1 of 100

BITO

Getting Started

Welcome to Bito, a developer's personal assistance that can boost productivity by more than 30%. In this chapter, we will cover the essentials of what you need to know to kickstart your journey with Bito.

Quick Overview

10X Developer with Bito

Bito's AI helps developers dramatically accelerate their impact. It's a Swiss Army knife of capabilities that can 10x your developer productivity and save you an hour a day, using the same models as ChatGPT!

Bito AI makes it easy to write code, understand syntax, write test cases, explain code, comment on code, check security, and even explain high-level concepts. Trained on billions of lines of code and millions of documents, it's pretty incredible what we can help you do without having to search the web or waste time on tedious stuff.

What can you do with Bito?

Bito AI is a general-purpose AI assistance in that developers can ask any technical question, generate code from the natural language prompts, and get feedback on the existing code. Here are some things you can do with Bito AI Knowledge Assistance.

Generate Code: Ask Bito to generate code in any language with the natural language prompt. (e.g., write a Java function to convert a number from one base to another)
Command Syntax: Ask for the syntax of any technical command. (e.g., How to set a global variable for git?")
Test Cases: Generate test cases for the code.
Explain Code: Explain the selected code. Ask how this code works or what it does.
Comment Method: Generate a comment for the function or method to add to your code.
Improve Performance: Ask how you can improve the performance of a given code.
Check Security: Ask if the selected code has any known security issues.
Learn Technical Concepts: Ask a question about any technical concept (e.g., Explains B+ trees, explain Banker's algorithm)

Through extensions, Bito meets you where you work, your IDEs, like Visual Studio Code or JetBrains family of IDE.

Next, learn how to install Bito extensions.

Installing on Visual Studio Code

It takes less than 2 minutes

Video guide

Watch the video below to learn how to download the Bito extension on VS Code.

Step-by-step instructions

In Visual Studio Code, go to the extension tab and search for Bito.

Install the extension. We recommend you restart the IDE after the installation is complete.

After a successful install, the Bito logo appears in the Visual Studio Code pane.

Click the Bito logo to launch the extension and complete the setup process. You will either need to create a new workspace if you are the first in your company to install Bito or join an existing workspace created by a co-worker. See Managing Workspace Members

Setup Bito extension in VS Code running through SSH

SSH (Secure Shell) is a network protocol that securely enables remote access, system management, and file transfer between computers over unsecured networks.

Visual Studio Code IDE allows developers to access and collaborate on projects from any connected machine remotely. The corresponding extension [Remote -SSH] must be installed on the host machine's Visual Studio Code IDE to utilize this feature.

The Bito VS Code extension seamlessly integrates with Remote development via SSH, allowing developers to utilize Bito features and capabilities on their remote machines.

Remote SSH connection and setup

Please follow the instructions given in the links below:

Video Guide:

Setup Bito extension in VS Code running through WSL

Running VS Code on WSL allows developers to work in a Linux-like environment directly from Windows. This kind of setup is to take advantage of development experience on both operating systems.

WSL provides access to Linux command-line tools, utilities, and applications, to enhance productivity and streamline the development process.

This setup ensures a consistent development environment across different systems, making it easier to develop, test, and deploy applications that will run on Linux servers.

WSL connection and setup

Please follow the instructions given in the links below:

Video Guide:

Installing on JetBrain IDEs

It takes less than 2 minutes

Video guide

Watch the video below to learn how to download the Bito extension on JetBrains IDEs.

Step-by-step instructions

In JetBrains IDEs such as IntelliJ, go to File -> Settings to open the Settings dialog, and click Plugins -> Marketplace tab in the settings dialog. Search for Bito.

2. Click "Install" to install the Bito extension. We recommend you restart the IDE after the installation is complete.

Starting with Bito version 1.3.4, the extension is only supported on JetBrains versions 2021.2.4 and higher. JetBrains version 2021.1.3 is no longer supported from Bito version 1.3.4 onward.

3. Bito panel will appear on the right-hand sidebar. Click it to complete the setup process. You will either need to create a new workspace if you are the first in your company to install Bito or join an existing workspace created by a co-worker. See Managing Workspace Members

Installing Chrome Extension

It takes less than 2 minutes

Step-by-Step Instructions

Now click on the “Add to Chrome” button.
A popup will appear. Click on “Add extension” to install Bito in Google Chrome. The installation process will only take a few seconds.
Once Bito is installed, a new popup will appear, informing you that the Bito extension has been added to Chrome. Simply close this popup.
Now click on the “Extensions icon” given on the top-right side of your browser window. A popup box will appear. Here you will see something like “Bito” in the list. Select the small pin icon in front of it to always show the “Bito icon” in the browser ribbon.
For example:
Now, click the “Bito icon” from the browser ribbon. You will be asked to create a new Bito account or sign in to your existing account. You can also try Bito as a Guest user. But you will be limited to only asking 10 questions as a Guest. So, it is better to sign up to get unlimited access for free.
Type your email address and click on “Continue”. A six-digit confirmation code will be sent to your email.
Enter the confirmation code in the given input field and click on “Submit”.
If the confirmation code you entered is correct, you will be logged in to Bito Chrome Extension. Here is how the user interface (UI) will look like.
You can try the prompts already given in the UI by simply clicking on them. Additionally, you can type your own technical questions in the given input box and click on the “Send” button.
Bito will quickly start writing the answer. Once the answer is generated, you can select the “Copy Answer” button to copy it to your clipboard and paste it wherever you want to.

Vim/Neovim Plugin

Vim/ Neovim Plugin for Bito Using Bito CLI

We are excited to announce that one of our users has developed a dedicated Vim and Neovim plugin for Bito, integrating it seamlessly with your favorite code editor. This plugin enhances your coding experience by leveraging the power of Bito's AI capabilities directly within Vim and Neovim.

Installation

To get started with "vim-bitoai," follow these steps:

Step 1: Install Bito CLI

Step 2: Install the Plugin

Open your terminal and navigate to your Vim or Neovim plugin directory. Then, clone the "vim-bitoai" repository using the following command:

git clone https://github.com/zhenyangze/vim-bitoai.git

Step 3: Configure the Plugin

Open your Vim or Neovim configuration file and add the following lines:

" Vim Plug
Plug 'zhenyangze/vim-bitoai'

" NeoBundle
NewBundle 'zhenyangze/vim-bitoai'

" Vundle
Plugin 'zhenyangze/vim-bitoai'

Save the configuration file and restart your editor or run :source ~/.vimrc (for Vim) or :source ~/.config/nvim/init.vim (for Neovim) to load the changes.

Step 4: Verify the Installation

Open Vim or Neovim, and you should now have the "vim-bitoai" plugin installed and ready to use.

Usage

You can use its powerful features once you have installed the "vim-bitoai" plugin. Here are some of the available commands:

BitoAiGenerate: Generates code based on a given prompt.
BitoAiGenerateUnit: Generates unit test code for the selected code block.
BitoAiGenerateComment: Generates comments for methods, explaining parameters and output.
BitoAiCheck: Performs a check for potential issues in the code and suggests improvements.
BitoAiCheckSecurity: Checks the code for security issues and provides recommendations.
BitoAiCheckStyle: Checks the code for style issues and suggests style improvements.
BitoAiCheckPerformance: Analyzes the code for performance issues and suggests optimizations.
BitoAiReadable: Organizes the code to enhance readability and maintainability.
BitoAiExplain: Generates an explanation for the selected code.

To execute a command, follow these steps:

Open a file in Vim or Neovim that you want to work on.
Select the code block you want to act on. You can use visual mode or manually specify the range using line numbers.
Execute the desired command by running the corresponding command in command mode. For example, to generate code based on a prompt, use the : BitoAiGenerate command. Note: Some commands may prompt you for additional information or options.
The plugin will communicate with the Bito CLI and execute the command, providing the output directly within your editor.

By leveraging the "vim-bitoai" plugin, you can directly harness the power of Bito's AI capabilities within your favorite Vim or Neovim editor. This integration lets you streamline your software development process, saving time and effort in repetitive tasks and promoting efficient coding practices.

Customization

The "vim-bitoai" plugin also offers customization options tailored to your specific needs. Here are a few variables you can configure in your Vim or Neovim configuration file:

g:bito_buffer_name_prefix: Sets the prefix for the buffer name in the Bito history. By default, it is set to 'bito_history_'.
g:vim_bito_path: Specifies the path to the Bito CLI executable. If the Bito CLI is not in your system's command path, you can provide the full path to the executable.
g:vim_bito_prompt_{command}: Allows you to customize the prompt for a specific command. Replace {command} with the desired command.

To define a custom prompt, add the following line to your Vim or Neovim configuration file and replace your prompt with the desired prompt text:

if !exists("g:vim_bito_prompt_{command}")
    let g:vim_bito_prompt_{command}="your prompt"
endif

Remember to restart your editor or run the appropriate command to load the changes.

We encourage you to explore the "vim-bitoai" plugin and experience the benefits of seamless integration between Bito and your Vim or Neovim editor. Feel free to contribute to the repository or provide feedback to help us further improve this plugin and enhance your coding experience.

Bito AI Examples

Supercharging development with AI

Bito AI Assistance can help with generating new content or help with your existing code.

Click on each use case for an example instruction and response.

Generate Code

Instruction

Implement a simple rest API in Go.

Response

package main
import ( 
"encoding/json" "fmt" "net/http" )
type user struct { Name string json:"name" Age int json:"age" }
func main() 
{http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) { 
	// Create user 
	u := user{ Name: "John Doe", Age: 25, }
	// Encode user
	uj, err := json.Marshal(u)
	if err != nil {
		fmt.Fprintf(w, err.Error())
	}
	// Return user
	w.Header().Set("Content-Type", "application/json")
	w.WriteHeader(http.StatusOK)
	fmt.Fprintf(w, "%s\n", uj)
})
http.ListenAndServe(":3000", nil)
}

Command Syntax

Instruction

How to rebase a branch in git?

Response

Checkout the branch you want to rebase:

$ git checkout

Rebase your branch against the upstream branch:

$ git rebase upstream/

Resolve any conflicts that arise.
Once all conflicts are resolved, do a git status to verify that all files have been updated correctly.
Finally, push the rebased branch to the remote repository:

$ git push origin --force

Learn Technical Concepts

Instruction

Can you explain the B+ tree with a code example?

Response

A B+ tree is a self-balancing tree data structure used in databases to store and retrieve data efficiently. It is a variation of the B-tree and is designed to minimize the number of disk accesses required for insertion, deletion, and retrieval operations. B+ trees are characterized by the number of keys stored per node, the order of the nodes, and the number of children per node.

For example, a B+ tree of order 5 would have 5 keys per node and 5 children per node. When a node becomes full, it will split into two nodes, each containing half of the keys and half of the children. This means that all the nodes at the same level will have the same number of keys, making retrieval operations more efficient.

Here is an example in Python

class Node:
    def __init__(self, order):
        self.order = order
        self.keys = []
        self.children = [None] * (order + 1)

class BPlusTree:
    def __init__(self, order):
        self.root = Node(order)
 
    def insert(self, key):
        if not self.root.keys:
            self.root.keys.append(key)
        else:
            pass # traverse the tree and insert the key
 
    def delete(self, key):
        pass # traverse the tree and delete the key
 
    def search(self, key):
        pass # traverse the tree and search for the key
 
# Create a B+ tree of order 5
bplus_tree = BPlusTree(5)
 
# Insert a key
bplus_tree.insert(10)
 
# Delete a key
bplus_tree.delete(10)

# Search for a key
bplus_tree.search(10)

Test Case

Instruction

Generate test cases for the following method.

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

Test Case 1: Input: newLabelArray = [ 'Apple', 'Banana', 'Mango', 'Apple' ] oldLabelArray = [ 'Banana', 'Mango', 'Orange' ] Expected Output: ['Apple:2', 'Orange:-1']

Test Case 2: Input: newLabelArray = [ 'Apple', 'Banana', 'Apple', 'Orange' ] oldLabelArray = [ 'Banana', 'Mango', 'Orange' ] Expected Output: ['Apple:2', 'Mango:-1']

Explain this Code

Instruction

What does this code do?

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

This code takes two arrays, newLabelArray and oldLabelArray, and generates a new array that contains the difference between the two arrays. It does this by first creating three empty arrays, new_, old_, and merged_. It then iterates through the newLabelArray and adds each label to the new_ array, as well as the merged_ array. It then iterates through the oldLabelArray and does the same for the old_ array, but also subtracts it from the merged_ array. Finally, it iterates through the merged_ array and checks for any values that are not equal to 0 and adds them to the final array. It then returns this final array.

Comment Method

Instruction

Generate a comment for this method, explaining the parameters and output

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

/* This method takes two arrays, newLabelArray and oldLabelArray. It uses the elements of both arrays to generate a merged array, merged_, where it counts the occurrences of each element in both arrays. It then creates a third array, final, containing the elements of merged_ where the difference is not 0. The output is the final array. */

Improve Performance

Instruction

How can I improve the performance of this code?

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

Use ES6 syntax to simplify the code.
Use a hashmap instead of looping through the arrays.
Use a single loop to build the final array instead of two loops.
Use array methods instead of for-each loops.
Use optimized data structures like Set and Map.

Instruction

Rewrite this code with performance improvements?

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

// Rewritten Code
function genrateLabelDiffArray(newLabelArray, oldLabelArray = []) {
  let new_ = {},
    old_ = {},
    merged_ = {},
    final = [];

  newLabelArray.forEach((lbl) => {
    new_[lbl] = new_[lbl] ? new_[lbl] + 1 : 1;
    merged_[lbl] = merged_[lbl] ? merged_[lbl] + 1 : 1;
  });

  oldLabelArray.forEach((lbl) => {
    old_[lbl] = old_[lbl] ? old_[lbl] + 1 : 1;
    merged_[lbl] = merged_[lbl] ? merged_[lbl] - 1 : -1;
  });

  Object.entries(merged_).forEach(([key, value]) => {
    if (value !== 0) {
      final.push(key + ":" + value);
    }
  });
  
  return final;
}

Check for Security

Instruction

Find potential security issues in this code

import database
search_term = input("Enter a search term: ")
query = "SELECT * FROM users WHERE name = '" + search_term + "'"
results = database.query(query)
print(results)

Response

A lack of input validation: the user-supplied search term is not being validated to ensure it is safe to use in a database query. This could leave the system open to SQL injection attacks.
A lack of output encoding: the results from the database are not being encoded before they are printed. This could leave the system open to cross-site scripting attacks.

Instruction

Rewrite this code with fix to potential security issues

import database
search_term = input("Enter a search term: ")
query = "SELECT * FROM users WHERE name = '" + search_term + "'"
results = database.query(query)
print(results)

Response

import database

# Get the user-supplied search term
search_term = input("Enter a search term: ")

# Use the user-supplied search term to query the database
query = "SELECT * FROM users WHERE name = %s"
results = database.query(query, (search_term,))

# Print the results
print(results)

Find Style Issues

Instruction

Identify potential issues that EsLint would find in this code

genrateLabelDiffArray(newLabelArray,oldLabelArray=[])
  {
    let new_ =[],old_=[],merged_=[];
    newLabelArray.forEach((lbl)=>{
      if(new_[lbl] === undefined){ new_[lbl] =0;merged_[lbl]=0; }
      ++new_[lbl];
      ++merged_[lbl];
    });
    
    oldLabelArray.forEach((lbl)=>{
      if(old_[lbl] === undefined){ old_[lbl] =0; }
      if(merged_[lbl] === undefined){ merged_[lbl] =0; }

      ++old_[lbl];
      --merged_[lbl]
    });
    let final = [];

    merged_.forEach((value,key)=>{
      if(value!=0){ 
      //  final[key.toString()] = value;
      final.push(key+":"+value);
       }
    })
    
      return final;
  }

Response

//ESLint would find the following issues:

Missing semicolons (potential syntax errors)
Missing spacing after 'forEach' statements
Unused variables (e.g. 'old_')
Missing spacing between operators (e.g. '++new_[lbl]')

Bito Dev Agents

AI Code Review Agent

On-demand, context-aware AI code reviews for GitHub, GitLab, and Bitbucket.

It seamlessly integrates with Git providers such as GitHub, GitLab, and Bitbucket, automatically posting recommendations directly as comments within the corresponding Pull Request. It includes real-time recommendations from Static Code Analysis and OSS vulnerability tools such as fbinfer, Dependency-Check, etc. and can include high severity suggestions from other 3rd party tools you use such as Snyk.

We also support GitHub (Self-Managed) and GitLab (Self-Managed).

The AI Code Review Agent acts as a set of specialized engineers each analyzing different aspects of your PR. They analyze aspects such as Performance, Code Structure, Security, Optimization, and Scalability. By combining and filtering the results, the Agent can provide you with much more detailed and insightful code reviews, bringing you a better quality code review and helping you save time.

The AI Code Review Agent helps engineering teams merge code faster while also keeping the code clean and up to standard, making sure it runs smoothly and follows best practices.

The AI Code Review Agent is built using Bito Dev Agents, an open framework and engine to build custom AI Agents for software developers that understands code, can connect to your organization’s data and tools, and can be discovered and shared via a global registry.

Why use an AI Agent for code review?

In many organizations, senior developers spend approximately half of their time reviewing code changes in PRs to find potential issues. The AI Code Review Agent can help save this valuable time.

AI Code Review Agent speeds up PR merges by 89%, reduces regressions by 34%, and delivers 87% human-grade feedback.

However, it's important to remember that the AI Code Review Agent is designed to assist, not replace, senior software engineers. It takes care of many of the more mundane issues involved in code review, so senior engineers can focus on the business logic and how new development is aligned with your organization’s business goals.

Pricing details

Learn more

Key Features

Explore the powerful capabilities of the AI Code Review Agent.

Features overview

AI that understands your code

To comprehend your code and its dependencies, it uses Symbol Indexing, Abstract Syntax Trees (AST), and Embeddings.

One-click setup for GitHub, GitLab, and Bitbucket

Bito supports integration with the following Git providers:

Automated and manually-triggered AI code reviews

By default, the AI Code Review Agent automatically reviews all new pull requests and provides detailed feedback. To initiate a manual review, simply type /review in the comment box on the pull request and submit it. This action will start the code review process.

Pull request summary

Get a concise overview of your pull request (PR) directly in the description section, making it easier to understand the code changes at a glance. This includes a summary of the PR, the type of code changes, whether unit tests were added, and the estimated effort required for review.

Changelist

A tabular view that displays key changes in a pull request, making it easy to spot important updates at a glance without reviewing every detail. Changelist categorizes modifications and highlights impacted files, giving you a quick, comprehensive summary of what has changed.

One-click to accept suggestions

The AI-generated code review feedback is posted as comments directly within your pull request, making it seamless to view and address suggestions right where they matter most.

You can accept the suggestions with a single click, and the changes will be added as a new commit to the pull request.

Chat with AI Code Review Agent

Ask questions directly to the AI Code Review Agent regarding its code review feedback. You can inquire about highlighted issues, request alternative solutions, or seek clarifications on suggested fixes.

Real-time collaboration with the AI Code Review Agent accelerates your development cycle. By delivering immediate, actionable insights, it eliminates the delays typically experienced with human reviews. Developers can engage directly with the Agent to clarify recommendations on the spot, ensuring that any issues are addressed swiftly and accurately.

Bito supports over 20 languages—including English, Hindi, Chinese, and Spanish—so you can interact with the AI in the language you’re most comfortable with.

Incremental code reviews

AI Code Review Agent automatically reviews only the recent changes each time you push new commits to a pull request. This saves time and reduces costs by avoiding unnecessary re-reviews of all files.

Code review analytics

Custom code review rules and guidelines

The AI Code Review Agent offers a flexible solution for teams looking to enforce custom code review rules, standards, and guidelines tailored to their unique development practices. Whether your team follows specific coding conventions or industry best practices, you can customize the Agent to suite your needs.

We support two ways to customize AI Code Review Agent’s suggestions:

Multiple specialized engineers for targeted code analysis

The AI Code Review Agent acts as a team of specialized engineers, each analyzing different aspects of your pull request. You'll get specific advice for improving your code, right down to the exact line in each file.

The areas of analysis include:

Security
Performance
Scalability
Optimization
Will this change break anything? Based on the diff can we include anything?
Code structure and formatting (e.g., tab, spaces)
Basic coding standards including variable names (e.g., ijk)

This multifaceted analysis results in more detailed and accurate code reviews, saving you time and improving code quality.

Integrated feedback from dev tools you use

Elevate your code reviews by harnessing the power of the development tools you already trust. Bito's AI Code Review Agent seamlessly integrates feedback from essential tools including:

Static code analysis
Open source security vulnerabilities check
Linter integrations
Secrets scanning (e.g., passwords, API keys, sensitive information)

Static code analysis

Using tools like Facebook’s open-source fbinfer (available out of the box), the Agent dives deep into your code—tailored to each language—and suggests actionable fixes. You can also configure additional tools you use for a more customized analysis experience.

Open source security vulnerabilities check

Linter integrations

Our integrated linter support reviews your code for consistency and adherence to best practices. By catching common errors early, it ensures your code stays clean, maintainable, and aligned with modern development standards.

Secrets scanning

Safeguard your sensitive data effortlessly. With built-in scanning capabilities, the Agent checks your code for exposed passwords, API keys, and other confidential information—helping to secure your codebase throughout the development lifecycle.

Supports all major programming languages

No matter if you're coding in Python, JavaScript, Java, C++, or beyond, our AI Code Review Agent has you covered. It understands the unique syntax and best practices of every popular language, delivering tailored insights that help you write cleaner, more efficient code—every time.

Enterprise-grade security

Bito and third-party LLM providers never store or use your code, prompts, or any other data for model training or any other purpose.

Bito is SOC 2 Type II compliant. This certification reinforces our commitment to safeguarding user data by adhering to strict security, availability, and confidentiality standards. SOC 2 Type II compliance is an independent, rigorous audit that evaluates how well an organization implements and follows these security practices over time.

Supported Programming Languages and Tools

Supports key languages & tools, including fbInfer, Dependency Check, and Snyk.

Supported Programming Languages

AI Code Review

Basic Code Understanding is providing the surrounding code for the diff to help AI better understand the context of the diff.

Languages

AI Code Review

Basic Code Understanding

Advanced Code Understanding

File extensions supported

YES

.c, .h

C++

YES

.cpp, .hpp

YES

.cs

YES

.go

HTML/CSS

YES

.html, .css

SCSS

YES

.scss

Java

YES

.java

JavaScript

YES

.js

JavaScript Framework

YES

.jsx

Kotlin

YES

.kt

PHP

YES

.php

Python

YES

.py

Ruby

YES

.rb

Rust

YES

.rs

Scala

YES

.scala, .sc

Swift

YES

.swift

Terraform

YES

.tf

TypeScript

YES

.ts

TypeScript Framework

YES

.tsx

Vue.js

YES

.vue

SQL

YES

Coming soon

Bash/Shell

YES

Coming soon

PowerShell

YES

Coming soon

Dart

YES

Coming soon

Lua

YES

Coming soon

Visual Basic .NET

YES

Coming soon

YES

Coming soon

Assembly

YES

Coming soon

Groovy

YES

Coming soon

Delphi

YES

Coming soon

Objective-C

YES

Coming soon

Others

YES

Coming soon

Static Code Analysis and Open Source Vulnerabilities Check

Languages

Static Code Analysis / Linters

Open Source Vulnerabilities Check

YES (using Facebook Infer)

C++

YES (using Facebook Infer)

YES (using golangci-lint)

YES

HTML/CSS

SCSS

Java

YES (using Facebook Infer)

JavaScript

YES (using ESLint)

YES

Kotlin

PHP

Python

YES (using Astral Ruff and Mypy)

Ruby

Rust

Scala

Swift

Terraform

TypeScript

YES (using ESLint)

YES

Vue.js

SQL

Bash/Shell

PowerShell

Dart

Lua

Visual Basic .NET

Assembly

Groovy

Delphi

Objective-C

YES (using Facebook Infer)

Others

Supported Tools and Platforms

Tool

Type

Supported/Integrated

Facebook Infer

Static Code Analysis for Java, C, C++, and Objective-C

YES

ESLint

Linter for JavaScript and TypeScript

YES

golangci-lint

Linter for Go

YES

Astral Ruff

Linter for Python

YES

Mypy

Static Type Checker for Python

YES

OWASP dependency Check

Security

YES

Snyk

Security

YES

Whispers

Secrets scanner (e.g., passwords, API keys, sensitive information)

YES

detect-secrets

Secrets scanner (e.g., passwords, API keys, sensitive information)

YES

GitHub cloud

Code Repository

YES

GitHub (Self-Managed)

Code Repository

YES, supports version 3.0 and above.

GitLab cloud

Code Repository

YES

GitLab (Self-Managed)

Code Repository

YES, supports version 15.5 and above.

Bitbucket

Code Repository

YES

Azure DevOps

Code Repository

Coming soon

Getting Started

Deploy the AI Code Review Agent in Bito Cloud or opt for self-hosted service.

Bito Cloud

Pros:

Simplicity: Enjoy a straightforward setup with a single-click installation process, making it easy to get started without technical hurdles.
Maintenance-Free: Bito Cloud takes care of all necessary updates and maintenance, ensuring your Agent always operates on the latest software version without any effort on your part.
Scalability: The platform is designed to easily scale, accommodating project growth effortlessly and ensuring reliable performance under varying loads.

Cons:

Handling of Pull Request Diffs: For analysis purposes, diffs from pull requests are temporarily stored on our servers.

Self-hosted service

Pros:

Full Control: Self-hosting provides complete control over the deployment environment, allowing for extensive customization and the ability to integrate with existing systems as needed.
Privacy and Security: Keeping the AI Code Review Agent within your own infrastructure can enhance data security and privacy, as all information remains under your direct control.

Cons:

Setup Complexity: Establishing a self-hosted environment requires technical know-how and can be more complex than using a managed service, potentially leading to longer setup times.
Maintenance Responsibility: The responsibility of maintaining and updating the software falls entirely on your team, which includes ensuring the system is scaled appropriately to handle demand.

Install/run Using Bito Cloud

Deploy the AI Code Review Agent in Bito Cloud.

We also support GitHub (Self-Managed) and GitLab (Self-Managed).

Connect Bito to your Git provider

Select your Git provider from the options below and follow the step-by-step installation guide to seamlessly set up your AI Code Review Agent.

Guide for GitHub

Integrate the AI Code Review Agent into your GitHub workflow.

Video tutorial

Coming soon...

Installation and configuration steps

Follow the step-by-step instructions below to install the AI Code Review Agent using Bito Cloud:

Step 1: Log in to Bito

Step 2: Open the Code Review Agents setup

Step 3: Select your Git provider

Bito supports integration with the following Git providers:

GitHub
GitHub (Self-Managed)
GitLab
GitLab (Self-Managed)
Bitbucket

Since we are setting up the Agent for GitHub, select GitHub to proceed.

Step 4: Install the Bito app for GitHub

To enable pull request reviews, you need to install and authorize the Bito’s AI Code Review Agent app.

Click the Install Bito App for GitHub button. This will redirect you to GitHub.

On GitHub, select where you want to install the app.

Grant Bito access to your repositories:

Choose All repositories to enable Bito for every repository in your account.
Or, select Only select repositories and pick specific repositories using the dropdown menu.

Bito app uses these permissions:

Read access to code and metadata
Read and write access to issues and pull requests
Read access to organization members

Click Install & Authorize to proceed. Once completed, you will be redirected to Bito.

Step 5: Enable AI Code Review Agent on repositories

After connecting Bito to your GitHub account, you need to enable the AI Code Review Agent for your repositories.

Click the Go to repository list button to view all repositories Bito can access in your GitHub account.

Use the toggles in the Code Review Status column to enable or disable the Agent for each repository.

To customize the Agent’s behavior, you can edit existing configurations or create new Agents as needed.

Step 6: Automated and manual pull request reviews

Once a repository is enabled, you can invoke the AI Code Review Agent in the following ways:

Automated code review: By default, the Agent automatically reviews all new pull requests and provides detailed feedback.
Manually trigger code review: To initiate a manual review, simply type /review in the comment box on the pull request and submit it. This action will start the code review process.

The AI-generated code review feedback will be posted as comments directly within your pull request, making it seamless to view and address suggestions right where they matter most.

However, pull requests merging into your repository’s default branch are always reviewed, even if the branch is added in the exclusion list.

The AI Code Review Agent automatically reviews code changes up to 5000 lines when a pull request is created. For larger changes, you can use the /review command.

It may take a few minutes to get the code review posted as a comment, depending on the size of the pull request.

Step 7: Specialized commands for code reviews

Bito also offers specialized commands that are designed to provide detailed insights into specific areas of your source code, including security, performance, scalability, code structure, and optimization.

/review security: Analyzes code to identify security vulnerabilities and ensure secure coding practices.
/review performance: Evaluates code for performance issues, identifying slow or resource-heavy areas.
/review scalability: Assesses the code's ability to handle increased usage and scale effectively.
/review codeorg: Scans for readability and maintainability, promoting clear and efficient code organization.
/review codeoptimize: Identifies optimization opportunities to enhance code efficiency and reduce resource usage.

By default, the /review command generates inline comments, meaning that code suggestions are inserted directly beneath the code diffs in each file. This approach provides a clearer view of the exact lines requiring improvement. However, if you prefer a code review in a single post rather than separate inline comments under the diffs, you can include the optional parameter: /review #inline_comment=False

Step 8: Chat with AI Code Review Agent

To start the conversation, type your question in the comment box within the inline suggestions on your pull request, and then submit it. Typically, Bito AI responses are delivered in about 10 seconds. On GitHub and Bitbucket, you need to manually refresh the page to see the responses, while GitLab updates automatically.

Bito supports over 20 languages—including English, Hindi, Chinese, and Spanish—so you can interact with the AI in the language you’re most comfortable with.

Screenshots

Screenshot # 1

AI-generated pull request (PR) summary

Screenshot # 2

Changelist showing key changes and impacted files in a pull request.

Screenshot # 3

AI code review feedback posted as comments on the pull request.

Feature Guides

Templates

Supported Programming Languages and Tools

Supports key languages & tools, including fbInfer, Dependency Check, and Snyk.

Supported Programming Languages

AI Code Review

The understands code changes in pull requests by analyzing relevant context from your entire repository, resulting in more accurate and helpful code reviews. The agent provides either Basic Code Understanding or Advanced Code Understanding based on the programming languages used in the code diff. Learn more about all the supported languages in the table below.

Basic Code Understanding is providing the surrounding code for the diff to help AI better understand the context of the diff.

Advanced Code Understanding is providing detailed information holistically to the LLM about the changes the diff is making—from things such as global variables, libraries, and frameworks (e.g., Lombok in Java, React for JS/TS, or Angular for TS) being used, the specific functions/methods and classes the diff is part of, to the upstream and downstream impact of a change being made. Using advanced code traversal and understanding techniques, such as symbol indexes, embeddings, and abstract syntax trees, Bito deeply tries to understand what your changes are about and the impact and relevance to the greater codebase, like a senior engineer does when doing code review. .

For requests to add support for specific programming languages, please reach out to us at

Languages

AI Code Review

Basic Code Understanding

Advanced Code Understanding

File extensions supported

YES

.c, .h

C++

YES

.cpp, .hpp

YES

.cs

YES

.go

HTML/CSS

YES

.html, .css

SCSS

YES

.scss

Java

YES

.java

JavaScript

YES

.js

JavaScript Framework

YES

.jsx

Kotlin

YES

.kt

PHP

YES

.php

Python

YES

.py

Ruby

YES

.rb

Rust

YES

.rs

Scala

YES

.scala, .sc

Swift

YES

.swift

Terraform

YES

.tf

TypeScript

YES

.ts

TypeScript Framework

YES

.tsx

Vue.js

YES

.vue

SQL

YES

Coming soon

Bash/Shell

YES

Coming soon

PowerShell

YES

Coming soon

Dart

YES

Coming soon

Lua

YES

Coming soon

Visual Basic .NET

YES

Coming soon

YES

Coming soon

Assembly

YES

Coming soon

Groovy

YES

Coming soon

Delphi

YES

Coming soon

Objective-C

YES

Coming soon

Others

YES

Coming soon

Static Code Analysis and Open Source Vulnerabilities Check

For custom SAST tools configuration to support specific languages in the , please reach out to us at

Languages

Static Code Analysis / Linters

Open Source Vulnerabilities Check

YES (using Facebook Infer)

C++

YES (using Facebook Infer)

YES (using golangci-lint)

YES

HTML/CSS

SCSS

Java

YES (using Facebook Infer)

JavaScript

YES (using ESLint)

YES

Kotlin

PHP

Python

YES (using Astral Ruff and Mypy)

Ruby

Rust

Scala

Swift

Terraform

TypeScript

YES (using ESLint)

YES

Vue.js

SQL

Bash/Shell

PowerShell

Dart

Lua

Visual Basic .NET

Assembly

Groovy

Delphi

Objective-C

YES (using Facebook Infer)

Others

Supported Tools and Platforms

Tool

Type

Supported/Integrated

Facebook Infer

Static Code Analysis for Java, C, C++, and Objective-C

YES

ESLint

Linter for JavaScript and TypeScript

YES

golangci-lint

Linter for Go

YES

Astral Ruff

Linter for Python

YES

Mypy

Static Type Checker for Python

YES

OWASP dependency Check

Security

YES

Snyk

Security

YES

Whispers

Secrets scanner (e.g., passwords, API keys, sensitive information)

YES

detect-secrets

Secrets scanner (e.g., passwords, API keys, sensitive information)

YES

GitHub cloud

Code Repository

YES

GitHub (Self-Managed)

Code Repository

YES, supports version 3.0 and above.

GitLab cloud

Code Repository

YES

GitLab (Self-Managed)

Code Repository

YES, supports version 15.5 and above.

Bitbucket

Code Repository

YES

Azure DevOps

Code Repository

Coming soon

Install/run via webhooks service

The webhooks service is best suited for continuous, automated reviews.

Prerequisites

Minimum System Requirements

A machine with the following minimum specifications is recommended for Docker image deployment and for obtaining optimal performance of the AI Code Review Agent.

Requirement

Minimum Specification

CPU Cores

RAM

8 GB

Hard Disk Drive

80 GB

Supported Operating Systems

Windows
Linux
macOS

OS Prerequisites

Operating System

Installation Steps

Linux

You will need:

Bash (minimum version 4.x)
- For Debian and Ubuntu systems
  sudo apt-get install bash
- For CentOS and other RPM-based systems
  sudo yum install bash

Docker (minimum version 20.x)

macOS

You will need:

Bash (minimum version 4.x)
brew install bash

Docker (minimum version 20.x)

Windows

You will need:

PowerShell (minimum version 5.x)
- Note: In PowerShell version 7.x, run Set-ExecutionPolicy Unrestricted command. It allows the execution of scripts without any constraints, which is essential for running scripts that are otherwise blocked by default security settings.

Docker (minimum version 20.x)

Required Access Tokens

Installation and Configuration Steps

Server Requirement: Ensure you have a server with a domain name or IP address.
Start Docker: Initialize Docker on your server.
- git clone https://github.com/gitbito/CodeReviewAgent.git
Open the repository folder:
- Navigate to the repository folder and then to the “cra-scripts” subfolder.

Note the full path to the “cra-scripts” folder for later use.

Open Command Line:
- Use Bash for Linux and macOS.
- Use PowerShell for Windows.
Set Directory:
- Change the current directory in Bash/PowerShell to the “cra-scripts” folder.
- Example command: cd [Path to cra-scripts folder]
- Note: Adjust the path based on where you cloned the repository on your system.

Configure Properties:
- Set mandatory properties:
  - mode = server
  - bito_cli.bito.access_key
  - git.access_token
- Optional properties (can be skipped or set as needed):
  - git.provider
  - git.domain
  - code_feedback
  - static_analysis
  - dependency_check
  - dependency_check.snyk_auth_token
  - server_port
  - review_scope
  - exclude_branches
  - exclude_files
  - exclude_draft_pr

Note: Valid values for git.provider are GITHUB or GITLAB.

Run the Agent:
- On Linux/macOS in Bash:
  - Run ./bito-cra.sh service start bito-cra.properties
  - Note: It will provide the Git Webhook secret in encrypted format.
- On Windows in PowerShell:
  - Install OpenSSL
  - Run ./bito-cra.ps1 service start bito-cra.properties
  - Note: It will provide the Git Webhook secret in encrypted format.

This step might take time initially as it pulls the Docker image and performs the code review.

Provide Missing Property Values: The script may prompt for values of mandatory/optional properties if they are not preconfigured.
Copy Webhook Secret: During the script execution, a webhook secret is generated and displayed in the shell. Copy the secret displayed under "Use below as Gitlab and Github Webhook secret:" for use in GitHub or GitLab when setting up the webhook.

Webhook Setup Guide

Navigate to the main page of the repository. Under your repository name, click Settings.
In the left sidebar, click Webhooks.
Click Add webhook.
Under Payload URL, enter the URL of the webhook endpoint. This is the server's URL to receive webhook payloads.
- Note: The GitHub Payload URL should follow this format: https://<domain name/ip-address>/api/v1/github_webhooks, where https://<domain name/ip-address> should be mapped to Bito's AI Code Review Agent container, which runs as a service on a configured TCP port such as 10051. Essentially, you need to append the string "/api/v1/github_webhooks" (without quotes) to the URL where the AI Code Review Agent is running.
- For example, a typical webhook URL would be https://cra.example.com/api/v1/github_webhooks
Select the Content type “application/json” for JSON payloads.
In Secret token, enter the webhook secret token that you copied above. It is used to validate payloads.
Click on Let me select individual events to select the events that you want to trigger the webhook. For code review select these:
- Issue comments - To enable Code Review on-demand by issuing a command in the PR comment.
- Pull requests - To auto-trigger Code Review when a pull request is created.
- Pull request review comments - So, you can share feedback on the review quality by answering the feedback question in the code review comment.
To make the webhook active immediately after adding the configuration, select Active.
Click Add webhook.

Select the repository where the webhook needs to be configured.
On the left sidebar, select Settings > Webhooks.
Select Add new webhook.
In URL, enter the URL of the webhook endpoint. This is the server's URL to receive webhook payloads.
- Note: The GitLab webhook URL should follow this format: https://<domain name/ip-address>/api/v1/gitlab_webhooks, where https://<domain name/ip-address> should be mapped to Bito's AI Code Review Agent container, which runs as a service on a configured TCP port such as 10051. Essentially, you need to append the string "/api/v1/gitlab_webhooks" (without quotes) to the URL where the AI Code Review Agent is running.
- For example, a typical webhook URL would be https://cra.example.com/api/v1/gitlab_webhooks
In Secret token, enter the webhook secret token that you copied above. It is used to validate payloads.
In the Trigger section, select the events to trigger the webhook. For code review select these:
- Comments - for on-demand code review.
- Merge request events - for automatic code review when a merge request is created.
- Emoji events - So, you can share feedback on the review quality using emoji reactions.
Select Add webhook.

Navigate to the main page of the repository. Under your repository name, click Repository Settings.
In the left sidebar, click Webhooks.
Click Add webhook.
Under URL, enter the URL of the webhook endpoint. This is the server's URL to receive webhook payloads.
- Note: The BitBucket Payload URL should follow this format: https://<domain name/ip-address>/api/v1/bitbucket_webhooks, where https://<domain name/ip-address> should be mapped to Bito's AI Code Review Agent container, which runs as a service on a configured TCP port such as 10051. Essentially, you need to append the string "/api/v1/bitbucket_webhooks" (without quotes) to the URL where the AI Code Review Agent is running.
- For example, a typical webhook URL would be https://cra.example.com/api/v1/bitbucket_webhooks
In Secret token, enter the webhook secret token that you copied above. It is used to validate payloads.
In the Triggers section, select the events to trigger the webhook. For code review select these:
- Pull Request > Comment created - for on-demand code review.
- Pull Request > Created - for automatic code review when a merge request is created.
Select Save.

Using the AI Code Review Agent

After configuring the webhook, you can invoke the AI Code Review Agent in the following ways:

Automated Code Review: If the webhook is configured to be triggered on the Pull requests event (for GitHub) or Merge request event (for GitLab), the agent will automatically review new pull requests as soon as they are created and post the review feedback as a comment within your PR.
Manually Trigger Code Review: To start the process, simply type /review in the comment box on the pull request and submit it. If the webhook is configured to be triggered on the Issue comments event (for GitHub) or Comments event (for GitLab), this action will initiate the code review process. The /review command prompts the agent to review the pull request and post its feedback directly in the PR as a comment.
Bito also offers specialized commands that are designed to provide detailed insights into specific areas of your source code, including security, performance, scalability, code structure, and optimization.
- /review security: Analyzes code to identify security vulnerabilities and ensure secure coding practices.
- /review performance: Evaluates code for performance issues, identifying slow or resource-heavy areas.
- /review scalability: Assesses the code's ability to handle increased usage and scale effectively.
- /review codeorg: Scans for readability and maintainability, promoting clear and efficient code organization.
- /review codeoptimize: Identifies optimization opportunities to enhance code efficiency and reduce resource usage.
By default, the /review command generates inline comments, meaning that code suggestions are inserted directly beneath the code diffs in each file. This approach provides a clearer view of the exact lines requiring improvement. However, if you prefer a code review in a single post rather than separate inline comments under the diffs, you can include the optional parameter: /review #inline_comment=False

It may take a few minutes to get the code review posted as a comment, depending on the size of the pull request.

Screenshots

Screenshot # 1

AI-generated pull request (PR) summary

Screenshot # 2

Changelist showing key changes and impacted files in a pull request.

Screenshot # 3

AI code review feedback posted as comments on the pull request.

How to update the self-hosted AI Code Review Agent

Please follow these steps:

Update the Agent's repository:
- git pull origin main
Restart the Docker container:
- To restart the Docker container running as a service, use the below command.
- On Linux/macOS in Bash: Run ./bito-cra.sh service restart bito-cra.properties
- On Windows in PowerShell: Run ./bito-cra.ps1 service restart bito-cra.properties

Stop Docker Container

To stop the Docker container running as a service, use the below command.

On Linux/macOS in Bash: Run ./bito-cra.sh service stop
On Windows in PowerShell: Run ./bito-cra.ps1 service stop

Check Status

To check the status of Docker container running as a service, use the below command.

On Linux/macOS in Bash: Run ./bito-cra.sh service status
On Windows in PowerShell: Run ./bito-cra.ps1 service status