What is CodeWolf โข Features โข Demo โข Roadmap โข Contributing
CodeWolf is an open-source AI-powered code review engine that automatically reviews your pull requests and provides meaningful, structured feedback.
It analyzes code diffs, identifies potential bugs, highlights security vulnerabilities, and suggests improvements directly inside your PR workflow.
Unlike traditional tools, CodeWolf is:
- LLM-agnostic (BYOK) - use your own model
- Fully self-hostable - no vendor lock-in
- Minimal and fast - no bloated dashboards or unnecessary noise
Manual PR reviews are:
- Time-consuming
- Inconsistent
- Often miss security issues
CodeWolf acts as a first-pass reviewer, helping you:
- Catch issues before human review
- Reduce reviewer fatigue
- Maintain consistent code quality across teams
- Runs on every pull request
- Analyzes code changes (diff-based)
- Posts structured feedback directly on GitHub
- Detects common vulnerabilities
- Flags risky patterns early
- Helps enforce secure coding practices
- Use Hugging Face models or your own hosted LLM
- No dependency on proprietary APIs
- Full control over cost and performance
- No complex setup
- No heavy UI
- Focused purely on developer workflow
- Run on your own infrastructure
- Keep your code private
- No data leaving your environment
CodeWolf reviewing a pull request in real-time
Full setup guides, deployment options, and integrations:
๐ https://docs.getcodewolf.com/
Includes:
- Hosting on Vercel or other cloud providers
- GitHub App setup
- Model configuration
Run CodeWolf locally or deploy it to your own infrastructure.
For persistent cloud deployments (Vercel, cloud, etc.), see: https://docs.getcodewolf.com/
git clone https://github.com/codewolfai/codewolf.git
cd codewolfcp .env.example .envUpdate the .env file:
# GitHub App credentials
GITHUB_APP_ID=
GITHUB_PRIVATE_KEY_PATH=
# LLM configuration (Hugging Face)
HF_TOKEN=
HF_MODEL=npm installnode app/server.jsGitHub needs a public URL to send webhooks.
ngrok http 3000Copy the generated HTTPS URL (example: https://abc123.ngrok.io)
- Go to GitHub Developer Settings > GitHub Apps
- Create a new app
-
Webhook URL >
https://ngrok-url/webhook -
Permissions:
- Pull Requests > Read & Write
- Contents > Read
- Metadata > Read
-
Subscribe to events:
- Pull Request events
After creating:
- Copy App ID and add to
.env - Generate and download private key and set path in
.env
- Install the app on your repository
- Select the repo you want CodeWolf to monitor
- Open a PR in your repo
- CodeWolf will automatically review it
- Feedback will appear as a comment
Thatโs it You now have a fully working AI code reviewer running locally.
CodeWolf follows a simple pipeline:
-
Webhook Trigger
- GitHub sends a PR event
-
Diff Extraction
- CodeWolf fetches changed files and context
-
LLM Analysis
- Sends structured input (diff + metadata) to your configured model
-
Review Generation
- Produces actionable feedback:
- Bugs
- Security risks
- Suggestions
- Produces actionable feedback:
-
PR Commenting
- Posts results directly on the pull request
Weโre building CodeWolf into a complete AI review layer for developers:
- Support for all major LLM providers (OpenAI, Anthropic, Gemini, Ollama, and local models, etc.)
- Tag
@codewolfappto:- Trigger reviews on demand
- Ask questions about code
- Get suggestions or explanations
- Automatically fix detected issues
- Suggest improvements and push commits
- Open new PRs when required
- TL;DR summaries of code diffs
- High-level understanding of changes
- Define your own coding standards
- Enforce team-specific rules
- Context-aware review behavior
- PR quality insights
- Security reports
- Trend analysis across repositories
- Jira, Linear, and other issue trackers
- CI/CD pipelines
- Existing PR review tools
We welcome contributions of all kinds โ from bug fixes to new features.
Before getting started, please read our contribution guidelines:
๐ See CONTRIBUTING.md
If you're unsure where to start, open an issue and weโll help you out.
Apache 2.0 ยฉ CodeWolf