Code-review MCP: review a GitLab MR or GitHub PR against the whole codebase, not just the diff.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Code-review MCP: review a GitLab MR or GitHub PR against the whole codebase, not just the diff.