Platform configuration

Settings

Production integrations are cleanly isolated behind environment variables and adapters.

Runtime safeguards

This hosted environment runs the live review workflow while blocking anonymous users from expensive or external-write actions.

Hosted demo

Frontend

Cloudflare Workers

OpenNext SSR deployment

Live

API

AWS API Gateway + Lambda

hwnk8hnyk1.execute-api.us-east-1.amazonaws.com

Live

Database

Neon / External Postgres

Terraform no longer recreates RDS

Live

Auth

Demo access

No customer login required for samples

Guarded

GitHub writes

Approval gated

Mocked for anonymous visitors

Guarded

AI reviewer input

Redacted evidence

Plan values reduced before summaries

Guarded

Terraform sandbox

Disabled here

Upload or sample plans only

Demo

Cost estimates

Heuristic fallback

Infracost-ready adapter

Demo

Cognito ready

Auth provider

Use AUTH_MODE=cognito with a Cognito user pool for JWT validation, group-based roles, and bearer-token API access. Dev header auth remains available locally.

Env driven

LangSmith tracing

Set LANGSMITH_API_KEY, LANGSMITH_PROJECT, and LANGSMITH_TRACING to trace graph runs.

Approval gated

GitHub posting

Set GITHUB_TOKEN or GitHub App credentials to post approved comments, checks, and committed fix patches to pull requests.

Team editable

Policy packs

Policy packs drive deterministic checks for tags, regions, public ingress, deletion rules, allowed resources, and monthly cost thresholds.

Policy pack workflow

Editable

Teams can tune required tags, allowed regions, instance families, public ingress rules, stateful deletion rules, and cost thresholds without code changes.

Raw JSON is currently invalid. Fix the JSON below to restore the guided policy controls.