一键导入
skill-code-review
Perform thorough, constructive code reviews focusing on correctness, security, maintainability, and best practices
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Perform thorough, constructive code reviews focusing on correctness, security, maintainability, and best practices
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Automates browser interactions for web testing, form filling, screenshots, and data extraction. Use when the user needs to navigate websites, interact with web pages, fill forms, take screenshots, test web applications, or extract information from web pages.
Create and optimize MEMORY.md memory files or .agent/rules/ modular rules for Antigravity projects. Comprehensive guidance on file hierarchy, content structure, path-scoped rules, best practices, and anti-patterns. Use when working with MEMORY.md files, .agent/rules directories, setting up new projects, or improving Antigravity's context awareness.
Comprehensive code review following OWASP, SOLID, and best practices
Expert guidance for creating Antigravity slash commands. Use when working with slash commands, creating custom commands, understanding command structure, or learning YAML configuration.
Expert guidance for creating, building, and using Antigravity subagents and the Task tool. Use when working with subagents, setting up agent configurations, understanding how agents work, or using the Task tool to launch specialized agents.
Expert guidance for creating Antigravity Workflows. Use when creating new workflows, understanding workflow structure, or learning YAML configuration.
| name | skill-code-review |
| description | Perform thorough, constructive code reviews focusing on correctness, security, maintainability, and best practices |
Conduct comprehensive code reviews that improve code quality, catch bugs early, ensure security, and promote team learning through constructive feedback.
❌ "This code is bad"
✅ "Consider extracting this into a separate function for better testability"
❌ "Fix the naming"
✅ "Rename `data` to `userProfile` to clarify its purpose"
❌ "Don't use var"
✅ "Use `const` instead of `var` to prevent accidental reassignment and improve code clarity"
| Prefix | Meaning | Action Required |
|---|---|---|
| 🚨 BLOCKER | Critical issue, must fix | Cannot merge |
| ⚠️ WARNING | Should fix, potential problem | Strongly recommended |
| 💡 SUGGESTION | Improvement opportunity | Optional |
| ❓ QUESTION | Clarification needed | Please explain |
| 👍 PRAISE | Great work! | Keep it up |
🚨 **BLOCKER - Security**: User input is not sanitized before being used in the SQL query.
This creates a SQL injection vulnerability.
**Suggestion**: Use parameterized queries or an ORM to safely handle user input.
⚠️ **WARNING - Performance**: This loop makes a database call on each iteration,
resulting in N+1 queries.
**Suggestion**: Batch the queries or use eager loading to fetch all data upfront.
💡 **SUGGESTION**: This function is 80 lines long with multiple responsibilities.
Consider splitting into:
- `validateInput()` - Input validation
- `processData()` - Core business logic
- `formatResponse()` - Response formatting
👍 **PRAISE**: Excellent error handling here! The fallback mechanism and
detailed logging will make debugging much easier.
Structure your review as follows:
## Code Review Summary
**Overall Assessment**: ✅ Approved | ⚠️ Needs Changes | 🚨 Request Changes
### Overview
Brief summary of what was reviewed and overall impressions.
### Critical Issues (Must Fix)
- Issue 1 with location and fix suggestion
- Issue 2 with location and fix suggestion
### Recommendations (Should Fix)
- Recommendation 1
- Recommendation 2
### Suggestions (Nice to Have)
- Suggestion 1
- Suggestion 2
### Positive Highlights
- What was done well
### Questions
- Any clarifications needed