coderev-cli 1.0.0

package/.env.example

@@ -0,0 +1,14 @@
+# coderev Configuration
+#
+# Copy this file and rename to .env
+# Then fill in your API keys.
+#
+# How to get keys:
+# - DeepSeek: https://platform.deepseek.com/api_keys
+# - GitHub: https://github.com/settings/tokens (fine-grained token with repo permissions)
+
+# Required
+DEEPSEEK_API_KEY=sk-your-deepseek-api-key
+
+# GitHub (for --post and private repos)
+GITHUB_TOKEN=github_pat_your_token

package/README.md

@@ -0,0 +1,188 @@
+# coderev — AI Code Review Agent 🚀
+
+**coderev** 是一个 AI 驱动的一站式代码审查工具。采用**多智能体并行审查架构**——3 个专业 Agent 同时从安全、Bug、质量维度审查代码，每个 Issue 附带置信度评分，自动过滤误报。支持 GitHub PR 集成、自动修复、git hooks、缓存、自定义规则、多语言专项审查、统计看板。
+
+## 🧠 架构：多智能体并行审查 (v0.3.0)
+
+```
+        你的代码 (git diff)
+               │
+        ┌──────┼──────┐
+        ▼      ▼      ▼
+    ┌──────┐┌──────┐┌──────┐
+    │  🔒  ││  🐛  ││  📐  │
+    │Security││  Bug  ││Quality│
+    │Auditor││Detector││Check │
+    └──┬───┘└──┬───┘└──┬───┘
+       │       │       │
+       └───────┼───────┘
+               ▼
+        ┌──────────┐
+        │ 合并 &    │
+        │ 置信度评分 │
+        │ (0-100)   │
+        └────┬─────┘
+             ▼
+      结构化审查报告
+```
+
+**3 个专业 Agent 并行工作**，从不同角度审查同一份代码：
+
+| Agent | 专注领域 |
+|-------|---------|
+| 🔒 Security Auditor | SQL注入、XSS、SSRF、硬编码密钥、认证缺陷 |
+| 🐛 Bug Detector | 空指针、竞态条件、异步问题、逻辑错误 |
+| 📐 Code Quality | 代码复杂度、DRY、命名规范、异常处理 |
+
+每个 issue 都会计算**置信度评分 (0-100)**，低于阈值（默认 60）的自动过滤。同一问题被多个 Agent 发现时自动去重。
+
+## ⚡ 快速上手
+
+```bash
+# 1. 安装
+npm install -g @lishihao2749/coderev
+
+# 2. 初始化项目配置
+coderev init
+
+# 3. 设置 API Key（二选一）
+export DEEPSEEK_API_KEY="sk-your-key-here"   # DeepSeek
+export OPENAI_API_KEY="sk-your-key-here"      # OpenAI
+
+# 4. 审查当前仓库暂存区
+coderev review
+
+# 5. 或审查两个分支间的差异
+coderev review --repo . --base main --head feature
+
+# 6. 或使用管道
+git diff main | coderev review
+```
+
+## 🎯 CLI 选项详解
+
+### 审查命令
+
+```bash
+# 多智能体并行审查（默认，推荐）
+coderev review
+
+# 提高置信度阈值（更少但更可靠的结果）
+coderev review --min-confidence 80
+
+# 降低阈值（更多结果，含一些误报）
+coderev review --min-confidence 40
+
+# 单 Agent 模式（v0.2.x 传统模式，消费更低）
+coderev review --single
+
+# 安全审计模式（注入 OWASP 级审查）
+coderev review --audit
+
+# 跳过缓存强刷
+coderev review --no-cache
+
+# 输出 JSON
+coderev review --format json
+```
+
+### 其他命令
+
+```bash
+coderev fix --file changes.diff              # 自动修复
+coderev fix --file changes.diff --apply      # 生成并应用补丁
+coderev hook install                         # 安装 git hook
+coderev hook install pre-commit --min-score 70
+coderev stats                                # 统计看板
+coderev stats week                           # 本周统计
+coderev cache status                         # 缓存状态
+coderev cache clear                          # 清空缓存
+coderev config show                          # 查看配置
+```
+
+## 🔗 GitHub PR 审查
+
+```bash
+coderev review --pr owner/repo#42              # 审查 PR
+coderev review --pr 42                          # 自动检测当前仓库
+coderev review --pr owner/repo#42 --post        # 审查 + 贴评论
+coderev review --pr owner/repo#42 --inline      # 行内评论
+coderev review --pr owner/repo#42 --format json # JSON 输出
+```
+
+`--inline` 模式将每条 issue 贴在 PR 的具体代码行上，像人工 review 一样直观。
+
+## 📝 项目上下文（.coderevhint）
+
+在项目根目录创建 `.coderevhint` 文件，描述项目概况、架构和规范。AI 审查时会自动加载并据此调整审查重点。
+
+coderev 也兼容 `CLAUDE.md` 文件，与 Claude Code 项目规范互通。
+
+## 🌐 多语言专项规则
+
+coderev 自动检测 diff 中的编程语言，为不同语言添加专项检查规则：
+
+| 语言 | 检查重点 |
+|---|---|
+| JavaScript | async/await 链、== vs ===、内存泄漏、import 循环依赖 |
+| TypeScript | strict 模式、avoid any、泛型、类型断言 |
+| Python | PEP 8、except 类型、mutable 默认参数、async 用法 |
+| Rust | unsafe 审计、unwrap/expect、生命周期、ownership |
+| Go | error handling、goroutine 安全、context 传播、data race |
+| Java | null 处理、checked exception、== vs .equals()、线程安全 |
+| SQL | 注入防护、N+1 查询、索引缺失、大 IN-clause |
+
+## 🗂 配置管理
+
+```json
+{
+  "ai": {
+    "provider": "deepseek",
+    "model": "deepseek-chat",
+    "temperature": 0.3
+  },
+  "rules": {
+    "maxLineLength": 100,
+    "predefined": ["security", "performance", "style"],
+    "custom": [
+      {
+        "name": "no-console-log",
+        "severity": "warning",
+        "message": "避免在生产代码中使用 console.log"
+      }
+    ]
+  }
+}
+```
+
+团队共享：将 `.coderevrc.json` 放入仓库根目录，全组自动读取。
+
+## 🔄 GitHub Actions 自动审查
+
+在工作流中使用 `coderev-review.yml`，PR 创建时自动审查并贴评论。详见 `.github/workflows/`。
+
+## 📁 项目结构
+
+```
+coderev/
+├── src/
+│   ├── cli.js        # CLI 入口（review/fix/hook/stats 等子命令）
+│   ├── reviewer.js   # AI 审查核心（多智能体并行 + 置信度评分）
+│   ├── config.js     # 配置加载
+│   ├── github.js     # GitHub API
+│   ├── gitlab.js     # GitLab API
+│   ├── gitee.js      # Gitee API
+│   ├── bitbucket.js  # Bitbucket API
+│   ├── cache.js      # 缓存系统
+│   ├── rules.js      # 规则引擎（8 套预定义 + 7 种语言 + 自定义）
+│   ├── stats.js      # 统计看板
+│   └── coderev.test.js # 20 个单元测试
+├── .github/workflows/  # GitHub Actions
+├── .coderevrc.json     # 配置模板
+├── .coderevignore      # 忽略规则
+├── .coderevhint        # 项目上下文
+└── ROADMAP.md          # 路线图
+
+## License
+
+MIT

package/package.json

@@ -0,0 +1,47 @@
+{
+  "name": "coderev-cli",
+  "version": "1.0.0",
+  "description": "Multi-agent AI code review for git -- parallel agents with confidence scoring",
+  "main": "src/index.js",
+  "bin": {
+    "coderev": "src/cli.js"
+  },
+  "scripts": {
+    "start": "node src/cli.js",
+    "test": "node --test src/**/*.test.js",
+    "prepublishOnly": "node --test src/**/*.test.js"
+  },
+  "keywords": [
+    "code-review",
+    "ai",
+    "cli",
+    "github",
+    "pr-review",
+    "deepseek"
+  ],
+  "author": "Annie-Bot <2457643059@qq.com>",
+  "license": "MIT",
+  "type": "commonjs",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/jishuanjimingtian/coderev.git"
+  },
+  "bugs": {
+    "url": "https://github.com/jishuanjimingtian/coderev/issues"
+  },
+  "homepage": "https://github.com/jishuanjimingtian/coderev",
+  "engines": {
+    "node": ">=18"
+  },
+  "files": [
+    "src/",
+    "README.md",
+    ".env.example"
+  ],
+  "dependencies": {
+    "chalk": "^4.1.2",
+    "commander": "^12.0.0",
+    "diff": "^5.2.0",
+    "openai": "^4.0.0"
+  }
+}

package/src/bitbucket.js

@@ -0,0 +1,130 @@
+const https = require('https');
+
+/**
+ * Parse a Bitbucket PR reference.
+ * Supported formats:
+ *   - owner/repo#42
+ *   - https://bitbucket.org/owner/repo/pull-requests/42
+ *   - 42 (requires --repo with git remote)
+ */
+function parsePrRef(ref) {
+  const shorthand = ref.match(/^([\w.-]+)\/([\w.-]+)#(\d+)$/);
+  if (shorthand) {
+    return { owner: shorthand[1], repo: shorthand[2], pr: parseInt(shorthand[3], 10), workspace: shorthand[1] };
+  }
+
+  const fullUrl = ref.match(/bitbucket\.org\/([\w.-]+)\/([\w.-]+)\/pull-requests\/(\d+)/);
+  if (fullUrl) {
+    return { workspace: fullUrl[1], owner: fullUrl[1], repo: fullUrl[2], pr: parseInt(fullUrl[3], 10) };
+  }
+
+  const justNumber = ref.match(/^(\d+)$/);
+  if (justNumber) return { owner: null, repo: null, pr: parseInt(justNumber[1], 10) };
+
+  throw new Error(
+    `Invalid Bitbucket PR reference: "${ref}". Use:\n` +
+    `  coderev review --bb owner/repo#42\n` +
+    `  coderev review --bb https://bitbucket.org/owner/repo/pull-requests/42`
+  );
+}
+
+function resolvePrRef(ref, repoPath) {
+  const parsed = parsePrRef(ref);
+  if (parsed.owner && parsed.repo) return parsed;
+
+  try {
+    const { execSync } = require('child_process');
+    const remote = execSync('git config --get remote.origin.url', {
+      cwd: repoPath || process.cwd(), encoding: 'utf-8', timeout: 5000,
+    }).trim();
+    const match = remote.match(/bitbucket\.org[\/:]([\w.-]+)\/([\w.-]+?)(?:\.git)?$/);
+    if (match) return { workspace: match[1], owner: match[1], repo: match[2], pr: parsed.pr };
+  } catch {}
+  throw new Error(`Could not detect Bitbucket repo. Use full format like owner/repo#${parsed.pr}.`);
+}
+
+/**
+ * Fetch a pull request diff from Bitbucket Cloud.
+ * Bitbucket API 2.0: GET /2.0/repositories/{workspace}/{repo}/pullrequests/{number}
+ */
+function fetchPrDiff(ref, token) {
+  const { workspace, repo, pr } = ref;
+  return new Promise((resolve, reject) => {
+    const username = process.env.BITBUCKET_USERNAME || '';
+    const headers = { 'User-Agent': 'coderev-agent', 'Accept': 'application/json' };
+
+    let auth = '';
+    if (token && username) {
+      const encoded = Buffer.from(username + ':' + token).toString('base64');
+      headers['Authorization'] = 'Basic ' + encoded;
+    }
+
+    https.get({
+      hostname: 'api.bitbucket.org',
+      path: `/2.0/repositories/${encodeURIComponent(workspace)}/${encodeURIComponent(repo)}/pullrequests/${pr}`,
+      headers,
+    }, (res) => {
+      let body = '';
+      res.on('data', (c) => (body += c));
+      res.on('end', () => {
+        if (res.statusCode === 200) {
+          try {
+            const prData = JSON.parse(body);
+            // Bitbucket doesn't give diff directly, get it from links
+            const diffUrl = prData.links?.diff?.href;
+            if (diffUrl) {
+              https.get(diffUrl, { headers }, (res2) => {
+                let d = ''; res2.on('data', (c) => (d += c));
+                res2.on('end', () => resolve(d));
+              }).on('error', reject);
+            } else {
+              reject(new Error('Could not find diff URL in Bitbucket response'));
+            }
+          } catch { reject(new Error('Failed to parse Bitbucket response')); }
+        } else if (res.statusCode === 404) {
+          reject(new Error(`PR not found: ${workspace}/${repo}#${pr}`));
+        } else {
+          reject(new Error(`Bitbucket API error (${res.statusCode}): ${body.slice(0, 200)}`));
+        }
+      });
+    }).on('error', reject);
+  });
+}
+
+/**
+ * Post a comment on a Bitbucket PR.
+ * API: POST /2.0/repositories/{workspace}/{repo}/pullrequests/{number}/comments
+ */
+function postPrComment(ref, body, token) {
+  const { workspace, repo, pr } = ref;
+  return new Promise((resolve, reject) => {
+    const username = process.env.BITBUCKET_USERNAME || '';
+    const postData = JSON.stringify({ content: { raw: body } });
+    const headers = {
+      'User-Agent': 'coderev-agent',
+      'Content-Type': 'application/json',
+      'Content-Length': Buffer.byteLength(postData),
+    };
+    if (token && username) {
+      headers['Authorization'] = 'Basic ' + Buffer.from(username + ':' + token).toString('base64');
+    }
+
+    const options = {
+      hostname: 'api.bitbucket.org',
+      path: `/2.0/repositories/${encodeURIComponent(workspace)}/${encodeURIComponent(repo)}/pullrequests/${pr}/comments`,
+      method: 'POST',
+      headers,
+    };
+
+    const req = https.request(options, (res) => {
+      let rb = ''; res.on('data', (c) => (rb += c));
+      res.on('end', () => {
+        if (res.statusCode === 201) { try { resolve(JSON.parse(rb)); } catch { resolve(rb); } }
+        else reject(new Error(`Failed to post comment (${res.statusCode}): ${rb.slice(0, 200)}`));
+      });
+    });
+    req.on('error', reject); req.write(postData); req.end();
+  });
+}
+
+module.exports = { parsePrRef, resolvePrRef, fetchPrDiff, postPrComment };

package/src/cache.js

@@ -0,0 +1,71 @@
+const crypto = require('crypto');
+const fs = require('fs');
+const path = require('path');
+
+const CACHE_DIR = path.join(require('os').homedir(), '.coderev', 'cache');
+
+/**
+ * Generate a cache key from a diff string.
+ */
+function cacheKey(diff) {
+  return crypto.createHash('sha256').update(diff).digest('hex');
+}
+
+/**
+ * Get cached review result if available and not expired.
+ * @param {string} key - Cache key (diff hash)
+ * @param {number} ttlMs - Time-to-live in ms (default 24h)
+ * @returns {object|null} Cached result or null
+ */
+function getCached(key, ttlMs = 24 * 60 * 60 * 1000) {
+  const cachePath = path.join(CACHE_DIR, `${key}.json`);
+  try {
+    if (!fs.existsSync(cachePath)) return null;
+    const stat = fs.statSync(cachePath);
+    if (Date.now() - stat.mtimeMs > ttlMs) {
+      // Expired
+      fs.unlinkSync(cachePath);
+      return null;
+    }
+    return JSON.parse(fs.readFileSync(cachePath, 'utf-8'));
+  } catch {
+    return null;
+  }
+}
+
+/**
+ * Store a review result in cache.
+ */
+function setCached(key, result) {
+  try {
+    if (!fs.existsSync(CACHE_DIR)) {
+      fs.mkdirSync(CACHE_DIR, { recursive: true });
+    }
+    fs.writeFileSync(path.join(CACHE_DIR, `${key}.json`), JSON.stringify(result), 'utf-8');
+  } catch {
+    // Cache write failure is non-fatal
+  }
+}
+
+/**
+ * Clear expired cache entries.
+ */
+function cleanCache(ttlMs = 24 * 60 * 60 * 1000) {
+  try {
+    if (!fs.existsSync(CACHE_DIR)) return 0;
+    let cleared = 0;
+    for (const file of fs.readdirSync(CACHE_DIR)) {
+      const fullPath = path.join(CACHE_DIR, file);
+      const stat = fs.statSync(fullPath);
+      if (Date.now() - stat.mtimeMs > ttlMs) {
+        fs.unlinkSync(fullPath);
+        cleared++;
+      }
+    }
+    return cleared;
+  } catch {
+    return 0;
+  }
+}
+
+module.exports = { cacheKey, getCached, setCached, cleanCache };