensure new code is properly tested

Complexity Scoring

Identify overly complex code that needs refactoring

Security Vulnerabilities Detected

SQL Injection

XSS (Cross-Site Scripting)

Hardcoded Secrets/API Keys

Path Traversal

Unsafe eval() usage

Command Injection

Insecure Deserialization

SSRF (Server-Side Request Forgery)

Authentication Bypass

Sensitive Data Exposure

Commands

Use the Command Palette to run PR review actions: analyze the current pull request, review just the active file, export the review as Markdown, post the review to GitHub, or apply all auto-fixes at once.

Configuration

In Settings you can enable or disable PR review, turn on auto-analyze on PR creation, include security and performance checks, require test coverage with a minimum percentage, and enable GitHub integration to post comments to PRs.

Docs IDEPR Review