ワンクリックで
code-review
Review changed code for quality, security, and architecture compliance. Use after implementing features or before opening PRs.
Codex または Claude でインストール この Prompt をコピーして Codex、Claude、または他のアシスタントに貼り付けると、Skill ページを確認してインストールできます。
メニュー
Review changed code for quality, security, and architecture compliance. Use after implementing features or before opening PRs.
Codex または Claude でインストール この Prompt をコピーして Codex、Claude、または他のアシスタントに貼り付けると、Skill ページを確認してインストールできます。
SOC 職業分類に基づく
Kandev release & versioning conventions — single SemVer across npm, Homebrew, GitHub release. Use when cutting a release, debugging release artifacts, or answering questions about version channels.
Diagnose Kandev bugs, running-instance issues, UI/browser failures, and runtime behavior. Use when the user reports unexpected behavior, asks to investigate, asks to add logs/instrumentation, or when a fix needs root-cause evidence before implementing. Triage first, gather evidence safely, then hand off to /fix or /tdd for code changes.
Write and run web E2E tests (Playwright) using TDD — locations, patterns, commands, and debugging.
Ensures UI feature work ships with desktop and mobile parity, responsive behavior, and mobile Playwright E2E coverage. Use when implementing, planning, reviewing, or testing any new feature, page, component, workflow, form, dialog, sidebar, navigation, dashboard, or visual UI change; if work touches frontend or user-facing UI, this skill must run even when user mentions only desktop or says "new feature".
Create a committed implementation plan from a feature spec. Explores the codebase, designs the approach, and produces docs/plans/<feature>/plan.md plus individual task files. Use after writing a spec and before implementing.
Wait for CI checks and automated reviews (CodeRabbit, Greptile, Claude, OpenCode, cubic) on a PR, fix failures and address comments, then push.
| name | code-review |
| description | Review changed code for quality, security, and architecture compliance. Use after implementing features or before opening PRs. |
Review the current changes in the codebase (Go backend + Vite/React SPA monorepo). Every finding needs a file_path:line_number reference, an explanation of why it matters, and a concrete fix.
Start from intent and evidence: read the spec/task first when available, then changed tests before production code. Tests reveal the expected behavior and whether the change is actually verified.
/tdd — Recommend when flagging untested logic. The author can use this to add tests.Determine the right diff scope:
git diff --name-only (unstaged) and git diff --cached --name-only (staged)git diff origin/<base_branch>...HEAD --name-only to diff against the base branchRead each changed file in full — understand surrounding code, not just the diff. Navigate callers, interfaces, and tests to understand changes end-to-end.
For each file, identify which requirement or intent it serves. Flag any changes that don't map to the task — scope creep is a blocker.
Before reviewing implementation details:
Check every changed file for the following layers. Skip layers that don't apply to the change.
Security (blockers if found):
Architecture:
@kandev/ui not @/components/ui/*Logic & correctness:
Performance:
Complexity limits (CI also enforces these, but catch them early to avoid pushing and waiting):
Code quality:
AI slop detection:
as any or as unknown as X casts used to dodge type errors instead of fixing typesTesting (blocker if missing):
*_test.go tests*.test.ts tests/tddUse this format:
Security holes, data loss risk, broken logic, crashes, missing tests for new/changed logic
file.go:42
Performance problems, poor error handling, architectural concerns
| Severity | Count |
|---|---|
| Blocker | N |
| Suggestion | N |
Verdict: Ready to merge / Ready with suggestions / Blocked — fix blockers first
Rules:
Not a finding (skip these):