How is MicroReview different from CodeRabbit?

MicroReview adds a 0-100 risk score per PR, merge blocking on critical findings, a dedicated GitHub Checks API integration with inline annotations, and hardcoded secret detection across 13 patterns. It also starts free and scales to $19/mo per repo vs CodeRabbit's higher per-seat pricing.

Does MicroReview work with private repositories?

Yes. MicroReview works with both public and private repositories on GitHub and GitLab. The GitHub App requests only the minimum permissions needed: read access to code for PR diffs and write access to post review comments and check runs.

What programming languages does MicroReview support?

AI bug detection and secret scanning work on any language. Deep static analysis rules including naming conventions, Spring Boot patterns, and validation checks are available for Java, TypeScript, and Python today with more language-specific rule sets coming soon.

Is my source code sent to AI?

Only the changed lines (diff hunks) from your pull request are sent to the AI, not your entire codebase. Code is sent over HTTPS, is not used to train models, and is retained by the AI provider for at most 30 days for abuse monitoring before deletion.

How much does MicroReview cost?

MicroReview starts free with 2 repos and 50 reviews per month. The Pro plan is $19/mo per repo with unlimited reviews and AI bug detection. The Team plan is $15/mo per repo for 5+ repos with analytics, SSO, and config inheritance.

PHP Code Review

AI Code Review for PHP & Laravel

MicroReview reviews PHP and Laravel pull requests with AI bug detection and secret scanning — catching injection risks, unsafe input handling, and leaked credentials before merge.

Review my PHP repo free See all features

PHP bugs MicroReview catches automatically

SQL injection

Raw queries built from request data are flagged with prepared-statement suggestions.

XSS via unescaped output

echoing user input without escaping is surfaced on every diff.

Hardcoded secrets in .env commits

App keys and API tokens committed to source are detected automatically.

Unsafe deserialization

unserialize() on user input that enables object injection is a critical finding.

Secret detection for PHP projects

MicroReview scans every diff for hardcoded credentials common in PHP codebases:

Laravel APP_KEYAPI tokensDatabase passwordsAWS keys

Works with your PHP stack

No configuration required. MicroReview understands PHP projects built with:

LaravelSymfonyWordPress

Start reviewing your PHP code in 30 seconds

Install the GitHub or GitLab app, and MicroReview reviews your next pull request automatically. Free for 2 repos — no credit card.

Get Started Free

AI code review for other languages

Python TypeScript Java Go Ruby