Developer Tools

Automatically Improve Code Quality with Amazon CodeGuru - Using Reviewer and Profiler

ML-based Reviewer automatically detects resource leaks and concurrency issues, while Profiler visualizes CPU bottlenecks with flame graphs. Learn about CI/CD integration patterns.

約 3 分で読めます

Automated Code Review with CodeGuru Reviewer

CodeGuru Reviewer is a service that uses ML models to automatically detect code issues. It integrates with GitHub, CodeCommit, and Bitbucket repositories, automatically running code reviews when pull requests are created. Detection targets include resource leaks (unclosed streams, connections), concurrency issues (race conditions, deadlocks), inefficient AWS API usage (missing pagination, unnecessary API calls), and security vulnerabilities (hardcoded credentials, SQL injection). Detection results are posted directly as pull request comments, allowing developers to address them within the normal code review workflow.

Performance Analysis with CodeGuru Profiler

CodeGuru Profiler is a service that continuously analyzes application runtime performance. It supports Java and Python applications, and by embedding an agent, it visualizes methods with high CPU usage, latency bottlenecks, and memory allocation hotspots. Flame graphs provide an at-a-glance view of CPU consumption across the entire call stack, helping identify code paths that need optimization. Profiler overhead is kept below 1% CPU usage, making it suitable for continuous operation in production environments. It also supports Lambda functions, enabling identification of cold start bottlenecks and inefficient processing.

CI/CD Pipeline Integration

Reviewer automatically runs reviews on all pull requests simply by configuring repository integration. Full repository scans can also be executed to detect issues across the entire existing codebase at once. Profiler recommendations are presented along with estimated cost savings. For example, specific metrics such as "optimizing this method can reduce monthly computing costs by $XX" are provided, making it useful for prioritizing optimizations. Detection results from both Reviewer and Profiler can be sent to Security Hub, enabling security teams to centrally monitor code quality across the organization. For a systematic study of CodeGuru from basics to advanced topics, books (Amazon) are available.

CodeGuru Pricing

CodeGuru Reviewer uses monthly billing based on the number of analyzed code lines in the repository, starting at approximately $10.00 per month for the first 100,000 lines. There is no limit on the number of pull request reviews, making costs predictable even for development teams that frequently create pull requests. CodeGuru Profiler costs approximately $0.005/hour per sampling group, with costs varying based on the number of profiled applications. A 90-day free trial is available for both Reviewer and Profiler, allowing you to verify cost savings before production deployment.

Summary

CodeGuru is a service that provides ML-based automated code review (Reviewer) and runtime performance analysis (Profiler). It automatically detects resource leaks and concurrency issues that human reviews often miss, and continuously visualizes performance bottlenecks in production environments. By incorporating it into the development process, you can achieve continuous improvement of code quality and application performance.

Related Services

Amazon CodeGuruA service that uses machine learning to improve code quality and optimize application performanceAWS CodeCommitA secure, private Git repository hosting service provided by AWSAWS LambdaA serverless compute service that runs code without server management

Related Articles

AWS CodeDeploy Deployment Strategies - Blue/Green Deployments for EC2, ECS, and LambdaManage deployment strategies across three platforms - EC2, ECS, and Lambda - in a unified way. This article covers ECS blue/green deployments and automatic rollback triggered by CloudWatch alarms.Getting Started with AWS Cloud9 - Setting Up and Using a Browser-Based IDEA cloud IDE that lets you complete AWS development entirely in the browser. Learn about Lambda development with a pre-installed SAM CLI environment and pair programming through real-time collaborative editing.Building a Package Management Platform with AWS CodeArtifact - Private Repositories for npm, Maven, and PyPIBuild private repositories for npm, Maven, and PyPI, and ensure build stability with upstream caching. Prevent dependency confusion attacks with package origin controls.

More on This Topic

How AI-DLC Transforms Software Development - A Practical Guide to the Inception, Construction, and Operation PhasesAn overview of the AI-DLC methodology that places AI at the center of the development process. Learn about the three phases of Inception, Construction, and Operation, and how to put them into practice with Kiro and Amazon Q Developer.Hands-On with the AI-DLC Unicorn Gym Workshop - Learning AI-DLC Through Team DevelopmentA complete look at the hands-on workshop where you experience AI-DLC through three days of team development. Learn how to run Mob Elaboration and Mob Construction, and how to leverage open-source workflows.Visually Design Serverless Applications with AWS Application Composer - Automatic IaC Template GenerationLearn about visual design of serverless architectures with Application Composer, automatic SAM template generation, and VS Code integration.Artifact Repository Management - Building a Secure Package Management Platform with AWS CodeArtifactLearn how to build and operate an artifact repository using AWS CodeArtifact. This guide covers centralizing package management for npm, Maven, PyPI, and more, along with building secure build pipelines through CodeBuild integration.How AWS API Throttling Works - The Token Bucket Algorithm and the Truth Behind 429 ErrorsLearn how AWS API rate limiting is implemented using the token bucket algorithm, understand the concept of burst capacity, explore differences in throttling limits across services, and discover practical strategies to avoid throttling.Why AWS APIs Return XML - The Evolution from Query APIs to REST JSONExplore the historical reasons why S3 and EC2 APIs return XML responses, the differences between Query APIs and REST APIs, the evolution of authentication from Signature V2 to V4, and the complexity that SDKs abstract away.Why AWS API Endpoints Differ by Region - The Design of Global and Regional ServicesWe explain the design reasons behind the separation of regional endpoints like ec2.us-east-1.amazonaws.com and global endpoints like iam.amazonaws.com, as well as the existence of dual-stack and FIPS endpoints.Browser-Based Shell Environment - Instant CLI Access with AWS CloudShellExplains the browser-based shell environment powered by AWS CloudShell. Covers the CLI environment available instantly from the AWS Management Console, pre-installed development tools, automatic IAM authentication integration, secure file management, and practical tips for improving operational efficiency.

Similar Articles and Services

Code Review and Profiling - Improving Quality and Optimizing Performance with Amazon CodeGuruThis article explains how to automate code reviews and profile applications using Amazon CodeGuru. It covers integrating quality gates into CI/CD pipelines with CodeBuild and optimizing performance in production environments.Amazon CodeGuruA service that uses machine learning to automate code reviews and identify application performance bottlenecksAWS CodeCommitA fully managed Git repository service offered by AWS with IAM-based authentication and automatic encryption at rest, discontinued for new customers in July 2024