codexair

AI-Powered Code Reviews That Catch Bugs, Improve Quality, and Accelerate Dev Velocity

Comment

๐Ÿš€ Inspiration

Modern code reviews are often time-consuming, subjective, and inconsistent across teams. We built CodexAir to empower developers and teams with real-time, AI-powered insightsโ€”enhancing code quality, detecting vulnerabilities early, and promoting engineering excellence without slowing development cycles.

๐Ÿง  What it does

CodexAir automates and enriches code reviews on GitHub with AI and static analysis. It provides:

  • โœ… Automated code quality scoring
  • ๐Ÿ” Security vulnerability detection with CVE/CWE mapping
  • ๐Ÿš€ Performance and refactoring suggestions
  • ๐Ÿงฌ Semantic duplicate code detection via vector search
  • ๐Ÿ“Š Dashboards with team metrics, quality trends, and PR comparisons
  • ๐Ÿ’ฌ Inline suggestions and auto-fix patches through GitHub comments

๐Ÿ—๏ธ How we built it

CodexAir is a full-stack, serverless platform built with:

  • Frontend & Backend: Next.js 14 (App Router) with API routes
  • Database: MongoDB Atlas + Vector Search for embeddings & metadata
  • AI Analysis: Google Vertex AI (Gemini Pro) for code scoring & embeddings
  • Authentication: NextAuth.js + GitHub OAuth
  • PR Sync & Comments: GitHub API (Octokit)
  • UI: ShadCN UI, Radix UI, Recharts
  • Caching: Redis for GitHub API rate limits
  • Deployment: Vercel with CI/CD via GitHub Actions

๐Ÿง— Challenges we ran into

  • Efficiently handling large diffs and multi-file PRs
  • Tuning AI prompts for consistent and accurate suggestions
  • Managing GitHub rate limits with caching and retries
  • Aligning vector similarity logic to real-world developer expectations
  • Embedding non-intrusive inline suggestions into GitHub workflows

๐Ÿ† Accomplishments that we're proud of

  • Created a complete AI-powered code review loop
  • Integrated CWE/CVE scanning into live PR analysis
  • Built semantic vector search to detect duplicate code across PRs
  • Designed a production-ready dashboard with live metrics
  • Deployed seamlessly on Vercel with CI/CD pipelines

๐Ÿ“š What we learned

  • How to combine LLM reasoning with static analysis
  • The capabilities and limitations of AI embeddings for code
  • The importance of developer trust in AI-assisted tools
  • Advanced usage of MongoDB Vector Search, Vertex AI, and GitHub APIs

๐Ÿ”ฎ What's next for CodexAir

  • ๐ŸŒ Multi-language support (currently JavaScript/TypeScript)
  • ๐Ÿ”ฅ Codebase-wide heatmaps and technical debt tracking
  • ๐Ÿ› ๏ธ Custom rule definitions for enterprise use
  • ๐Ÿ“ˆ Team analytics + Slack/Discord alerts
  • ๐Ÿงพ Compliance-ready exports (SOC2, ISO27001, etc.)
  • ๐Ÿงฉ Plugin marketplace for stack-specific AI review models

๐Ÿ›  Built with

Next.js 14, TypeScript, MongoDB Atlas, MongoDB Vector Search, Google Vertex AI (Gemini Pro), Redis, GitHub OAuth, GitHub API (Octokit), ShadCN UI, Radix UI, Recharts, NextAuth.js, Vercel, GitHub Actions

Built With

  • genimi
  • github
  • github-api-(octokit)
  • github-oauth
  • mongodb-atlas
  • mongodb-vector-search
  • next.js-14
  • nextauth.js
  • radix-ui
  • recharts
  • redis
  • shadcn-ui
  • typescript
  • vercel
Share this project:

Updates