Capable and widely adopted for automated pull request review, but buyers should weigh its unresolved benchmark disputes and a serious 2025 security incident before committing.
CodeRabbit is an AI code review tool that comments on pull requests automatically, generating a summary, a walkthrough, and a diagram of what changed. It also reviews code inside the IDE (VS Code and forks like Cursor and Windsurf) and from the command line, before a pull request even exists. The company has raised $88 million across two funding rounds and reports thousands of paying customers, but its own accuracy claims conflict with benchmarks published by competitors, and a serious 2025 security vulnerability is part of its public record.
Install CodeRabbit as an app on GitHub, GitLab, Azure DevOps, or Bitbucket, or connect the CLI or IDE extension directly.
When a PR opens, CodeRabbit generates a summary, a walkthrough, and a diagram of the change, then posts inline comments flagging bugs, style issues, and guideline violations.
Simple fixes can be applied with one click; harder ones are handed to an AI coding agent. Inside the PR, users can chat with the bot to request unit tests, documentation, or a Jira or Linear issue.
The VS Code extension (and Cursor or Windsurf) and a standalone CLI let developers get review comments before a PR is even opened.
How a team replies to or resolves review threads feeds a 'Learnings' system that CodeRabbit applies to future reviews, according to the company.
EDITORIAL NOTEDownward adjustment reflects the severity of the 2025 "PwnedRabbit" RCE vulnerability (unsandboxed linter execution leaking CodeRabbit's GitHub App private key, risking access to roughly 1 million connected repositories) and the roughly 7-month delay before public disclosure, which the privacy sub-score alone does not fully capture.
AI synthesis of external reviews · not on bestaiq
Synthesized from 7 external reviews. Independent signal (Trustpilot / Reddit / verified aggregators) weighted higher than commission-carrying review sites.
According to its privacy policy, CodeRabbit and the underlying model providers, stated as OpenAI and Anthropic, do not use private repository code to train models. That exclusion does not apply to public open source code, which CodeRabbit says it does use for training.
Security researchers found that CodeRabbit ran a linter without sandboxing, which let a crafted pull request execute arbitrary code and expose CodeRabbit's GitHub App private key. That key could have been used to access roughly 1 million connected repositories. CodeRabbit disabled the affected linter and rotated credentials within days of being notified in January 2025; the researchers published their findings publicly about seven months later, in August 2025.
There is a free tier with capped usage. Paid plans start at $24 per developer per month billed annually, or $30 per developer per month billed monthly according to CodeRabbit's documentation, with a Pro Plus tier at $48 per developer per month billed annually. Enterprise pricing is not published and requires contacting sales.
CodeRabbit integrates with GitHub, GitLab, Azure DevOps, and Bitbucket Cloud, which launched in beta in February 2025. It also has a VS Code extension that works with Cursor and Windsurf, plus a standalone CLI.
Not fully. The most neutral benchmark found, run by the research lab Martian, reports CodeRabbit had the highest recall among tools tested in its online sample, but the full detailed leaderboard was not accessible for independent confirmation. Benchmarks published by competitors such as Greptile, Entelligence, and DeepSource all rank their own product first and CodeRabbit noticeably lower; those are vendor-run comparisons, not neutral audits.
CodeRabbit is a broadly integrated, reasonably priced automated PR review tool with positive ratings on G2 and AWS Marketplace, but its accuracy claims are contested by competitor benchmarks, and it carries the record of a serious 2025 security vulnerability that took months to disclose publicly.