How it works
When a pull request is opened or updated, the agent receives a webhook from GitHub and begins its review process.
Code analysis โ reads the full diff and understands context across your codebase.
Style enforcement โ checks against your linting rules, naming conventions, and patterns.
Security scanning โ flags SQL injection, XSS, hardcoded secrets, and more.
Review comments โ posts inline comments with clear explanations and suggested fixes.
Summary โ a top-level comment summarizes findings with a pass/fail recommendation.
What you need
A GitHub integration connected to your ZiraLoop workspace.
A Slack integration (optional) for notifications.
A Linear integration (optional) for auto-creating issues from findings.
Configuration
Severity threshold โ flag only critical issues or include warnings and suggestions.
Auto-approve โ optionally auto-approve PRs that pass all checks.
Custom rules โ add your own review rules using natural language.
Ignore patterns โ skip files matching certain globs (generated code, vendor dirs).