Code Review Assistant for Bitbucket
Shows compiler warnings, static code analysis results & OWASP vulnerable dependencies in PRs to fight quality and security issues
Shows Compiler and Code Analysis results in PRs
Analyzes build logs and shows compiler (e.g., Java deprecation warnings) and code analysis results (e.g., PMD, ESLint, Checkstyle, ShellCheck, PHPStan, Ktlint) right in a PR, so developers can fix issues before merging.
Shows OWASP dependency vulnerabilities
Shows OWASP dependency scan vulnerability results from the build logs right in your pull requests - including links to the CVE reports. Prevent sneaking security vulnerabilities into your main branch!
Enforces quality requirements with Merge Checks
Provides merge checks for the Compiler and Code Analysis tools to prevent merging in case a configurable threshold of violations is exceeded. Do not allow quality issues to sneak in your main branch!
Show Compiler, Code Analysis and OWASP dependency vulnerability results in your Pull Requests to prevent code quality and security issues.
- Code Analyzers:
- PHP CodeSniffer
Let us know which Compilers or Analyzers you are missing!
Learn more about how to prevent vulnerable dependencies in your code base with this app in our community article.
No configuration necessary in Bitbucket, it just requries that you execute the Compilers and Analyzers in your CI system (Jenkins and Bamboo supported).
Please check our documentation for more information.
Want to know more? Schedule a live demo!
More apps you'll like:
Privacy and security
Shows all found issues with the help of Code Insights.