Author: Edvaldo Freitas
-
C# Code Review: Best Practices + Checklist
Let’s be honest: most of us have a love-hate relationship with code reviews. On a good day, they’re a brilliant collaboration that catches bugs and spreads knowledge. On a bad day, they feel like a bureaucratic bottleneck where personal opinions and style nits grind progress to a halt. The difference isn’t magic. It’s about having…
-
What is SAST and why use it
If you’ve spent any time in software development, you’ve probably lived this moment: a frantic, last-minute security report lands on your desk right before a major release. Suddenly, everyone’s scrambling to patch a vulnerability that’s been lurking in the codebase for months. It’s frustrating, expensive, and completely derails your roadmap. This is where learning what…
-
1.0.33 – Less noise in reviews, more clarity in configs
Improvements & New Features 🗑️ Delete repo-specific configurations You can now delete individual configurations for any repository directly from the dashboard. This makes it easier to reset a repo’s settings and have its PRs reviewed using the team’s global configuration instead. ⚙️ Review Cadence control Some teams reported too many comments being triggered when multiple…
-
Best SAST Tools for Code Security
Spotting security vulnerabilities in your code as early as possible is crucial, and Static Application Security Testing (SAST) plays a big role in that. Choosing between all the tools out there can be overwhelming, but understanding what makes the best SAST tools stand out will help you protect your applications more efficiently. This guide will…
-
Top 5 Newsletters for Engineering Leaders
At Kodus, we face the daily challenge of helping teams maintain code quality, scale engineering, and simplify the code review process. And part of our job is to stay connected with good references: content that helps engineering leaders make better decisions, fine-tune processes, and strengthen team culture. That’s why we’ve put together a few newsletters…
-
1.0.31 – Smarter rules and Kody on any repository
Improvements & New Features 📦 Kody Rules with full PR scope Kody Rules can now run with full pull request context, instead of analyzing files in isolation. With this update, rules can access the PR title, description, file list, and complete diffs — making it possible to write more powerful and contextual validations. Examples of…
-
Best Practices for Code Review in JavaScript
JavaScript gives you freedom, but with freedom comes risk. Without a well-defined code review process in JavaScript, it’s easy to let subtle bugs, inconsistent patterns, and even security vulnerabilities slip into your codebase. If you’re part of a team maintaining a JavaScript project—whether front-end, back-end with Node.js, or fullstack—code review needs to be a core…
-
1.0.30 – Kody Issues, more flexible settings, less noise
Improvements and New Features ✨ Kody Issues: automatically track unimplemented suggestions You can now automatically track and manage Kody suggestions that weren’t implemented in closed PRs. Kody Issues works like sonar—giving you a clear view of pending improvements and ensuring critical feedback isn’t forgotten. Automatic tracking: captures suggestions not applied when the PR is closed…
-
How to minimize the number of suggestions in PRs that change third-party files
When someone edits files inside third-party folders, like vendor, generated, or some internal lib, it’s common for Kody to start generating suggestions on those parts. The problem is that, in most cases, the team doesn’t even plan to review those points, since they’re areas of the code that usually aren’t changed manually. If the goal…