Starting a code review with Amazon Q Developer
Amazon Q can review your entire codebase, or auto-review your code as you write it.
Before you get started, make sure you've installed Amazon Q in an IDE that supports code
reviews. For more information, see
Installing the Amazon Q Developer extension or plugin in your IDE.
Review as you code
Auto-reviews are rule-based reviews powered by Amazon Q detectors . Amazon Q automatically
reviews the file you are actively coding in, generating code issues as soon as they
are detected in your code. When Amazon Q performs auto reviews, it doesn’t generate
in-place code fixes.
Auto-reviews are enabled by default when you use Amazon Q. Use the following
procedure to pause or resume auto-reviews.
Pause and resume auto-reviews
To pause auto-reviews, complete the following steps.
-
Choose Amazon Q from the bottom of the IDE window.
The Amazon Q task bar opens.
-
Choose Pause Auto-Reviews. To resume auto-reviews,
choose Resume Auto-Reviews.
Review a file or project
You can also initiate a review from the chat panel to have Amazon Q review a
particular file or project. File and project reviews include both rule-based and
generative AI-powered reviews. Code issues generated during file or project reviews
can include in-place code fixes.
To start a file or project review, complete the following steps:
- JetBrains
-
-
Open a file or project you want to review in your IDE.
-
Choose the Amazon Q icon to open the chat panel. Enter /review.
-
A new chat tab opens. Amazon Q prompts you to choose a project
or file to review. If you’re reviewing a file, the file you want
to review must be open and active in the IDE. If you’re
reviewing a project, the project must be open in the IDE.
-
Choose the type of review you want to run. Amazon Q begins
reviewing the project or file that you currently have open in
the IDE.
-
When the review is complete, the Code
Issues tab opens above the chat panel with a list
of the issues Amazon Q found.
-
You can choose an issue to be redirected to the specific area
of the file where the vulnerable or low-quality code was
detected.
To see more details about the issue, choose the magnifying glass
icon to the right of the code issue name in the Code
Issues tab. A
Code Issue Details panel opens with information about the issue.
-
To address your code issues, see Addressing code issues with Amazon Q Developer.
- Visual Studio Code
-
-
Open a file or project you want to review in your IDE.
-
Choose the Amazon Q icon to open the chat panel. Enter /review.
-
A new chat tab opens. Amazon Q prompts you to choose a project
or file to review. If you’re reviewing a file, the file you want
to review must be open and active in the IDE. If you’re
reviewing a project, the project must be open in the IDE.
-
Choose the type of review you want to run. Amazon Q begins
reviewing the project or file that you currently have open in
the IDE.
-
When the review is complete, the Code
Issues tab opens above the chat panel with a list
of the issues Amazon Q found.
-
You can choose an issue to be redirected to the specific area
of the file where the vulnerable or low-quality code was
detected.
To see more details about the issue, choose the magnifying glass
icon to the right of the code issue name in the Code
Issues tab. A Code Issue Details panel opens on the right side of
the IDE with information about the issue.
-
To address your code issues, see Addressing code issues with Amazon Q Developer.
- Visual Studio
-
-
Open up a file from the project you want to scan in Visual Studio.
-
Choose the Amazon Q icon at the bottom of your file to open the
Amazon Q task bar.
-
From the task bar, choose
Run Security Scan. Amazon Q begins scanning your
project.
In the following image, in Visual Studio, the user chooses the
Amazon Q icon, prompting a task bar from
which the user may choose Run Security
Scan.
-
The status of your scan is updated in the Visual Studio output pane.
You're notified when the scan is complete.
For information about viewing and addressing findings, see
Addressing code issues with Amazon Q Developer.
