1) auto-review with false positives/negatives

2) no review at all

Frankly, I don't have a solution outside an unrealistic one hiring external experts reviewing each submission which would probably deplete the pool of developers all around the world.