A GitHub App that automatically analyzes your code, finds issues, and creates PRs with fixes.
After installing the app, you need to set up the following environment variables in your repository:
-
Go to your repository settings
-
Navigate to "Secrets and variables" → "Actions"
-
Add the following secrets:
OPENAI_API_KEY: Your OpenAI API key (get it from OpenAI)PAT_TOKEN: A GitHub Personal Access Token with the following permissions:repo(Full control of private repositories)workflow(Update GitHub Action workflows)
The app needs the following permissions to function:
- Read repository contents
- Create pull requests
- Create branches
- Push code changes
- Read and write workflow files
-
When you push code to your repository:
- The app automatically analyzes your code
- Identifies potential issues and improvements
- Creates a PR with suggested fixes
-
When you install the app on a repository:
- It analyzes the entire codebase
- Creates a PR with any necessary fixes
- Sets up automated analysis for future pushes
If you encounter any issues:
- Check if all required secrets are set
- Ensure the app has the necessary permissions
- Check the Actions tab for any error logs
- Contact support if issues persist
If you want to run the app locally:
- Clone the repository
- Install dependencies:
npm run install-all
- Set up environment variables in
server/.env - Run the development server:
npm run dev
- Automatic code analysis
- Security vulnerability detection
- Code quality improvements
- Best practice recommendations
- Automated PR creation
- Support for multiple languages (JavaScript, Python, Go)
- 🔒 Security Analysis: Detects security vulnerabilities and suggests fixes
- 🎯 Code Quality: Identifies code quality issues and best practice violations
- 🚀 Automated Fixes: Creates pull requests with suggested improvements
- 🌐 Multi-language Support: Works with JavaScript/TypeScript, Python, and Go
- 🤖 AI-Powered: Uses advanced AI to understand and fix code issues
- Visit Scriptocol GitHub App
- Click "Install"
- Choose the repositories you want to analyze
- That's it! Scriptocol will now monitor your pushes and create PRs with fixes
- Push Detection: When you push code to your repository
- Analysis: Scriptocol analyzes your code for:
- Security vulnerabilities
- Code quality issues
- Best practice violations
- Performance improvements
- Fix Generation: AI generates appropriate fixes
- PR Creation: Creates a pull request with the fixes if:
- Critical security issues are found
- More than 5 quality/best practice issues are found
- Repository Contents: To create branches and commits
- Pull Requests: To create pull requests with fixes
- Issues: To create welcome messages and notifications
- Metadata: To read repository information
- Statuses: To update commit statuses
MIT License - see LICENSE for details