PR Reviewer

Reads PR diffs, analyzes for security vulnerabilities, performance issues, and code quality. Uses explore sub-agent to understand codebase context. Optionally posts review directly to GitHub.

$0.05-0.10 per run ~15-30 seconds Requires github

How it works

STEP 1

Reads the PR

Fetches PR diff, changed files, and description via GitHub MCP

STEP 2

Analyzes the code

Checks for security vulnerabilities, performance issues, and code quality

STEP 3

Delivers review

Structured findings with severity, line references, and fix suggestions

Example output

## Review: PR #47 — Add user profile endpoint

Overall: Needs Changes (1 critical, 2 suggestions)

### 🔴 Critical

src/routes/api.ts:23 — SQL injection vulnerability

- db.query(`SELECT * FROM users WHERE id = '${id}'`)

+ db.query('SELECT * FROM users WHERE id = $1', [id])

### ⚠️ Suggestions

src/middleware/auth.ts:45 — Missing token expiry check

### ✅ Good Patterns

Clean route separation, proper error handling, TypeScript types

Cost: $0.07 | Tokens: 42,318 | Duration: 18.3s

What you configure

Connections

GitHub — Access repos, PRs, issues, and code

Parameters

repo—GitHub repositoryrequired

pr_number—Pull request numberrequired

review_focus—What to focus on

post_review—Post review as GitHub PR comment

githubcode-reviewsecurityci-cd

Ready to use PR Reviewer?

Connect your services, configure, and run — all from the browser.

Use This Template Run History