← Back to Hub
Code Review Skill
Structured code review that checks for bugs, security issues, performance problems, and style consistency. Outputs actionable feedback.
Skilldevelopmentcode-reviewqualitysecurity
by Build Ship Grow
code-review-skill.yml
yaml + markdown
---
name: review
description: Perform a structured code review on changed files
triggers:
- /review
- "review this code"
---
# Code Review Skill
## Process
1. Run `git diff` to identify changed files
2. Read each changed file in full for context
3. Analyze changes against the checklist below
4. Output findings grouped by severity
## Checklist
### Critical (must fix)
- [ ] Security vulnerabilities (SQL injection, XSS, auth bypass)
- [ ] Data loss risks (missing transactions, race conditions)
- [ ] Broken error handling (swallowed exceptions, missing catches)
### Warning (should fix)
- [ ] Performance issues (N+1 queries, unnecessary re-renders)
- [ ] Missing input validation
- [ ] Hardcoded secrets or config values
- [ ] Missing null/undefined checks
### Suggestion (nice to have)
- [ ] Naming clarity — variables, functions, types
- [ ] Code duplication that could be extracted
- [ ] Missing TypeScript types (avoid `any`)
- [ ] Test coverage gaps
## Output Format
For each finding:
```
[SEVERITY] file:line — description
→ Suggested fix
```