Integrate GitLab with DeepCode

DeepCode (https://www.deepcode.ai/tech) ships a machine-learning based system that does semanatic analysis on code and produces a report that may help identify security issues or other bugs:

image

Right now it operates by analyzing every commit in a repository, attempts to see how the internal representation changes over time, and attempts to infer specifications of objects. A bot subscribes to changes via a Webhook and then analyzes the changes.

DeepCode currently has models that can analyze JavaScript, Java, C/C++, and a few other languages. They currently ship their Docker image to on-premise customers, but they are interested in working with GitLab.

I think semantic analysis/auto bug fixing could be an exciting feature to integrate with GitLab.

Short-term ideas:

  1. Ship the DeepCode Docker image alongside with GitLab EE.
  2. Make it easy to set up and configure GitLab with DeepCode.
  3. Link the reports from GitLab.

Longer-term ideas:

  1. Ship a native bundle of DeepCode with every GitLab EE install.
  2. Integrate DeepCode closely with GitLab (e.g. make user/repository permissions seemless)
  3. Format and display DeepCode data within GitLab UI

What do you think @bjung, @mayanktahil, @jramsay?

@borispaskalev is the CEO and founder of DeepCode, so feel free to continue this discussion here.