LLM Code Review Overcorrection

LLMs systematically flag correct code as non-compliant; more detailed review prompts make the misclassification rate worse, not better.

The Problem

arXiv:2603.00539 documents a systematic failure mode in LLM-based code review: overcorrection. LLMs consistently misclassify correct implementations as non-compliant. The misclassification is not random noise — it is a directional bias toward finding problems.

Counterintuitively, prompts that require the model to explain its reasoning and propose corrections produce higher misjudgement rates than simpler prompts, an effect Turpin et al. (2023) trace to chain-of-thought rationalising a predisposed answer. The added detail amplifies the problem rather than improving reliability.

The Risk in Review Pipelines

A review agent acting as sole authority blocks correct code from merging. The fallout: engineers dismiss LLM comments as noise, real defects get buried in false positives, and latency rises as developers refute valid-code rejections.

Why LLMs Overcorrect

The arXiv:2603.00539 taxonomy of false rejections shows four categories account for 87.2% of cases: Logic Error (48.2%), Added Requirement (14.1%), Boundary Error (13.2%), and Misread Specification (11.7%). Across all four, the model constructs a plausible critique without a falsifiable counterexample — hallucinating constraints, asserting failure modes it cannot demonstrate, or reading a stricter spec than the one given.

Turpin et al. (2023) explain the amplification: chain-of-thought explanations often rationalize a predisposed answer rather than derive one. Forcing a reasoning chain before the verdict locks the model into its initial misread — each step anchors rejection instead of reconsidering the premise. Binary prompts avoid this commitment.

Fix-Guided Verification Filter

The research proposes a countermeasure: treat the LLM's proposed fix as an executable counterfactual. Run both the original and the fix against the test suite:

• Both pass: the LLM found a style difference, not a defect — do not block
• Original fails, fix passes: flag substantiated — accept the finding
• Both fail: fix is also broken — escalate to human review

This filter converts the bias into a falsifiable test. It requires that proposed fixes are executable — review prompts must elicit code-level fixes, not prose descriptions.

Mitigations

• Never use LLM review as sole authority: all verdicts require either human confirmation or execution-based validation
• Apply the fix-guided verification filter: run original and proposed fix against tests before acting on any flag
• Avoid explanation-requiring prompts for a binary pass/fail verdict; they produce more false positives than plain binary prompts
• Track false positive rate: if the LLM flags more code than a threshold that humans later approve, treat the reviewer as miscalibrated

Example

In a CI pipeline, when the review agent flags code as non-compliant, run both the original and the proposed fix against the test suite before acting:

# review_filter.py
import subprocess

def run_tests(code_path: str) -> bool:
    result = subprocess.run(
        ["pytest", code_path, "--tb=no", "-q"],
        capture_output=True
    )
    return result.returncode == 0

def apply_fix_guided_filter(original_path: str, fix_path: str) -> str:
    original_passes = run_tests(original_path)
    fix_passes = run_tests(fix_path)

    if original_passes and fix_passes:
        return "false_positive"   # style difference only; do not block merge
    if not original_passes and fix_passes:
        return "substantiated"    # defect confirmed; accept the review finding
    return "inconclusive"         # fix is also broken; escalate to human reviewer

A "false_positive" verdict means the model found a stylistic difference, not a defect; only a "substantiated" result justifies acting on the LLM's flag.

When This Backfires

The filter depends on executable tests as the ground truth. It fails when:

• Coverage is sparse or absent: both original and fix pass regardless of correctness — real defects get labelled false_positive
• Tests are flaky: non-deterministic results corrupt the original-vs-fix comparison
• Review targets are non-executable: style, documentation, or naming review produces no runnable counterfactual
• Fixes are prose, not code: natural-language rewrites sidestep the mechanism

Without reliable tests, fall back to binary pass/fail prompts and require human confirmation for every flag.

Key Takeaways

• LLM overcorrection is systematic and directional — models bias toward flagging, not toward accuracy
• More detailed review prompts increase misjudgement rates; explanation generation reinforces the wrong initial verdict
• The fix-guided verification filter uses execution as evidence to validate or refute a review flag
• LLM reviewers must never be sole authority; all verdicts need human confirmation or execution validation

Related

• Agent-Assisted Code Review
• Trust Without Verify
• Agentic Code Review Architecture
• Committee Review Pattern
• Law of Triviality in AI PRs
• Yes-Man Agent
• PR Scope Creep and Review Bottleneck

Established — multiple independent sources Last reviewed: 2026-06-12