Rudder AI Reviewer Beta

Automatically review pull requests for RudderStack SDK instrumentation issues using AI-powered analysis.

3 minute read

This guide explains how Rudder AI Reviewer works and how you can use it to review your pull requests for SDK instrumentation issues.

Overview

Rudder AI Reviewer is a GitHub Action that analyzes code changes in your pull requests to detect problems like missing event properties, naming convention violations, and best practice issues. It then posts actionable feedback with suggested fixes directly on your PRs.

Rudder AI Reviewer catches instrumentation issues before they reach production — like missing event properties, inconsistent event naming, deprecated API usage, potential PII exposure, and more.

Supported SDKs

RudderStack JavaScript SDK — via npm package or CDN <script> tag

Support for mobile SDKs (iOS, Android) and additional platforms is coming soon.

What it reviews

The AI reviewer analyzes your RudderStack SDK instrumentation changes and provides feedback across multiple categories:

Tracking plan violations: Deviations from your defined Tracking Plan
Missing events: Important user actions that aren’t being tracked
Best practice issues: Improvements to follow RudderStack SDK best practices
Security concerns: Potential PII exposure or other security issues in your instrumentation
Performance issues: Potential performance bottlenecks in your instrumentation
Deprecated API usage: Usage of deprecated APIs in your instrumentation that are no longer supported
Incorrect property usage: Usage of incorrect properties in your instrumentation that are not supported by the SDK

How it works

When a pull request is opened or updated, Rudder AI Reviewer runs through the following pipeline:

PR change detection: Fetches changed files via the GitHub API and parses the unified diffs to extract added, modified, and removed lines.
SDK detection: Extracts the SDK version by scanning package.json and lock files for @rudderstack/analytics-js, or parsing the HTML/JS files for RudderStack CDN script tags.
Framework detection: Identifies the frontend framework from package.json dependencies — this helps the AI provide framework-specific recommendations.
AI analysis: Sends a review payload containing PR metadata, code diffs, SDK info, and framework info to RudderStack’s AI review service over HTTPS. Rudder AI analyzes the instrumentation changes and returns a structured review.
Comment posting: Posts two types of comments on the PR — a summary comment with the overall assessment and inline review comments on specific code lines with suggested fixes.

Note that:

Each time the action runs, the summary comment is updated with the latest analysis.
For inline review comments, the AI attempts to avoid posting duplicate comments. However, if new changes are introduced, additional inline comments may be generated.
Only code diffs (changed lines) are sent for analysis — not your entire codebase.

No source code is stored by RudderStack or its AI provider. See Rudder AI Reviewer Security for more details.

See more

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.

Questions? Contact us by Email or on Slack