Completed
Authentication Rate Limiting
Description: Stricter rate limits on authentication endpoints prevent brute force attacks and credential stuffing. Problem it solves: Auth endpoints are prime targets for attacks. Standard rate limits are too lenient for login/signup flows. Key features: Lower threshold for auth endpoints IP-based limiting Account lockout after failures Gradual unlock periods
Code Cora Team About 1 month ago
Completed
Authentication Rate Limiting
Description: Stricter rate limits on authentication endpoints prevent brute force attacks and credential stuffing. Problem it solves: Auth endpoints are prime targets for attacks. Standard rate limits are too lenient for login/signup flows. Key features: Lower threshold for auth endpoints IP-based limiting Account lockout after failures Gradual unlock periods
Code Cora Team About 1 month ago
Completed
SSRF Protection
Description: Input validation for AI provider URLs prevents Server-Side Request Forgery attacks. Users can only connect to allowed AI providers. Problem it solves: Custom AI endpoints could be exploited to make the server access internal resources or malicious URLs. Key features: URL validation and sanitization Blocked private IP ranges Allowed domain whitelisting Protocol restrictions (HTTPS only)
Code Cora Team About 1 month ago
Completed
SSRF Protection
Description: Input validation for AI provider URLs prevents Server-Side Request Forgery attacks. Users can only connect to allowed AI providers. Problem it solves: Custom AI endpoints could be exploited to make the server access internal resources or malicious URLs. Key features: URL validation and sanitization Blocked private IP ranges Allowed domain whitelisting Protocol restrictions (HTTPS only)
Code Cora Team About 1 month ago
Completed
Rate Limiting
Description: Redis-backed rate limiting with in-memory fallback. Protects the platform from abuse and ensures fair usage. Problem it solves: Without rate limiting, a single user or bot could overwhelm the system, affecting all users. Key features: Redis-backed distributed limiting In-memory fallback for resilience Configurable limits per endpoint Graceful degradation
Code Cora Team About 1 month ago
Completed
Rate Limiting
Description: Redis-backed rate limiting with in-memory fallback. Protects the platform from abuse and ensures fair usage. Problem it solves: Without rate limiting, a single user or bot could overwhelm the system, affecting all users. Key features: Redis-backed distributed limiting In-memory fallback for resilience Configurable limits per endpoint Graceful degradation
Code Cora Team About 1 month ago
Completed
Zero Code Retention
Description: Your code is never stored permanently on CORA servers. Code is processed in memory and discarded immediately after review. Problem it solves: Security-conscious organizations are concerned about code being stored on third-party servers. Key features: In-memory processing only No persistent code storage Immediate data deletion post-review Privacy-first architecture
Code Cora Team About 1 month ago
Completed
Zero Code Retention
Description: Your code is never stored permanently on CORA servers. Code is processed in memory and discarded immediately after review. Problem it solves: Security-conscious organizations are concerned about code being stored on third-party servers. Key features: In-memory processing only No persistent code storage Immediate data deletion post-review Privacy-first architecture
Code Cora Team About 1 month ago
Completed
Diff-Only Analysis
Description: Only changed lines are analyzed, not entire files. This makes reviews 100x more efficient in terms of tokens and cost. Problem it solves: Reviewing entire files wastes tokens and money. Most PRs only change a small portion of files. Key features: Unified diff parsing Context-aware analysis Massive token savings Faster review times
Code Cora Team About 1 month ago
Completed
Diff-Only Analysis
Description: Only changed lines are analyzed, not entire files. This makes reviews 100x more efficient in terms of tokens and cost. Problem it solves: Reviewing entire files wastes tokens and money. Most PRs only change a small portion of files. Key features: Unified diff parsing Context-aware analysis Massive token savings Faster review times
Code Cora Team About 1 month ago
Completed
Multi-Provider AI
Description: Switch between OpenAI, Anthropic, Groq, and custom providers. Use the best AI for each task or optimize for cost. Problem it solves: Different AI models excel at different tasks. Teams want flexibility to choose models based on cost, speed, or capability. Key features: OpenAI (GPT-4, GPT-4-turbo, GPT-3.5) Anthropic (Claude 3 Opus, Sonnet, Haiku) Groq (Llama 3, Mixtral) Custom endpoints (Ollama, vLLM, etc.) Per-review model selection
Code Cora Team About 1 month ago
Completed
Multi-Provider AI
Description: Switch between OpenAI, Anthropic, Groq, and custom providers. Use the best AI for each task or optimize for cost. Problem it solves: Different AI models excel at different tasks. Teams want flexibility to choose models based on cost, speed, or capability. Key features: OpenAI (GPT-4, GPT-4-turbo, GPT-3.5) Anthropic (Claude 3 Opus, Sonnet, Haiku) Groq (Llama 3, Mixtral) Custom endpoints (Ollama, vLLM, etc.) Per-review model selection
Code Cora Team About 1 month ago
Completed
Token Tracking
Description: Monitor AI token usage and costs per workspace. Understand your spending and optimize AI usage. Problem it solves: AI API costs can spiral without visibility. Teams need to track usage for budgeting and optimization. Key features: Real-time token counting Cost estimation per provider Usage breakdown by repository Historical trends
Code Cora Team About 1 month ago
Completed
Token Tracking
Description: Monitor AI token usage and costs per workspace. Understand your spending and optimize AI usage. Problem it solves: AI API costs can spiral without visibility. Teams need to track usage for budgeting and optimization. Key features: Real-time token counting Cost estimation per provider Usage breakdown by repository Historical trends
Code Cora Team About 1 month ago
Completed
Workspaces
Description: Organize repositories by team, project, or client. Each workspace has its own settings, API keys, and usage tracking. Problem it solves: Managing a growing number of repositories becomes chaotic. Teams need logical grouping and isolated configurations. Key features: Multiple workspaces per account Repository assignment Per-workspace AI settings Isolated usage tracking
Code Cora Team About 1 month ago
Completed
Workspaces
Description: Organize repositories by team, project, or client. Each workspace has its own settings, API keys, and usage tracking. Problem it solves: Managing a growing number of repositories becomes chaotic. Teams need logical grouping and isolated configurations. Key features: Multiple workspaces per account Repository assignment Per-workspace AI settings Isolated usage tracking
Code Cora Team About 1 month ago
Completed
CLI - Pre-commit Hooks
Description: Automatic code review on every git commit. Catch issues before they even reach your pull request. Problem it solves: Reviewing code after pushing means wasted CI minutes and longer feedback loops. Pre-commit reviews catch issues instantly. Key features: Automatic hook installation Configurable review triggers Fast feedback loop Blocks commits with critical issues (optional) Setup: cora hooks install # Now every commit triggers a review
Code Cora Team About 1 month ago
Completed
CLI - Pre-commit Hooks
Description: Automatic code review on every git commit. Catch issues before they even reach your pull request. Problem it solves: Reviewing code after pushing means wasted CI minutes and longer feedback loops. Pre-commit reviews catch issues instantly. Key features: Automatic hook installation Configurable review triggers Fast feedback loop Blocks commits with critical issues (optional) Setup: cora hooks install # Now every commit triggers a review
Code Cora Team About 1 month ago
Completed
CLI - Multiple Output Formats
Description: Flexible output formats for different use cases: pretty (terminal), JSON (automation), compact (summary), and SARIF (security tools). Problem it solves: Different workflows require different output formats. Developers need human-readable output while CI/CD systems need machine-readable formats. Key features: pretty - Color-coded terminal output with emojis json - Structured JSON for automation and scripting compact - Minimal summary for quick reviews sarif - Static Analysis Results Interchange Format for security tools Usage: cora review --format json cora review --format sarif > results.sarif
Code Cora Team About 1 month ago
Completed
CLI - Multiple Output Formats
Description: Flexible output formats for different use cases: pretty (terminal), JSON (automation), compact (summary), and SARIF (security tools). Problem it solves: Different workflows require different output formats. Developers need human-readable output while CI/CD systems need machine-readable formats. Key features: pretty - Color-coded terminal output with emojis json - Structured JSON for automation and scripting compact - Minimal summary for quick reviews sarif - Static Analysis Results Interchange Format for security tools Usage: cora review --format json cora review --format sarif > results.sarif
Code Cora Team About 1 month ago
Completed
BYOK (Bring Your Own Key)
Description: Use your own AI API keys from OpenAI, Anthropic, Groq, or any OpenAI-compatible provider. Full control over your AI costs and data. Problem it solves: Vendor lock-in and unpredictable per-review pricing. Teams want to use their existing AI subscriptions and control costs. Key features: OpenAI API support (GPT-4, GPT-4-turbo, GPT-3.5) Anthropic Claude support Groq support (Llama, Mixtral) Custom OpenAI-compatible endpoints (Ollama, LocalAI, etc.) Per-workspace API key configuration
Code Cora Team About 1 month ago
Completed
BYOK (Bring Your Own Key)
Description: Use your own AI API keys from OpenAI, Anthropic, Groq, or any OpenAI-compatible provider. Full control over your AI costs and data. Problem it solves: Vendor lock-in and unpredictable per-review pricing. Teams want to use their existing AI subscriptions and control costs. Key features: OpenAI API support (GPT-4, GPT-4-turbo, GPT-3.5) Anthropic Claude support Groq support (Llama, Mixtral) Custom OpenAI-compatible endpoints (Ollama, LocalAI, etc.) Per-workspace API key configuration
Code Cora Team About 1 month ago
Completed
CLI Tool
Description: Pre-commit code reviews with the cora review command. Review your code locally before pushing to catch issues early and save review cycles. Problem it solves: Waiting for CI/CD or remote reviews slows down development. Catching issues locally is faster and more efficient. Key features: cora review - Review staged changes cora review --base main - Review against base branch cora review --staged - Review only staged files Multiple output formats (pretty, JSON, compact, SARIF) Pre-commit hook integration Installation: npm install -g @codecora/cli cora review
Code Cora Team About 1 month ago
Completed
CLI Tool
Description: Pre-commit code reviews with the cora review command. Review your code locally before pushing to catch issues early and save review cycles. Problem it solves: Waiting for CI/CD or remote reviews slows down development. Catching issues locally is faster and more efficient. Key features: cora review - Review staged changes cora review --base main - Review against base branch cora review --staged - Review only staged files Multiple output formats (pretty, JSON, compact, SARIF) Pre-commit hook integration Installation: npm install -g @codecora/cli cora review
Code Cora Team About 1 month ago
Completed
GitHub App Integration
Description: Automated AI-powered code reviews triggered automatically when you open a pull request on GitHub. CORA integrates seamlessly as a GitHub App, providing instant feedback on your code without leaving your workflow. Problem it solves: Manual code reviews are time-consuming and inconsistent. Developers often miss bugs, security vulnerabilities, and performance issues during peer reviews. Key features: Automatic review on PR creation and updates Inline comments directly on your pull request Configurable review triggers and filters Support for public and private repositories How to use: Install CORA GitHub App from https://github.com/apps/code-cora Select repositories to enable Open a PR and get instant AI review
Code Cora Team About 1 month ago
Completed
GitHub App Integration
Description: Automated AI-powered code reviews triggered automatically when you open a pull request on GitHub. CORA integrates seamlessly as a GitHub App, providing instant feedback on your code without leaving your workflow. Problem it solves: Manual code reviews are time-consuming and inconsistent. Developers often miss bugs, security vulnerabilities, and performance issues during peer reviews. Key features: Automatic review on PR creation and updates Inline comments directly on your pull request Configurable review triggers and filters Support for public and private repositories How to use: Install CORA GitHub App from https://github.com/apps/code-cora Select repositories to enable Open a PR and get instant AI review
Code Cora Team About 1 month ago