Linear has the plan. GitHub has the progress.
DevSignal delivers the truth.

Cross-checks both tools and reports on the insights that matter — instantly. Keeps your dev teams aligned and on plan, without all the digging and chasing.

Integrated with the products you already use

GitHub Linear Slack

Free during limited beta · No credit card required

How it works

Connect and see your first reports in just minutes.

1

Connect to GitHub & Linear

2

Choose a report or schedule a digest

3

Get your summary

Connect. Build a report. Instantly see what's been done and what needs attention. Take a look →

  • DevSignal agents analyze your GitHub and Linear activity — pull requests, reviews, issues, and cycles — and turn it into comprehensive reports.
  • Run reports on demand, or scheduled for delivery via Slack. Use it for 1:1 prep, stand-up alignment, sprint reviews, and instant stakeholder updates.

Generated on: Jun 10, 2026

Developer Activity — @apatel

Activity from May 13 to Jun 10, 2026

Scope: meridian/analytics

Summary

  • MCP Tooling Surface: built the agent-facing read API across the platform's full object model.
  • Agent Security & RBAC: API-key authentication and permission-gated tools for the MCP service.
  • Reliability Fixes: JWT-error handling, search-filter escaping, and pytest-collection stability.

Key Contributions

  • MCP read surface: shipped list/get tools for dashboards, charts, datasets, RLS, users & roles, saved queries, annotations, and tags (#40347, #40345, #40342).
  • API-key auth + RBAC: added transport, validation, and role-based access control for MCP (#39604), and hid write tools from users without write permission (#40098).
  • Sensitive-data guardrails: filtered sensitive DB columns out of list_databases metadata (#40771) and escaped LIKE wildcards in list-tool search filters (#40682).
  • Lean defaults: added select_columns defaults to the info tools to cut token bloat (#40473); removed low-value tools failing agent-native policy (#40690).

Potential Issues

  • 16+ new endpoints landed quickly with authentication arriving alongside — worth a focused security review before GA.
  • A JWT-library migration was shipped then reverted, suggesting the auth stack is still settling.

Reviews / Comments Received

  • @dmercer coordinated the JWT-error migration and flagged the dependency that prompted the revert.
  • @tkoval reviewed chart-preview tool responses, aligning on the call-id correlation field.

Reviews / Comments Delivered

  • Reviewed destructive-DDL guarding in the SQL executor, confirming DROP / TRUNCATE / ALTER are blocked.
  • Gave feedback on chart-recommendation and trend-analysis edge cases for categorical data.

Strategic Recommendations

  • Add rate-limiting and an audit trail to the MCP surface before opening it to external agents.
  • Stabilize the JWT stack on a single library to avoid further migration churn.
  • Schedule a dedicated security review of the new endpoints as a follow-up.

Generated on: Jun 10, 2026

Team Brief

Activity from May 13 to Jun 10, 2026

Scope: meridian/analytics

⚠ Top signal · high Review concentration — one author wrote ~41% of human PRs on the security batch.
54 developers 623 PRs (382 human / 241 automated) 613 commits

Team Summary

  • 623 PRs merged across 54 contributors — a security-hardening push running in parallel with an MCP tooling build-out.
  • 241 of 623 PRs (39%) were automated dependency bumps. DevSignal separates that churn from the 382 human-authored PRs so the real engineering story stays in focus.

Per-Developer Highlights

  • @dmercer (~155 PRs) — input validation, RLS datasource checks, embedded guest-token revocation, and websocket reliability.
  • @apatel (24 PRs) — built the MCP tooling surface: API-key auth + RBAC, sensitive-column filtering, and lean tool defaults.
  • @lchen (22 PRs) — SQL-execution hardening: function/table denylist enforcement, per-object ownership, and JWT-secret hardening.
  • @tkoval (11 PRs) — chart-preview reliability and DDL-guarding.

Collaboration Patterns

  • Security work clustered around a small reviewer pool — @dmercer both authored and reviewed the bulk of it.
  • The MCP and SQL-hardening threads progressed largely independently, with little cross-review between them.

Team Risks

  • Single-contributor concentration: ~41% of human PRs from one author — a single point of failure on the security batch.
  • Review bottleneck on auth / token paths: the same person authoring and approving sensitive changes.
  • Dependency churn: 241 automated bumps in the window keep dependencies current but bury human signal in the PR feed.

Recommendations

  • Adopt a mandatory second reviewer on auth / token / RLS paths.
  • Batch dependency bumps into a scheduled weekly merge to cut feed noise.
  • Spread security review across @rborg, @nsilva, and @jpark.

Generated on: Jun 11, 2026

Cycle 11 — Sprint Report

Jun 9 to Jun 16, 2026

Scope: active product sprint

9/35 issues done 5 days remaining
26% complete

Sprint Health

This sprint is back-loaded and at risk. At the halfway mark it is 26% complete, with 16 of 35 issues not started and 5 days remaining. Delivery is moving — 10 issues are in flight and 6 are already in review — but the unstarted tail is heavy and concentrated in a single workstream.

Progress Breakdown

Done (9)

  • Data-sync rebuild — Phase 1: retired legacy routes and narrowed search.
  • Compute pipeline — added a data-freshness invariant gate (a missed pull can't render as current).
  • Fixed double-counted recurring memberships in the revenue metric.

In Progress (10)

  • Nightly-sync load audit — reliability hardening (in review).
  • SMS campaign — backend driver + send route, and the frontend send UI (in review).
  • Mobile / tablet adaptive experience (epic, in progress).

Not Started (16)

  • Billing-provider parity — membership, churn, conversion, and refund metrics (8 issues).
  • Data-accuracy reconciliation audit vs. source reports (Urgent).
  • Bad-data gate — don't overwrite KPIs on an anomalous swing (High).

Risk Flags

  • Heavy tail: 16 of 35 issues unstarted at the halfway point — most of the billing-parity batch hasn't begun.
  • Unowned urgents: two Urgent data-accuracy tickets are still unassigned with 5 days to go.
  • Review pile-up: 6 issues are sitting in review — work is landing faster than it's being cleared on a small team.

Unplanned Work

  • Several reliability fixes (cron resilience, timezone bucketing) entered mid-cycle in response to production data issues.

Recommendations

  • Defer the billing-parity batch to the next cycle rather than rushing it in 5 days.
  • Assign owners to the two Urgent data-accuracy tickets today.
  • Clear the in-review backlog before pulling in new scope.

Three primary reports to fit your needs.

Be ready for your 1:1's, team standup/updates, and sprint reviews in seconds.

Developer Activity

One developer's recent work, summarized in seconds. Built for 1:1 prep and self-recaps.

Team Review

Your whole team's week in a single brief — who shipped what, and what needs attention.

Sprint Report

Sprint progress and risk, pulled from your Linear cycle and the GitHub work behind it.

Insights delivered to teams and individuals

Status updates without the status meeting.

Slack

Team updates, posted to Slack — on the cadence you set.

  • Schedule a digest daily, weekly, or per sprint. DevSignal posts meaningful updates to a channel or a DM — sprint progress, priorities, slippage, etc.
  • Keep teams more aligned and informed without more meetings.
A scheduled DevSignal digest posted to a Slack channel

Ask anything. Get instant insights.

Get answers and insights without digging through PRs and tickets.

Plain-English answers from your GitHub activity and past reports.

  • Ask "what shipped this week?" or "which PRs are still in review?" or "Any vulnerabilities related to security or performance?" Smart Search answers in one paragraph, and every claim links back to its source — so you can trust it.
  • If the data isn't there, it says so — no guessing.
DevSignal Smart Search answering a question with linked sources

Built for engineering teams

For Engineering Managers

Be ready for every 1:1 in seconds

Walk into 1:1s and standups with the context already pulled together.

For Developers

Recap your week in seconds

A quick summary of your recent work, ready to share.

For Project Managers

Keep projects on track

See progress across the team and keep stakeholders informed — without chasing updates.

Secure & Private

No training, no code stored

We don't store your source code, and no model is trained on your data.

Unbiased activity analysis

What it is

  • Objective summaries of code, reviews, and comments
  • Answers that link back to the source, so you can trust them
  • Context for 1:1s, standups, and sprint reviews

What it isn't

  • Not a performance review tool
  • Not a code review tool
  • Not a bunch of productivity metrics

Free during beta

Beta · Live now

Early access

Free
  • A monthly quota — enough for a small team
  • All features — reports, digests, and search
  • GitHub, Linear, and Slack connections
  • Email support
Get started →

Coming after beta: Pro & Team plans

Common questions

Activity metadata from the tools you connect: GitHub (PRs, commits, reviews, issues), Linear (issues and cycles), and Slack (replies to DevSignal's own digest threads, plus the channel info needed to post). We don't store your source code.

Yes. We don't store your source code or train AI models on it. Features work from your activity metadata; if one needs to read a pull request's diff, it does so in the moment and discards it afterward.

Read-only for your code and tickets — DevSignal never writes to GitHub or Linear. The only write we make is posting a digest to a Slack channel you choose, and it's opt-in. You can revoke access any time from GitHub, Linear, Slack, or DevSignal. See the Security page for the exact scopes.

No. We provide unbiased activity summaries, not evaluations or ratings.

Only you and people you share them with. Reports aren't shared automatically.

Each report or digest uses tokens based on how much activity it analyzes. Your quota resets monthly.

Yes. DevSignal is free during beta, with a monthly quota. No credit card required.

We're improving reports and Smart Search every week, with deeper Linear and Slack context on the way. Pro & Team plans land after beta.