Code Review AI
Showing 24 of 28 tools
Baz
Telemetry-aware AI code reviewer that checks how pull requests may affect real services.
Baz is an AI code-review platform focused on production-aware pull requests. Instead of only reading the diff, Baz connects code changes to application telemetry so reviewers can understand what endpoints, services, and runtime behavior may be affected. That makes it a useful complement to existing AI PR bots when the question is not just whether a change looks correct, but whether it could break a live system.
reviewdog
Automated code review for any linter on CI
reviewdog is an open-source automated code review tool that integrates any linter or static analysis tool with GitHub, GitLab, Bitbucket, and Gitea pull requests. Parses output in errorformat, Checkstyle XML, SARIF, and JSON formats to post inline review comments on changed lines only. Works with GitHub Actions, Travis CI, CircleCI, GitLab CI, and Jenkins. Supports 40+ languages through universal linter adapter architecture.
mrge
LSP-based AI code review agent backed by Y Combinator
mrge is a YC-backed AI code review agent that uses Language Server Protocol analysis to provide deep, context-aware pull request reviews. It goes beyond surface-level pattern matching by understanding project structure, type information, and cross-file dependencies. Integrates with GitHub and GitLab to deliver automated reviews that catch logic errors, security issues, and architectural inconsistencies.
WhatTheDiff
AI-powered pull request summaries and code review
WhatTheDiff is an AI tool that generates human-readable pull request summaries and suggests code improvements. It analyzes code diffs to explain what changed and why in plain language, helping reviewers understand PRs faster. Integrates with GitHub and supports automated refactoring suggestions through a /wtd command. Useful for teams wanting to improve PR review speed and maintain changelog quality.
Umaku
Context-aware AI review with business logic validation
Umaku is a context-aware AI code review agent that understands full codebase and business logic context, detecting inconsistencies and assessing quality and risk beyond syntax-level analysis. It auto-generates and validates QA test cases from reviewed code, making it particularly effective for reviewing AI-generated code where product-intent validation matters more than style checking.
CodeScene
Code health analysis and technical debt quality gates
CodeScene analyzes code health, technical debt, and delivery risks by examining code patterns and change frequency, then integrates as CI/CD quality gates on pull requests. It scales AI-assisted development safely by measuring whether generated code maintains architectural integrity, with on-premises deployment options and pricing that starts free for open-source projects.
Amazon CodeGuru Reviewer
AWS managed AI code review for Java and Python
Amazon CodeGuru Reviewer is an AWS managed service that provides automated code analysis and recommendations on pull requests for Java and Python codebases. It integrates with GitHub, Bitbucket, and AWS CodeCommit, using machine learning trained on Amazon's internal code review practices to identify bugs, security vulnerabilities, and performance issues with IAM-based access control for enterprise governance.
Codoki
AI reviewer that catches hallucinations in generated code
Codoki is a specialized AI code reviewer focused on catching hallucinations in code generated by autonomous agents like Devin and Claude Code. It validates that AI-proposed code actually functions according to provided requirements, serving as a critical safety layer for teams where AI agents generate a significant portion of the codebase and human review capacity cannot keep pace with generation speed.
ReviewPad
Automated PR workflow with AI review and labeling
ReviewPad automates the pull request workflow by applying team-defined rules for labeling, assigning reviewers, and providing AI-powered feedback on code changes. Its open-source GitHub repository supports custom automation scripts that standardize the review cycle, making it essential for mid-to-large teams enforcing governance without sacrificing development velocity across multiple repositories.
Cubic
AI code review that groups and orders PR changes
Cubic is an AI-powered code review platform used by teams at cal.com and n8n that organizes complex PRs by grouping files logically (Backend → API → UI) and provides an AI walkthrough of changes. At paid/team pricing should be verified in Cubic’s current purchase flow; it solves the jumpiness problem in large pull requests where reviewers lose context hopping between unrelated files, offering one-click fixes and custom rule enforcement.
Ellipsis
AI coding agent for code review and bug fixing
Ellipsis is a YC W24-backed AI coding teammate for GitHub repositories that reviews pull requests, catches bugs, writes summaries, answers codebase questions, and generates tested fixes from comments or issues. It pairs automated review with code generation, $20/dev/month seat pricing, SOC 2 Type 1 controls, and no source-code persistence between workflows.
PR-Agent
Open-source AI-powered PR review with slash commands
PR-Agent by Qodo is the most widely adopted open-source AI code review tool with 11,500+ GitHub stars and 207 contributors. It provides automated PR description generation, intelligent line-by-line code review, and actionable improvement suggestions through intuitive slash commands like /describe, /review, and /improve, integrating natively with GitHub Actions, GitLab CI, Bitbucket, and Azure DevOps.
Kodus
Open-source AI code review with hybrid AST-LLM
Kodus is an open-source AI code review platform that combines AST analysis with LLM reasoning to reduce noisy comments. Kody learns team standards, supports GitHub, GitLab, Bitbucket, and Azure DevOps, is model-agnostic across Claude, GPT, Gemini, Llama and OpenAI-compatible endpoints, and offers free/community, $10/dev monthly or $8/dev annual Teams, and Enterprise options.
CodeAnt AI
All-in-one AI code review, security, and quality
CodeAnt AI combines AI code review, SAST, secret detection, IaC security, policy enforcement, compliance dashboards, and agentic pentesting in one platform for engineering teams that want code quality and security checks before production.
BugBot
AI code review by Cursor with multi-pass parallel analysis
BugBot is Cursor's AI pull request review layer for teams that want automated PR comments, custom rules, learned repository standards, and agent-assisted fixes close to their coding environment. Current docs list GitHub, GitHub Enterprise Server, GitLab, GitLab Self-Hosted, and Bitbucket Cloud setup paths. Pricing is usage-based, so Cursor-heavy teams should manage effort levels, privacy/storage settings, and review spend.
Panto AI
Unified AI code review and application security platform
Panto AI is a unified AI-driven code review and application security platform that combines static analysis, secrets detection, dependency scanning, and infrastructure-as-code security into a single PR workflow. It contextualizes issues based on repository structure and code history to deliver actionable insights directly within pull requests on GitHub, GitLab, and Bitbucket with zero-configuration onboarding and compliance-ready reporting for SOC 2, ISO, and PCI-DSS.
DeepSource
Automated code quality platform with AI autofix
DeepSource is a code quality, security, and AI review platform for repositories across GitHub, GitLab, Bitbucket, and Azure DevOps. It combines static analysis, SCA, coverage, license compliance, quality gates, Autofix, and AI Review. Team is listed at $24/user/month yearly; Open Source is limited to public repositories with 1,000 PR reviews/month, while AI Review/Autofix use credits or pay-as-you-go.
SonarCloud
Managed SonarQube Cloud code quality and security analysis for CI/CD workflows.
SonarQube Cloud, still commonly associated with the SonarCloud name, is SonarSource’s managed code quality and security SaaS for GitHub, GitLab, Bitbucket, and Azure DevOps. It scans pull requests for bugs, vulnerabilities, security hotspots, code smells, duplication, and coverage regressions, then enforces Quality Gates without running SonarQube Server. Current Sonar docs frame the cloud service around 40+ languages, with Team from $32 monthly and Enterprise custom.
SonarQube
Code quality and security analysis platform
SonarQube is an open-source code quality and security platform with 10K+ GitHub stars that inspects code for bugs, vulnerabilities, code smells, and security hotspots. It enforces quality gates in CI/CD pipelines, supports 30+ languages in Team plans and 40+ in Enterprise, and remains the industry standard for static code quality management.
Semgrep
Fast open-source SAST with custom rules
Semgrep is an AppSec platform with a widely used open-source engine for readable code rules plus commercial SAST, supply-chain and secrets workflows. Current product positioning emphasizes AI-assisted detection, triage and remediation, CI/pull-request integration and managed governance for security teams.
Snyk
Developer-first security platform
Snyk is the leading developer security platform providing continuous scanning for vulnerabilities in code (SAST), open-source dependencies (SCA), container images, and infrastructure as code. Integrates directly into IDEs, Git repositories, CI/CD pipelines, and container registries. Features AI-powered fix suggestions, license compliance checking, and real-time vulnerability database. Free for individual developers with paid plans for teams. Supports 30+ programming languages.
Greptile
AI code review with full codebase context
Greptile is a Y Combinator-backed AI code review tool that indexes your entire codebase to build a semantic code graph of functions, classes, and dependencies. Unlike diff-only reviewers, it catches cross-file issues, architectural drift, and convention violations with an 82% bug catch rate. Supports GitHub, GitLab, Jira, Slack, and VS Code. Offers cloud and self-hosted VPC deployment with SOC2 Type II compliance. Used by 250+ companies including Stripe and Amazon.
Graphite
AI developer productivity platform with stacked PRs
Graphite is an AI-powered developer productivity platform that combines stacked pull requests with intelligent code review. Its AI agent catches real bugs with an under 3% unhelpful comment rate and offers one-click fixes directly in the PR flow. The stacked PR workflow breaks large changes into smaller, sequenced diffs that merge independently, keeping developers unblocked. Includes a stack-aware merge queue, CLI tool, VS Code extension, unified PR inbox, and deep GitHub integration.
Sourcery
AI-powered code review and refactoring assistant
Automated code reviewer that integrates with GitHub PRs. Detects code quality issues, suggests refactoring, and auto-generates reviews. Python specialist with growing JS/TS support and 1.8k+ GitHub stars. Enforces team coding standards consistently and helps developers learn best practices through inline suggestions on every pull request.