Run any Skill in Manus with one click

Get Started

code-review-checklist

Stars3

Forks0

UpdatedMay 21, 2026 at 01:46

Code review guidelines covering code quality, security, and best practices.

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

Run Skill in Manus

Source

HaoNgo232

HaoNgo232/agent-bridge-kit

View GitHub Repository View Creator Repositories

Download

Run Skill in Manus

Related occupationsSOC

Based on SOC occupation classification

Software Quality Assurance Analysts and TestersComputer and Mathematical Occupations·SOC 15-1253

SKILL.md

readonly

name	code-review-checklist
description	Code review guidelines covering code quality, security, and best practices.
when_to_use	When reviewing code for quality, security, and best practices. When the user says 'review my code' or 'check this PR'.

Code Review Checklist

Quick Review Checklist

Correctness

Code does what it's supposed to do
Edge cases handled
Error handling in place
No obvious bugs

Security

Input validated and sanitized
No SQL/NoSQL injection vulnerabilities
No XSS or CSRF vulnerabilities
No hardcoded secrets or sensitive credentials
AI-Specific: Protection against Prompt Injection (if applicable)
AI-Specific: Outputs are sanitized before being used in critical sinks

Performance

No N+1 queries
No unnecessary loops
Appropriate caching
Bundle size impact considered

Code Quality

Clear naming
DRY - no duplicate code
SOLID principles followed
Appropriate abstraction level

Testing

Unit tests for new code
Edge cases tested
Tests readable and maintainable

Documentation

Complex logic commented
Public APIs documented
README updated if needed

AI & LLM Review Patterns (2025)

Logic & Hallucinations

Chain of Thought: Does the logic follow a verifiable path?
Edge Cases: Did the AI account for empty states, timeouts, and partial failures?
External State: Is the code making safe assumptions about file systems or networks?

Prompt Engineering Review

// ❌ Vague prompt in code
const response = await ai.generate(userInput);

// ✅ Structured & Safe prompt
const response = await ai.generate({
  system: "You are a specialized parser...",
  input: sanitize(userInput),
  schema: ResponseSchema
});

Anti-Patterns to Flag

// ❌ Magic numbers
if (status === 3) { ... }

// ✅ Named constants
if (status === Status.ACTIVE) { ... }

// ❌ Deep nesting
if (a) { if (b) { if (c) { ... } } }

// ✅ Early returns
if (!a) return;
if (!b) return;
if (!c) return;
// do work

// ❌ Long functions (100+ lines)
// ✅ Small, focused functions

// ❌ any type
const data: any = ...

// ✅ Proper types
const data: UserData = ...

Review Comments Guide

// Blocking issues use 🔴
🔴 BLOCKING: SQL injection vulnerability here

// Important suggestions use 🟡
🟡 SUGGESTION: Consider using useMemo for performance

// Minor nits use 🟢
🟢 NIT: Prefer const over let for immutable variable

// Questions use ❓
❓ QUESTION: What happens if user is null here?

code-review-checklist

Code Review Checklist

Quick Review Checklist

Correctness

Security

Performance

Code Quality

Testing

Documentation

AI & LLM Review Patterns (2025)

Logic & Hallucinations

Prompt Engineering Review

Anti-Patterns to Flag

Review Comments Guide

More from this repository

More from this repository

Code Review Checklist

Quick Review Checklist

Correctness

Security

Performance

Code Quality

Testing

Documentation

AI & LLM Review Patterns (2025)

Logic & Hallucinations

Prompt Engineering Review

Anti-Patterns to Flag

Review Comments Guide