Gatecheck

Getting Started

Set up Gatecheck in under 5 minutes and get your first AI-powered code review.

Quick Setup

1

Install the GitHub App

Install the Gatecheck GitHub App on your repositories. The app automatically configures webhooks so Gatecheck receives push and pull request events.

Open GitHub Apps
2

Enroll a repository

Go to the Repositories page and click Enroll on any repo where the GitHub App is installed. This enables CI/CD security scanning for that repo.

Go to Repositories
3

Trigger your first CI scan

Push a change that touches a file in .github/workflows/, a Dockerfile, or a dependency file. Gatecheck will scan it for security risks and post findings to the dashboard.

View Findings
4

Open a pull request

Open or update a pull request on an enrolled repo. Gatecheck will automatically run 6 AI agents in parallel to review your code and post a detailed verdict.

View Pull Requests

Key Concepts

Multi-Agent Review

Every PR is analyzed by 6 specialist Gemini agents in parallel — Security, Bugs, Performance, Readability, Best Practices, and Docs. A synthesizer then combines findings into one verdict.

CI Security Gate

A lightweight GitHub Actions step checks the Gatecheck decision API. If blocking findings exist for the commit SHA, the job exits non-zero before any other steps run.

Security Findings

Gatecheck detects secrets, supply-chain RCE patterns (pull_request_target + fork checkout), OWASP Top 10, insecure Docker base images, and more — all without running your code.

Real-time Updates

The Pull Requests dashboard auto-refreshes while a review is running. Watch each agent complete and the final synthesizer verdict appear live.