npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@sebastiendegodez/azdo-codereview

v1.7.3

Published

Azure DevOps Code Review automation using OpenAI

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

sebastiendegodezsebastiendegodez

Keywords

azure-devopscode-reviewopenaiautomationaipull-request

Readme

AZDo-codereview

Azure DevOps Code Review automation using OpenAI.

Automatically reviews pull requests in Azure DevOps by sending code changes to OpenAI and posting the findings as review comments.

Demonstration

See the tool in action on a real Azure DevOps pull request:

demonstration video

Prerequisites

Installation

This package is published on both the npm registry and the GitHub Packages npm registry.

Install from npm (recommended)

No authentication required:

npm install -g @sebastiendegodez/azdo-codereview

Install locally as a development dependency

npm install --save-dev @sebastiendegodez/azdo-codereview

Install from GitHub Packages

If you prefer to install from GitHub Packages, create or edit a .npmrc file in your project root (or in ~/.npmrc for global installs):

@sebastiendegodez:registry=https://npm.pkg.github.com
//npm.pkg.github.com/:_authToken=YOUR_GITHUB_TOKEN

Your GitHub token needs the read:packages scope. You can create one at github.com/settings/tokens.

Then install:

npm install -g @sebastiendegodez/azdo-codereview

Usage

Environment Variables

The following environment variables must be set before running:

| Variable | Description | |---|---| | OPENAI_API_KEY | Your OpenAI API key (or a GitHub token when using GitHub Models) | | OPENAI_BASE_URL | (optional) Override the OpenAI base URL — set to https://models.inference.ai.azure.com for GitHub Models | | OPENAI_MODEL | (optional) Model name to use — defaults to gpt-4o | | AZURE_DEVOPS_ORG | Azure DevOps organisation name | | AZURE_DEVOPS_PROJECT | Azure DevOps project name | | AZURE_DEVOPS_REPO | Repository name | | AZURE_DEVOPS_PR_ID | Pull request ID to review | | AZURE_DEVOPS_PAT | Azure DevOps Personal Access Token |

Running the Review

Global installation:

azdo-codereview

Local installation (via npx):

npx azdo-codereview

Local installation (via npm script):

Add to your package.json:

{
  "scripts": {
    "review": "azdo-codereview"
  }
}

Then run:

npm run review

Customising the Review with Skills and Instructions

Place optional configuration files in your repository:

  • .github/skills/ — Markdown skill files loaded by the AI reviewer (e.g. clean-code.md, security.md)
  • .github/instructions/ — Instruction files with applyTo front matter to target specific file patterns
  • .github/copilot-instructions.md — Global system instructions for the AI reviewer

Azure DevOps Pipeline Integration

Add a pipeline step to your azure-pipelines.yml:

- script: |
    npm install -g @sebastiendegodez/azdo-codereview
    azdo-codereview
  displayName: "AI Code Review"
  env:
    OPENAI_API_KEY: $(OPENAI_API_KEY)
    AZURE_DEVOPS_ORG: $(AzureDevOpsOrg)    # pipeline variable — organisation name only (e.g. myorg)
    AZURE_DEVOPS_PROJECT: $(System.TeamProject)
    AZURE_DEVOPS_REPO: $(Build.Repository.Name)
    AZURE_DEVOPS_PR_ID: $(System.PullRequest.PullRequestId)
    AZURE_DEVOPS_PAT: $(System.AccessToken)

Note: AZURE_DEVOPS_ORG must be the organisation name only (e.g. myorg), not the full collection URI. Define it as a pipeline variable. The pipeline must be triggered by a pull request for AZURE_DEVOPS_PR_ID to be set.

Using GitHub Copilot (GitHub Models) as the LLM

Instead of a paid OpenAI API key you can use GitHub Models — the OpenAI-compatible inference endpoint built into GitHub — with your existing GitHub token. This is particularly useful in GitHub-hosted pipelines where GITHUB_TOKEN is always available.

How it works

GitHub Models exposes an OpenAI-compatible REST API at:

https://models.inference.ai.azure.com

Because azdo-codereview wraps the official openai Node.js SDK, you only need to set two extra environment variables to point it at GitHub Models instead of api.openai.com:

| Variable | Value | |---|---| | OPENAI_API_KEY | Your GitHub Personal Access Token (classic or fine-grained) — or $(GITHUB_TOKEN) in pipelines | | OPENAI_BASE_URL | https://models.inference.ai.azure.com | | OPENAI_MODEL | Model name, e.g. gpt-4o, gpt-4o-mini, gpt-4.1 (see available models) |

Note: OPENAI_MODEL is optional and defaults to gpt-4o when not set.

Azure DevOps pipeline example (GitHub Models)

- script: |
    npm install -g @sebastiendegodez/azdo-codereview
    azdo-codereview
  displayName: "AI Code Review (GitHub Models)"
  env:
    OPENAI_API_KEY: $(GITHUB_TOKEN)          # GitHub token — no separate OpenAI account needed
    OPENAI_BASE_URL: https://models.inference.ai.azure.com
    OPENAI_MODEL: gpt-4o
    AZURE_DEVOPS_ORG: $(AzureDevOpsOrg)
    AZURE_DEVOPS_PROJECT: $(System.TeamProject)
    AZURE_DEVOPS_REPO: $(Build.Repository.Name)
    AZURE_DEVOPS_PR_ID: $(System.PullRequest.PullRequestId)
    AZURE_DEVOPS_PAT: $(System.AccessToken)

Tip: GitHub Models has generous free-tier rate limits for gpt-4o-mini — a good choice for high-volume PR reviews.

Architecture

The project follows a clean architecture with four layers:

src/
  api/                          # API layer — thin entry point (wiring only)
    review-runner.js            # Wires infrastructure → application → execute
  application/                  # Application layer — use cases
    get-reviewable-files.js     # Use case: get PR info + filter reviewable files
    review-pull-request.js      # Use case: orchestrate full PR review
  domain/                       # Domain layer — pure entities (no dependencies)
    PullRequest.js              # PR entity (title, commit IDs, …)
    FileChange.js               # Changed-file entity with isDeleted() helper
    ReviewThread.js             # Posted-comment entity with isActive() helper
    ReviewComment.js            # Review comment value object with severity + formatting
    CodeRange.js                # Value object: column-level code selection (start, end)
  infrastructure/               # Infrastructure layer — external adapters
    azure-devops-client.js      # Azure DevOps REST API adapter (HTTP ↔ domain)
    openai-review-client.js     # OpenAI Chat Completions adapter (agentic loop)
    skill-reader.js             # Filesystem skill reader (lazy loading)
    instruction-reader.js       # Filesystem instruction reader (applyTo filtering)
azuredevops-openai-review.js    # Root entry point (delegates to API layer)
tests/
  unit/                         # Outside-in unit tests (Application layer)
  integration/                  # Integration tests (Infrastructure via Microcks)
  mocks/                        # OpenAPI contracts + Microcks artifacts
.github/
  workflows/
    ci.yml                      # GitHub Actions CI pipeline (runs on every push / PR)
    release.yml                 # GitHub Actions auto-tag, release & publish to npm + GitHub Packages

Testing

Prerequisites

  • Node.js 20+
  • Docker (required for integration tests — Testcontainers manages the lifecycle)

Setup

npm install

Running Tests

| Command | Description | |---|---| | npm test | Runs unit → integration tests in sequence | | npm run test:unit | Unit tests (outside-in on Application layer) — no Docker needed | | npm run test:integration | Integration tests with Microcks Testcontainers (Docker required) |

Unit Tests (Outside-In)

Unit tests follow the outside-in approach on the Application layer:

  • Real domain objects (PullRequest, FileChange, ReviewComment) — never mocked
  • Mocked infrastructure boundaries (gateway, review client, skill reader, instruction reader)
  • Tests verify observable behavior from the use case entry point

Integration Tests (Microcks + Testcontainers)

Integration tests verify the Infrastructure layer against Microcks containers started automatically by Testcontainersno docker-compose file needed.

Two infrastructure adapters are tested:

  • Azure DevOps client — 7 tests against Azure DevOps PR API mock
  • OpenAI review client — 2 tests against OpenAI Chat Completions API mock

Mock API artifacts (tests/mocks/)

| File | Role | |---|---| | azure-devops-pr-api.openapi.yaml | Azure DevOps OpenAPI 3.0 contract | | azure-devops-pr-api.apiexamples.yaml | Microcks examples for Azure DevOps | | azure-devops-pr-api.apimetadata.yaml | Dispatcher rules for Azure DevOps | | openai-chat-completions.openapi.yaml | OpenAI Chat Completions OpenAPI 3.0 contract | | openai-chat-completions.apiexamples.yaml | Microcks examples for OpenAI | | openai-chat-completions.apimetadata.yaml | Dispatcher rules for OpenAI |

CI Pipeline

The .github/workflows/ci.yml pipeline runs on every push and pull request:

  1. Installnpm ci
  2. Unit testsnpm run test:unit (outside-in, no Docker)
  3. Integration testsnpm run test:integration (Testcontainers + Microcks)

Publishing

The package is automatically published to both the npm registry and the GitHub Packages npm registry when a version tag is pushed.

Required secrets

| Secret | Description | |---|---| | NPM_TOKEN | npm access token with publish permission — create one at npmjs.com |

GITHUB_TOKEN is provided automatically by GitHub Actions for publishing to GitHub Packages.

Release a new version

Push a commit to main using Conventional Commits — the release.yml workflow will automatically:

  1. Determine the version bump from commit messages (feat → minor, fix/chore/etc. → patch, breaking change → major)
  2. Update package.json and create a vx.y.z tag
  3. Create a GitHub Release with auto-generated notes
  4. Run the full test suite (unit + integration)
  5. Publish the package to both npm and GitHub Packages on success

Install from npm

npm install -g @sebastiendegodez/azdo-codereview

Install from GitHub Packages

Add a .npmrc file to authenticate:

@sebastiendegodez:registry=https://npm.pkg.github.com
//npm.pkg.github.com/:_authToken=YOUR_GITHUB_TOKEN

Then install:

npm install -g @sebastiendegodez/azdo-codereview