frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: CodeAnt AI – AI Code Reviewer, that understand code and dependencies

https://www.youtube.com/watch?v=uprOvRUUudQ
3•Amartya_jha•1y ago
Over the last year, we’ve been building CodeAnt AI, working closely with engineering teams struggling with code review quality and speed.

Manual code reviews are slow and repetitive. Reviews today mostly look at what changed — not what the change actually impacts. With more AI-written code, it's getting worse: bigger PRs, faster cycles, less team context.

We wanted to rethink how code reviews are done: → Build structured knowledge of the codebase → Understand infra and dependency changes → Analyze blast radius automatically at PR time

What CodeAnt AI Does (Technical Overview)

Repository Indexing and Graph Building:

When a repo is added, we index the entire codebase and build Abstract Syntax Trees (ASTs).

We map upstream and downstream dependencies across files, functions, types, and modules.

We run custom lightweight language servers for multiple languages to support:

go_to_definition to find symbol declarations

find_all_references to locate usage points

fetch_signatures and fetch_types for richer semantic context

Pull Request Analysis:

When a PR is created:

We detect the diff.

We pull relevant upstream/downstream context for any changed symbols.

We gather connected function definitions, usage sites, interfaces, and infra files touched.

The LLM invokes the language servers (almost like a developer navigating manually) to reason over this structured context, not just the raw diff.

Code Quality Analysis:

Along with AI reasoning, we layer traditional static checks inside PRs:

Detecting duplicate code patterns

Finding dead, unused code blocks

Flagging overly complex functions

Goal: Make linting + AI suggestions seamless, without needing separate tools.

Security and Infrastructure Context:

We maintain an internal curated database of application security issues, mapped to OWASP and CWE.

We run Infrastructure-as-Code (IaC) security checks across:

Terraform, Kubernetes, Docker, CloudFormation, Ansible

You can optionally connect cloud accounts (AWS, GCP, Azure):

We scan your live cloud infra for misconfigurations

We pull cloud resource context into PRs (e.g., when a Terraform PR changes a live VPC rule, we show the potential blast radius).

We monitor End-of-Life (EOL) libraries and third-party package vulnerabilities by scanning the National Vulnerability Database (NVD) every 20 minutes and flagging at PR time.

In short: We try to automate how an experienced developer would actually review a change: → Understand the code structure → Understand where it’s used → Understand how infra/cloud gets affected → Catch quality, security, and complexity issues before merge — without needing extra dashboards or tools.

Teams using CodeAnt AI have reported 50%+ faster code reviews while finding deeper and more actionable problems earlier.

Would love feedback from the HN community — both technical and critical are welcome.

Thanks for checking it out!

UK regulator warns of "arms race" to keep up with AI use in financial services

https://arstechnica.com/ai/2026/07/uk-regulator-warns-of-arms-race-to-keep-up-with-ai-use-in-fina...
2•secret_hawk_25•48s ago•0 comments

They got something on the screen

https://graybeard.ing/they-got-something-on-the-screen/
1•rglover•1m ago•0 comments

How to design a cancer vaccine (and vastly improve them)

https://www.owlposting.com/p/how-to-design-a-cancer-vaccine-and
1•crescit_eundo•1m ago•0 comments

GAN Lateral Superjunction Schottky Diode

https://www.powerelectronicsnews.com/gan-lateral-superjunction-schottky-diode/
1•stmw•3m ago•1 comments

Ask HN: I use coding agents daily, but how do real engineers use them?

1•getlawgdon•5m ago•0 comments

Help Web Attackers Self Report

https://nochan.net/b/Internet-Crap/20260524-Help-Attackers-Self-Report/
1•Bender•5m ago•1 comments

Show HN: Built a Website for People Who Miss the Old Web

https://www.dailicle.com/
1•lucky-solanki•6m ago•0 comments

HTML vs. JSON for LLMs: the format was a wash, the strategy was everything

https://www.lightningjar.com/blog/barkup-bench-results
1•kevinpeckham•8m ago•0 comments

How Google and AI Nearly Made a Seasoned Reporter Spiral

https://www.propublica.org/article/google-ai-reporting
1•Jimmc414•9m ago•0 comments

Loop Engineering: Design the Loop, or Be the Loop

https://clairetsao.substack.com/p/loop-engineering-design-the-loop
1•missmoss•9m ago•0 comments

AI Rocky from 'Project Hail Mary'

https://www.raspberrypi.com/news/ai-rocky-from-project-hail-mary/
1•Brajeshwar•9m ago•0 comments

Kani: A Model Checker for Rust

https://arxiv.org/abs/2607.01504
2•Jimmc414•10m ago•0 comments

Low-Background Steel

https://en.wikipedia.org/wiki/Low-background_steel
5•mh-cx•11m ago•0 comments

What security checks should an AI-built SaaS run before launch?

https://preflightio.com
1•continium•11m ago•0 comments

Kars – treat every AI agent as untrusted code, on Kubernetes

https://github.com/Azure/kars
1•pallakatos•11m ago•0 comments

Check out this new fitness app

https://gymia.fit
1•user2121•13m ago•0 comments

Designing z-order terminology in 2d space

https://meetzaveri.medium.com/designing-z-order-terminology-for-craftbase-a-whiteboard-app-in-2d-...
1•meet_zaveri•16m ago•1 comments

Teaching the New Loop

https://freesystems.substack.com/p/teaching-the-new-loop
1•paulpauper•16m ago•0 comments

Life with Hazard Ratios

https://dynomight.net/hazard-ratios/
1•surprisetalk•17m ago•0 comments

The AI Superforecasters Are Here

https://www.astralcodexten.com/p/the-ai-superforecasters-are-here
2•surprisetalk•18m ago•0 comments

Should DayQuil Be Legal?

https://www.theargumentmag.com/p/should-dayquil-be-legal
5•paulpauper•18m ago•0 comments

Will California's Wealth Tax Raise $100B or Lose $25B?

https://everywheremillionaire.substack.com/p/will-californias-wealth-tax-raise
2•paulpauper•19m ago•0 comments

Whimsy and the Literacy Crisis [video]

https://www.youtube.com/watch?v=CkBgnfn9Y7g
1•natebc•23m ago•1 comments

There's a Good Reason You Can't Concentrate

https://www.nytimes.com/2026/03/27/opinion/technology-mental-fitness-cognitive.html
2•zeroonetwothree•23m ago•0 comments

Startup bets that investors want to trade compute like a commodity

https://www.axios.com/2026/07/06/ornn-gpu-compute-commodity
1•Brajeshwar•23m ago•0 comments

Meko Is Open for Self Sign-Up

https://www.yugabyte.com/blog/meko-self-sign-up-get-started/
2•3littlefish•23m ago•1 comments

Microsoft says it is ramping up its quantum computing security work

https://www.techradar.com/pro/security/advances-in-quantum-research-and-development-have-shifted-...
1•mooreds•25m ago•1 comments

An Interview with Eve Maler

https://ciamweekly.substack.com/p/an-interview-with-eve-maler
1•mooreds•25m ago•0 comments

Writing Node.js Addons with .NET Native AOT

https://devblogs.microsoft.com/dotnet/writing-nodejs-addons-with-dotnet-native-aot/
1•birdculture•25m ago•0 comments

Trump intervention causes World Cup storm as FIFA clears US striker Balogun

https://www.reuters.com/sports/soccer/trump-intervention-sparks-world-cup-storm-fifa-clears-balog...
3•kleiba2•26m ago•2 comments