Copilot code review (CCR) now blends LLM detections and tool calling with deterministic tools like ESLint and CodeQL, delivering smarter reviews and a seamless handoff to the Copilot coding agent for fixes.

Rich context with tool calling 🧰

CCR now leverages agentic tool calling to actively gather full project context, including code, directory structure, and references. This enables CCR to understand how your changes fit within the broader project architecture.

💡 Why it matters: Feedback is specific, accurate, and with less noise, helping you ship cleaner code faster.

Diagram of tools in Copilot code review

New deterministic detections with CodeQl and ESLint🕵️‍♀️

CCR now integrates CodeQL and leading linters (starting with ESLint) to combine semantic analysis and classic rule-based checks. This fusion of LLM intelligence and deterministic precision delivers high-signal, consistent findings for security and quality.

💡 Why it matters: Developers can trust that critical issues, from security vulnerabilities to maintainability problems, are reliably caught and clearly explained. Only GitHub offers CodeQL-powered security and quality insights built directly into AI reviews.

Seamless handoff to Copilot coding agent 🤝

You can now hand off suggested changes directly to the Copilot coding agent. Mention @copilot in your pull request, and CCR will automatically apply the suggested fixes in a stacked pull request, ready for you to review and merge.

💡 Why it matters: Less manual cleanup and fewer review cycles. So you stay focused on higher-value engineering work.

Customizable workflows and editor availability 🛠️

With customizable workflows and multi-editor support already generally available, CCR now fits seamlessly into every step of your development process, from writing code to reviewing and merging.

Teams can define their own review standards and tone through instructions.md or copilot-instructions.md files, shaping what CCR prioritizes (e.g., test coverage, performance, or readability). CCR is available in VS Code, Visual Studio, JetBrains, Xcode, and on github.com, ensuring consistent feedback wherever you work.

💡 Why it matters: CCR adapts to your team’s standards and meets you where you work.

Image of copilot-instructions.md containing a list of instructions for Copilot code review to follow written in plain text.

Getting started 🚀

Tool calling and deterministic detections are in public preview, enabled by default for Copilot Pro and Copilot Pro Plus users. Copilot Business and Copilot Enterprise users can opt in using the Copilot code review policies.

Join the discussion within GitHub Community.

Disclaimer: The UI for features in public preview is subject to change.