npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

bitbucket-copilot-pr-review

v0.7.3

Published

CLI-first Bitbucket Data Center pull request review with GitHub Copilot SDK

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

guitaoliuguitaoliu

Keywords

Readme

Bitbucket Copilot PR Review

CLI-first pull request review automation for Bitbucket Data Center, powered by the GitHub Copilot SDK.

This project computes a PR diff locally, gives Copilot a tightly scoped read-only view of the changed code, and publishes the result back to Bitbucket as a Code Insights report, inline finding comments, and one tagged summary comment.

Highlights

  • reviews only the changed pull request scope
  • runs from your local checkout or CI workspace instead of shipping repository contents to a separate service
  • publishes native Bitbucket review artifacts
  • loads trusted repo-level configuration from the PR base commit

Requirements

  • Node.js 24.12+
  • pnpm 10+
  • Bitbucket Data Center API access
  • a GitHub Copilot-enabled account

Authentication

  • Bitbucket: set BITBUCKET_TOKEN, or use BITBUCKET_USERNAME and BITBUCKET_PASSWORD with BITBUCKET_AUTH_TYPE=basic
  • GitHub Copilot: this CLI relies on the GitHub Copilot SDK, which uses existing GitHub or Copilot authentication already available in your environment

In practice, that usually means one of these is already set up before you run the tool:

  • an existing gh auth login
  • an existing Copilot CLI login
  • a supported GitHub token environment variable recognized by the Copilot SDK

If your Copilot account is on GitHub Enterprise Cloud with data residency (*.ghe.com), also set GH_HOST to that hostname before running the reviewer, for example GH_HOST=mycompany.ghe.com.

See docs/operations.md for the operator-focused details and the upstream SDK auth reference.

Use With npx

Run the CLI with npx from the same local repository checkout that the pull request points to:

export BITBUCKET_TOKEN="<bitbucket token>"

NODE_USE_SYSTEM_CA=1 npx bitbucket-copilot-pr-review review \
  https://bitbucket.example.com/projects/PROJ/repos/my-repo/pull-requests/123 \
  --dry-run

The review command reads local git data from your current working directory by default, so run it from the target repository root. Set REPO_ROOT or --repo-root only when the repository being reviewed lives somewhere else.

When the dry run looks correct, rerun without --dry-run to publish the Bitbucket review artifacts.

Quick Start From Source

  1. Install dependencies and build the CLI locally:

    corepack enable
pnpm install
pnpm build

  2. Export Bitbucket auth and, when needed, point the reviewer at a local checkout:

    export BITBUCKET_TOKEN="<bitbucket token>"
export REPO_ROOT="/path/to/local/my-repo"

  3. Dry-run one pull request first:

    pnpm review:dry-run -- https://bitbucket.example.com/projects/PROJ/repos/my-repo/pull-requests/123

  4. Publish once the output looks correct:

    pnpm review -- https://bitbucket.example.com/projects/PROJ/repos/my-repo/pull-requests/123

Use pnpm review --help for command-specific help while developing locally.

How It Works

  • reads pull request metadata from Bitbucket Data Center
  • computes the effective PR diff from local git data
  • asks Copilot to inspect only the changed review scope through read-only tools
  • validates findings against changed lines before publication
  • publishes a Bitbucket Code Insights report, inline finding comments, and a tagged PR summary comment

Repo Config Example

If the target repository contains a root-level copilot-code-review.json, the reviewer loads it from the trusted base commit and uses it as repo-scoped configuration. The schema lives at schemas/copilot-code-review.schema.json.

Minimal example:

{
  "$schema": "./schemas/copilot-code-review.schema.json",
  "review": {
    "ignorePaths": ["i18n/locales/**/*.json"],
    "maxFiles": 300,
    "maxFindings": 25
  }
}

Expanded example:

{
  "$schema": "./schemas/copilot-code-review.schema.json",
  "copilot": {
    "model": "gpt-5.3-codex",
    "reasoningEffort": "xhigh"
  },
  "report": {
    "title": "Copilot Review",
    "commentStrategy": "recreate"
  },
  "review": {
    "ignorePaths": ["i18n/locales/**/*.json", "docs/generated/**"],
    "maxFiles": 300,
    "maxFindings": 25,
    "minConfidence": "medium",
    "maxPatchChars": 12000,
    "defaultFileSliceLines": 250,
    "maxFileSliceLines": 400,
    "skipBranchPrefixes": ["renovate/", "deps/"]
  }
}

CLI Usage

Published package:

NODE_USE_SYSTEM_CA=1 npx bitbucket-copilot-pr-review review --help

Local source checkout:

pnpm build
node dist/cli.js review --help

Documentation

  • docs/operations.md - configuration, local testing, CI usage, release verification, and npm publishing
  • schemas/copilot-code-review.schema.json - JSON schema for trusted repo config

Why This Exists

Bitbucket Data Center teams often want Copilot-assisted review inside their existing development and CI workflows. This project keeps the review loop inside your own Bitbucket and execution environment while staying conservative about file access, changed-line validation, and publication behavior.

License

This project is licensed under Apache-2.0.

It depends on @github/copilot, which is distributed under GitHub's separate license terms. Those terms apply to that runtime and GitHub Copilot service access; Apache-2.0 applies to this repository's source code.