Skip to main content

AI code review tool with 10 parallel agents. Security scanning, performance analysis, and logic review. Supports MiMo, OpenAI, DeepSeek, Qwen, GLM, Kimi, Anthropic.

Project description

RevHive

Python License LangGraph MiMo Agents CI

AI-Powered Multi-Agent Code Review & Security Scanning System

RevHive deploys 10 specialized AI agents — 9 reviewing in parallel, 1 synthesizing results — to catch security vulnerabilities, performance bottlenecks, logic bugs, and style issues before they reach production.

  • Structured Output — Agents return structured JSON via Pydantic schemas, with regex fallback for unsupported LLMs
  • Semantic Deduplication — Title matching + keyword Jaccard similarity prevents duplicate findings across agents
  • LLM Conflict Resolution — Coordinator uses AI to resolve contradictory assessments between agents

Risk Score

Every review outputs a risk score (0-100) so you know at a glance whether it's safe to merge:

Score Level Meaning
0-20 ✅ LOW Safe to merge
21-50 ⚠️ MEDIUM Review recommended before merge
51-80 🔴 HIGH Fix before merge
81-100 🚨 CRITICAL Do not merge

Example output:

🚨 Risk Score: CRITICAL (91/100)

1 Critical · 1 High · 8 Medium · 11 Low

Why RevHive?

Pain Point RevHive Solution
Manual CR takes 1-2 hours/day 9 agents review in parallel in under 30 seconds
Human reviewers miss subtle bugs Each agent is a domain expert (security, perf, logic...)
"LGTM" culture devalues review Every PR gets a thorough, objective audit
No team-wide quality visibility Trend analysis tracks code health over time

Pricing

Tier Price Reviews Agents Concurrent Inline Comments Commit Status History Slack Support
Free $0 50/mo 4 core 1 Community
Pro $12/mo Unlimited All 9 10 30 days Email (48h)
Business $25/mo Unlimited All 9 100 Permanent Priority (4h SLA)

CLI mode is free foreverpip install revhive-ai, bring your own LLM key, run locally or in CI.

GitHub App uses the tiers above. Start free, upgrade when you need inline annotations, commit status gates, and all 9 agents.

All plans are BYOK — you pay your LLM provider directly. RevHive charges for orchestration, not tokens.

Typical LLM cost per PR review: ~$0.05 with DeepSeek · ~$0.05–0.15 with MiMo · ~$0.10–0.30 with GPT-4o · Free with MiMo credits. You control spend through your own LLM account.

RevHive vs Others

Feature RevHive CodeRabbit Sourcery SonarQube Copilot Review
AI-driven review
Multi-agent parallel ✅ 10
Chinese LLM support ✅ 5 providers
Risk score (0-100)
CLI local-first
Demo mode (no API key) N/A
PR inline comments
Quality gate (status check)
IDE integration 🔜
Open source ✅ BSL Partial
Self-hosted

🔜 = Coming soon

Architecture

┌─────────────┐
│  Coordinator │ ← Synthesizes findings, resolves conflicts
└──────┬──────┘
       │ collects results from 9 parallel agents
       ▼
  Style  Security  Perf  Logic  Repo  Refactor  Fix  Test  Doc

All 9 Review Agents + Coordinator

Agent Role
StyleAgent Naming conventions, formatting, documentation
SecurityAgent SQL injection, XSS, secrets, weak crypto, auth flaws
PerformanceAgent N+1 queries, memory leaks, algorithmic complexity
LogicAgent Edge cases, error handling, race conditions, type safety
RepoAgent Design patterns, SOLID principles, module structure, testability
RefactorAgent Design patterns, code transformation, incremental migration
FixAgent Generates complete corrected code with root cause analysis
TestAgent Unit tests, edge case tests, security regression tests
DocAgent API docs, architecture docs, usage examples
Coordinator Deduplicates (semantic), resolves conflicts via LLM, calculates risk score, generates report

Quick Start

Option A: CLI (30 seconds)

pip install revhive-ai
revhive demo                        # no API key needed
export LLM_API_KEY=your-api-key
revhive review --file src/main.py   # real review

Option B: Docker

docker build -t revhive .
docker run --rm -e LLM_API_KEY=your-api-key -v $(pwd):/code revhive review --file /code/src/main.py

Option C: GitHub App (automatic PR reviews)

Install the GitHub App, paste your LLM API key in the dashboard (auto-created on install), and every PR gets reviewed automatically. Starts free (50 reviews/mo, 4 core agents). Upgrade to Pro ($12/mo) for all 9 agents, inline comments, and commit status gates, or Business ($25/mo) for Slack notifications, permanent history, and priority support. DeepSeek is the default provider in the dashboard — ~$0.05/review.

Demo Mode

RevHive ships with a fully functional demo mode that runs the complete multi-agent pipeline with mock responses. No API key, no network, no cost — perfect for evaluation.

python examples/sample_review.py

This produces a realistic review report identical in structure to a live MiMo-backed run, including:

  • 20+ simulated findings across all 9 review agents
  • Severity-ordered report (CRITICAL / HIGH / MEDIUM / LOW)
  • Markdown and JSON output formats

Supported LLM Backends

Provider Model Cost / Review Setup
DeepSeek deepseek-chat ~$0.05 LLM_BASE_URL=https://api.deepseek.com/v1
MiMo (Xiaomi) mimo-v2.5-pro ~$0.05–0.15 (free credits) LLM_BASE_URL=https://api.xiaomimimo.com/v1
OpenAI gpt-4o ~$0.10–0.30 LLM_BASE_URL=https://api.openai.com/v1
Qwen (Alibaba) qwen-plus ~$0.05–0.10 LLM_BASE_URL=https://dashscope.aliyuncs.com/compatible-mode/v1
Anthropic claude-sonnet-4-20250514 ~$0.15–0.40 pip install -e ".[anthropic]", set ANTHROPIC_API_KEY

Quick preset: Set LLM_MODEL to a preset name (e.g., deepseek, openai, qwen) and RevHive auto-configures the base URL. Explicit LLM_BASE_URL takes priority.

CLI default: MiMo (mimo-v2.5-pro). GitHub App dashboard default: DeepSeek (deepseek-chat) — the cheapest option at ~$0.05/review.

Supported Languages

RevHive's LLM-powered agents can review code in any language. Currently optimized for:

Language Extensions Security Patterns Performance Patterns
Python .py ✅ Full ✅ Full
JavaScript/TypeScript .js .jsx .mjs .ts .tsx ✅ Full ✅ Full
Go .go ✅ Full ✅ Full
Rust .rs ✅ Full ✅ Full
Java .java ✅ Full ✅ Full
C/C++ .c .cpp .h .hpp ✅ Core ⚠️ Basic
Ruby .rb ✅ Core ⚠️ Basic
PHP .php ✅ Full ⚠️ Basic
Swift .swift ✅ Core ⚠️ Basic
Kotlin .kt ✅ Core ⚠️ Basic

Other languages are supported via LLM understanding but may have fewer specialized patterns.

Environment Variables

Variable Required Default Description
LLM_API_KEY Yes API key for the LLM provider
LLM_BASE_URL No https://api.xiaomimimo.com/v1 LLM API endpoint
LLM_MODEL No mimo-v2.5-pro Model name

Configuration

Create .revhive.yml in your project root:

model: mimo-v2.5-pro

agents:
  style:
    enabled: true
  security:
    enabled: true
    severity_threshold: medium   # only report medium and above
  performance:
    enabled: true
  logic:
    enabled: true
  repo:
    enabled: true
  refactor:
    enabled: true
  fix:
    enabled: true
  test:
    enabled: true
  doc:
    enabled: false               # disable documentation agent

ignore:                          # glob patterns — ** matches any depth
  - "*.min.js"
  - "*.min.css"
  - "vendor/**"
  - "node_modules/**"
  - "migrations/**"
  - "__pycache__/**"
  - ".git/**"
  - ".venv/**"

GitHub App Integration

Install the GitHub App for automatic PR reviews. Every PR gets a detailed review report — no CLI needed.

# .github/workflows/code-review.yml
name: AI Code Review
on:
  pull_request:
    types: [opened, synchronize]
jobs:
  review:
    runs-on: ubuntu-latest
    permissions:
      contents: read
      pull-requests: write
    steps:
      - uses: actions/checkout@v4
        with:
          fetch-depth: 0
      - uses: actions/setup-python@v5
        with:
          python-version: "3.12"
      - run: pip install revhive-ai
      - name: Run RevHive Review
        env:
          LLM_API_KEY: ${{ secrets.LLM_API_KEY }}       # DeepSeek is ~$0.05/review
          LLM_BASE_URL: https://api.deepseek.com/v1
          LLM_MODEL: deepseek-chat
        run: |
          revhive review --diff HEAD~1 --format markdown --output review_report.md
      - name: Post Review Comment
        uses: actions/github-script@v7
        with:
          script: |
            const fs = require('fs');
            const report = fs.readFileSync('review_report.md', 'utf8');
            github.rest.issues.createComment({
              issue_number: context.issue.number,
              owner: context.repo.owner,
              repo: context.repo.repo,
              body: report
            });

Project Structure

src/revhive/
  agents/          # 10 specialized agents (9 review + coordinator)
  graph/           # LangGraph workflow orchestration
  utils/           # Utility modules
  team/            # Batch processing engine
  analysis/        # Historical trend analysis
  demo.py           # Demo mode (no API key required)
  main.py           # CLI entry point
tests/              # 54+ tests covering agents, workflow, demo, dedup, integration
examples/           # Ready-to-run examples

Security

RevHive takes its own security seriously:

  • Dependency scanningpip-audit runs in CI on every push and PR to catch known CVEs in dependencies.
  • Static analysisbandit scans the source code for common security issues (hardcoded secrets, unsafe deserialization, injection risks).
  • Docker hardening — the container runs as a non-root user (appuser). Sensitive files (.env, *.pem, .git/) are excluded via .dockerignore.

To run security checks locally:

pip install pip-audit bandit
pip-audit
bandit -r src/ -ll --skip B101

Contributing

See CONTRIBUTING.md. All contributions welcome!

License

BSL 1.1 — see LICENSE. Converts to Apache 2.0 on 2030-05-12.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

revhive_ai-0.3.10.tar.gz (68.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

revhive_ai-0.3.10-py3-none-any.whl (68.8 kB view details)

Uploaded Python 3

File details

Details for the file revhive_ai-0.3.10.tar.gz.

File metadata

  • Download URL: revhive_ai-0.3.10.tar.gz
  • Upload date:
  • Size: 68.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.0

File hashes

Hashes for revhive_ai-0.3.10.tar.gz
Algorithm Hash digest
SHA256 5aea5d4a321dd9d407f5d40910239f9ec283a46c0cb1c8eb28e967bf171c69bc
MD5 02875fb5787dec8276eb1eec6295acb9
BLAKE2b-256 9c3ed3c8cabcae3fd84c1399f59a248dbe7bcc139514dd7af67c2f2e89f7d5d7

See more details on using hashes here.

File details

Details for the file revhive_ai-0.3.10-py3-none-any.whl.

File metadata

  • Download URL: revhive_ai-0.3.10-py3-none-any.whl
  • Upload date:
  • Size: 68.8 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.0

File hashes

Hashes for revhive_ai-0.3.10-py3-none-any.whl
Algorithm Hash digest
SHA256 5208630a71287cfd9fab84aad65a3f5de5f9a1688b12d976828c5921f25f4212
MD5 d41e9113ae34125ccec0acce7ef19b82
BLAKE2b-256 4f5360a48f73d758717206ab6c910af75c40a0c775b51f72887d9abc953b9013

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page