← 返回
未分类 中文

AI Code Reviewer

Automated code review — security vulnerabilities, performance issues, best practices, refactoring suggestions, and documentation gaps. Supports Python, JavaS...
自动化代码审查 — 安全漏洞、性能问题、最佳实践、重构建议、文档缺失。支持 Python、JavaScript 等。
tktk-ai tktk-ai 来源
未分类 clawhub v1.0.0 1 版本 100000 Key: 无需
★ 0
Stars
📥 396
下载
💾 0
安装
1
版本
#latest

概述

AI Code Reviewer

Comprehensive automated code reviews — security, performance, best practices, and refactoring suggestions.

What It Does

  1. Security Scan — SQL injection, XSS, SSRF, secrets in code, insecure dependencies
  2. Performance Analysis — N+1 queries, memory leaks, inefficient loops, caching opportunities
  3. Best Practices — Code style, naming conventions, SOLID principles, DRY violations
  4. Refactoring Suggestions — Concrete before/after code improvements
  5. Documentation Gaps — Missing docstrings, unclear function names, no type hints
  6. Complexity Analysis — Cyclomatic complexity, function length, nesting depth
  7. PR-Ready Comments — Output formatted as pull request review comments

Usage

Full Code Review

Review this code for security, performance, and best practices:

Language: [Python/JavaScript/TypeScript/Go/Rust]
Context: [What does this code do?]
Priority: [Security first / Performance first / General review]

[Paste code or file path]

For each issue found:
1. Severity (critical/high/medium/low)
2. Category (security/performance/style/bug)
3. Line reference
4. What's wrong
5. How to fix (with corrected code)

Security-Focused Review

Security audit this code. I'm looking for:
- SQL injection vulnerabilities
- XSS attack vectors
- Authentication/authorization bypasses
- Secrets or credentials in code
- Insecure dependencies
- SSRF/CSRF vulnerabilities
- Input validation gaps

Language: [Language]
[Paste code]

Performance Review

Analyze this code for performance issues:
- Database query efficiency (N+1, missing indexes)
- Memory usage and potential leaks
- Algorithm complexity (can it be optimized?)
- Caching opportunities
- Async/concurrency improvements

Context: This handles [X requests/second] and processes [Y data]
[Paste code]

Refactoring Guide

Suggest refactoring improvements for this code:
- Reduce complexity
- Improve readability
- Apply design patterns where beneficial
- Remove duplication
- Improve testability

Show before/after for each suggestion.
[Paste code]

PR Review Format

Review this pull request diff:

[Paste diff or describe changes]

Output as PR comments:
- File: [filename]
- Line: [number]
- Comment: [review comment]
- Suggestion: [code suggestion if applicable]

Output Format

# Code Review Report

**Files Reviewed**: [count]
**Language**: [language]
**Overall Score**: [X/100]

## 🔴 Critical Issues ([count])

### Issue 1: [Title]
- **Severity**: Critical
- **Category**: Security
- **Location**: [file:line]
- **Problem**: [Description]
- **Impact**: [What could happen]
- **Fix**:
  ```[language]
  // Before (vulnerable)
  [old code]
  
  // After (fixed)
  [new code]
  ```

## 🟡 Warnings ([count])
[Medium-severity issues]

## 🔵 Suggestions ([count])
[Low-severity improvements]

## 🟢 Positive Observations
[What's already good about the code]

## Summary
- Critical: [X] (must fix before merge)
- Warnings: [X] (should fix soon)
- Suggestions: [X] (nice to have)
- Score: [X/100]

Supported Languages

  • Python (3.8+)
  • JavaScript / TypeScript
  • Go
  • Rust
  • Ruby
  • PHP
  • Java / Kotlin
  • C / C++
  • Shell / Bash

Best Practices

  • Provide context about what the code does — better context = better review
  • Specify your priority (security vs performance vs general)
  • For large codebases, review one module/file at a time
  • Pair with security-auditor for infrastructure-level security checks
  • Use the PR format output to paste directly into GitHub/GitLab reviews

References

  • references/security-patterns.md — Common vulnerability patterns by language
  • references/performance-patterns.md — Common performance anti-patterns

版本历史

共 1 个版本

  • v1.0.0 当前
    2026-05-07 10:55 安全 安全

安全检测

腾讯云安全 (Keen)

安全,无风险
查看报告

腾讯云安全 (Sanbu)

安全,无风险
查看报告

🔗 相关推荐

data-analysis

Data Enrichment

tktk-ai
使用公开数据(公司信息、技术图谱、社交资料、融资历史和员工数量估算)丰富公司和联系人列表,并进行清理和去重。
★ 0 📥 545
dev-programming

Github

steipete
使用 `gh` CLI 与 GitHub 交互,通过 `gh issue`、`gh pr`、`gh run` 和 `gh api` 管理议题、PR、CI 运行及高级查询。
★ 683 📥 330,595
dev-programming

CodeConductor.ai

larsonreever
AI驱动平台,提供快速全栈开发、智能体、工作流自动化及低代码AI集成的可扩展产品创建。
★ 79 📥 182,848