Pumperly/.coderabbit.yaml at main · GeiserX/Pumperly · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
language: "en-US"
tone_instructions: "Be direct and concise. No fluff."

reviews:
  profile: "chill"
  high_level_summary: true
  collapse_walkthrough: true
  poem: false
  sequence_diagrams: false
  suggested_reviewers: false
  auto_review:
    enabled: true
    drafts: false
    ignore_title_keywords:
      - "WIP"
      - "DO NOT REVIEW"
  path_filters:
    - "!dist/**"
    - "!**/*.min.js"
    - "!**/*.min.css"
    - "!**/node_modules/**"
    - "!**/.next/**"
    - "!**/package-lock.json"
    - "!**/pnpm-lock.yaml"
    - "!src/generated/**"
    - "!prisma/migrations/**"
  path_instructions:
    - path: "src/app/api/**"
      instructions: |
        Focus on authentication and authorization checks.
        Verify input validation and sanitization on all user-supplied data.
        Check for proper error handling — never leak internal details.
    - path: "src/app/**/page.tsx"
      instructions: |
        Verify Server Components don't import client-only hooks (useState, useEffect).
        Check that metadata exports are present for SEO.
    - path: "prisma/*.prisma"
      instructions: |
        Check for proper indexes on frequently queried fields.
        Verify cascade delete behavior is intentional.
    - path: "charts/**"
      instructions: |
        Validate that all values referenced in templates have defaults in values.yaml.
        Check resource limits and requests are templated, not hardcoded.
        Ensure sensitive values use Kubernetes Secrets, not ConfigMaps.
    - path: "Dockerfile*"
      instructions: |
        Verify multi-stage builds are used. Check for non-root USER.
        Ensure base image tags are pinned, not :latest.
  tools:
    gitleaks:
      enabled: true
    hadolint:
      enabled: true
    actionlint:
      enabled: true
    yamllint:
      enabled: true
    markdownlint:
      enabled: true
    eslint:
      enabled: true
    shellcheck:
      enabled: true
    prismaLint:
      enabled: true

chat:
  auto_reply: true

knowledge_base:
  learnings:
    scope: "local"
  code_guidelines:
    enabled: true
    filePatterns:
      - "AGENTS.md"
      - "CLAUDE.md"