An advanced AI-powered GitHub Action with multiple specialized agents that watch over your code like the mythical hundred-eyed giant. Argus combines cutting-edge AI models with static analysis to provide comprehensive, educational feedback on pull requests.
Argus goes beyond traditional code review tools by deploying specialized AI agents - the "Eyes of Argus" - each watching for different aspects of code quality:
- ๐๏ธ Security Eye: Watches for vulnerabilities, auth issues, and data exposure risks
- ๐๏ธ Logic Eye: Deep analysis using Claude Code for business logic and edge cases
- ๐๏ธ Architecture Eye: Guards design patterns, SOLID principles, and code organization
- ๐๏ธ Performance Eye: Spots bottlenecks and optimization opportunities
- ๐ง Intelligent Linting: Summarizes static analysis instead of comment spam
- ๐ง Context Awareness: Understands your entire project like a senior developer
- ๐ Developer Coaching: Teaches while reviewing, tailored to experience level
- ๐ Scales Gracefully: Handles large PRs with smart prioritization strategies
- ๐งฉ Learns & Adapts: Evolves with your team's preferences over time
graph TB
A[GitHub PR Event] --> B[File Change Detection]
B --> C[Project Context Builder]
C --> D[File Prioritizer]
D --> E[Linting Coordinator]
E --> F[Multi-Agent Orchestrator]
F --> G[๐๏ธ Security Eye]
F --> H[๐๏ธ Architecture Eye]
F --> I[๐๏ธ Logic Eye]
F --> J[๐๏ธ Performance Eye]
F --> K[๐๏ธ Testing Eye]
G --> L[Review Synthesizer]
H --> L
I --> L
J --> L
K --> L
L --> M[Coaching Engine]
M --> N[GitHub Comments]
- ๐๏ธ Multi-Agent Orchestrator: The central eye that coordinates all other eyes
- ๐ง Context Builder: Analyzes project DNA - structure, frameworks, and patterns
- ๐ฏ File Prioritizer: Focuses the most powerful eyes on the highest-risk changes
- ๐ง Linting Coordinator: Integrates multiple static analysis tools intelligently
- โก Review Synthesizer: Weaves insights from all eyes into coherent wisdom
- ๐ Coaching Engine: Transforms findings into educational growth opportunities
Add this workflow file to your repository at .github/workflows/argus.yml:
name: Argus Code Guardian
permissions:
contents: read
pull-requests: write
on:
pull_request:
types: [opened, synchronize, ready_for_review]
pull_request_review_comment:
types: [created]
concurrency:
group: ${{ github.repository }}-${{ github.event.number }}-argus-action
cancel-in-progress: true
jobs:
review:
if: github.event.pull_request.draft == false
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: n1lanjan/argus-action@main
env:
GITHUB_TOKEN: ${{ github.token }}
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
with:
strictness-level: 'standard'
focus-areas: 'security,architecture,performance'
learning-mode: true
update-pr-description: append # Optional: append, overwrite, or disabled| Parameter | Description | Default |
|---|---|---|
strictness-level |
Review strictness: coaching, standard, strict, blocking |
standard |
focus-areas |
Comma-separated focus areas | security,architecture,logic |
learning-mode |
Enable adaptive learning from feedback | true |
max-files |
Maximum files to review (0 = no limit) | 50 |
enable-coaching |
Provide educational feedback | true |
update-pr-description |
PR description mode: disabled, overwrite, append |
append |
"The Vigilant Guardian"
- Spots vulnerabilities like SQL injection, XSS, and auth bypasses
- Guards against data exposure and privacy leaks
- Validates cryptographic implementations and secure configurations
"The Design Sentinel"
- Enforces SOLID principles and clean architecture
- Detects design pattern violations and coupling issues
- Guides modular design and dependency management
"The Reasoning Oracle" (Powered by Claude Code)
- Deep analysis of business logic and algorithmic correctness
- Identifies edge cases, race conditions, and logic flaws
- Provides context-aware insights with full codebase understanding
"The Speed Demon"
- Hunts down bottlenecks and inefficient algorithms
- Spots memory leaks and resource waste
- Suggests optimizations for speed and scalability
"The Quality Assurance Master"
- Evaluates test coverage and quality
- Identifies missing test scenarios
- Reviews testing patterns and best practices
Instead of creating individual comments for every linting issue, Argus:
- Runs ESLint, TypeScript, Prettier, and other configured linters
- Summarizes findings in a single, organized comment
- Only flags issues that require human judgment
- Provides quick-fix suggestions where appropriate
The tool builds a comprehensive understanding of your project:
- Framework Detection: Automatically detects React, Vue, Express, etc.
- Pattern Recognition: Learns your team's coding patterns
- Architecture Analysis: Understands your project structure
- Dependency Mapping: Analyzes how changes affect other parts
For large pull requests (>50 files), the tool:
- Uses semantic chunking to group related changes
- Provides architectural-level summaries
- Focuses on high-risk changes first
- Runs agents in parallel for efficiency
Based on the developer's experience level and past feedback:
- Provides educational context for suggestions
- Explains why certain patterns are problematic
- Suggests learning resources
- Adapts feedback complexity to skill level
Argus offers three modes for PR description updates via update-pr-description:
No changes to PR description - all review details stay in comments only.
Appends Argus summary to existing description while preserving user content:
- Smart Replacement: Updates Argus section on subsequent runs without duplicating
- Content Preservation: Maintains all user-written content before and after Argus section
- Marker-Based: Uses HTML comments to identify and replace only Argus content
Replaces entire PR description with Argus summary only:
- Complete Replacement: Overwrites all existing content with Argus review
- Clean Slate: Useful for automated PRs or when description should only contain review data
Features (all modes except disabled):
- Risk Assessment: Visual risk level indicator (๐ข Low, ๐ก Medium, ๐ High, ๐ด Critical)
- Quick Metrics: Files analyzed, issues found, and execution time
- Issue Breakdown: Count of critical, high, medium, and info-level issues
- Action Guidance: Clear next steps based on findings
- Auto-Update: Refreshes summary on new commits
Example PR description enhancement:
## ๐๏ธ Argus Code Review Summary
**Risk Level**: ๐ก Medium
**Files Analyzed**: 12
**Issues Found**: 8
**Issue Breakdown**:
- ๐ก Medium: 3
- ๐ต Info: 5
๐ก **Improvements Available**: Minor issues and recommendations found.
๐ [View Detailed Review](#issuecomment-argus)# Clone the repository
git clone https://github.com/your-org/argus.git
cd argus
# Install dependencies
npm install
# Build the project
npm run build
# Run tests
npm test
# Package for distribution
npm run package# Run unit tests
npm test
# Run integration tests
npm run test:integration
# Test with sample PR
npm run test:sample-prThe tool tracks and improves over time:
- Review Quality Score: Based on developer feedback
- False Positive Rate: Issues marked as irrelevant
- Learning Effectiveness: Improvement in subsequent reviews
- Coverage Metrics: Percentage of critical issues caught
- No Code Storage: Code is analyzed in-memory only
- Encrypted Communication: All API calls use HTTPS
- Token Scoping: Minimal required GitHub permissions
- Audit Logging: All AI interactions are logged for transparency
We welcome contributions! Please see our Contributing Guide for details.
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests for new functionality
- Submit a pull request
MIT License - see LICENSE file for details.
- Issues: GitHub Issues
- Discussions: GitHub Discussions
- Documentation: Wiki
We welcome contributions from the community! Whether you're fixing bugs, adding new features, or improving documentation, your help makes Argus better for everyone.
- Fork the repository
- Install dependencies:
npm install - Make your changes (git hooks will ensure code quality)
- Test locally:
npm test && npm run build - Submit a pull request
This project uses Husky git hooks to maintain code quality:
- Pre-commit: Runs ESLint, Prettier, and TypeScript checks
- Commit messages: Enforces conventional commit format (
feat:,fix:, etc.) - Pre-push: Runs full test suite and build verification
- ๐ Bug Reports: Found an issue? Open a bug report
- ๐ก Feature Requests: Have an idea? Share it with us
- ๐ Documentation: Help improve our docs
- ๐ New Agent Eyes: Add specialized review capabilities
For detailed guidelines, see our Contributing Guide.
- Visual Studio Code extension
- GitLab support
- Custom rule engine
- Team analytics dashboard
- Integration with more static analysis tools
- Multi-language support expansion
This project is licensed under the Apache 2.0 License - see the LICENSE file for details.
๐๏ธ Argus watches. Argus protects. Argus helps your code evolve.