[AWS] AWS CodeGuru

AWS CodeGuru performs automated code reviews using Machine Learning.

CodeGuru Reviewer

• automated static code reviews with actionable recommendations
  • scan code, configuration and document files
• identify critical issues and security vulnerabilities
  • Concurrency
    • Race conditions and deadlocks
    • Thread safety
  • Resource (Memory) leaks
  • Unsanitized inputs
  • Inappropriate handling of sensitive data
    • hard-coded secrets embedded in your code
  • Negative impacts on application performance
• does not check syntax errors or coding style
  • CodeGuru Reviewer is used after the code is built and unit tested.
• follow common best practices
• support Java & Python
• integrate with CodeCommit, GitHib and Bitbucket
• Code reviews can be done
  • with Pull Requests
  • as Repository Analysis

CodeGuru Reviewer Secrets Detector

• Identifies hard-coded secrets in your code
  • Password, API Keys, SSH Keys, …
• Suggests automatic remediation using Secrets Manager

CodeGuru Profiler

• Understands the runtime behavior of an application
• Performance recommendations
  • code inefficiencies
  • CPU utilization
  • Memory consumption
  • Anomaly detection
• You can integrate the Profiler to Lambda functions

from codeguru_profiler_agent import with_lambda_profiler

@with_lambda_profiler(profiling_group_name="MyGroup")
def hanlder_name(event, context):
  ...