一键导入
review
25-point code quality checklist covering structure, errors, security, performance, and testing. Use before commits or when reviewing code.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
25-point code quality checklist covering structure, errors, security, performance, and testing. Use before commits or when reviewing code.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Rewrite engineer-to-engineer content for leadership audiences — VPs, directors, PMs, release managers. Shapes for the channel: JIRA comment, Slack post, standup note, email, or meeting talking-points. Use after post-mortem or any technical update that needs to flow up the org.
Write the canonical engineering record of a fixed bug — root cause, mechanism, fix, validation, and how it slipped through. Use after a debug session lands a validated fix, before closing the bug.
Outsider-perspective deep review of a plan, PR, design doc, or code change — questions intent first (should this exist?), then traces the actual code path end-to-end to verify the change does what it claims. Use for serious PR reviews, design audits, or second opinions. Lighter pre-commit checks use `review` instead.
Review feature spec files with 3 focused agents — spec quality (business+correctness+ambiguity), completeness (missing scenarios+safety+testability), and buildability (compatibility+blockers+traceability). Sequential by default.
Systematic debugging framework — opens every session by reciting the 4-mantra block (reproduce, trace the fail path, falsify the hypothesis, cross-reference breadcrumbs), then applies multi-layer investigation. Use when diagnosing bugs, flaky tests, unknown failures, or cross-component issues.
Use when starting any conversation - establishes how to find and use skills, requiring Skill tool invocation before ANY response including clarifying questions
| name | review |
| description | 25-point code quality checklist covering structure, errors, security, performance, and testing. Use before commits or when reviewing code. |
| allowed-tools | Bash, Read, Grep |
Perform systematic code reviews, identify issues, suggest refactorings, and enforce best practices. Acts as an automated code reviewer catching problems before they reach production.
Activate this skill when:
Single Responsibility Principle (SRP)
DRY (Don't Repeat Yourself)
Function Length
Naming Clarity
Magic Numbers
All Errors Caught
No Silent Failures
User-Friendly Error Messages
Logging for Debugging
Edge Cases Covered
Input Validation
SQL Injection Prevention
XSS Prevention
Sensitive Data Handling
Environment Variables for Secrets
No N+1 Queries
Appropriate Caching
Database Indexes
Unnecessary Computations
Memory Leak Prevention
Tests Exist
Edge Cases Tested
Happy Path Tested
Error Conditions Tested
Tests Are Maintainable
Ask user what to review:
git diff --cached)git diff)Run appropriate git diff or read files:
# For staged changes
git diff --cached
# For unstaged changes
git diff
# For specific file
Read file_path
# For feature
git diff main...HEAD
Systematically go through:
UltraThink Architectural Issues: If review reveals fundamental architectural problems, activate deep thinking:
Say: "This code has architectural issues. Let me ultrathink whether refactoring or redesign is needed."
When to UltraThink:
Question deeply:
After UltraThink: Recommend tactical fixes (refactor) vs. strategic redesign with clear reasoning.
## Code Review: [File/Feature Name]
### Strengths
[List what's done well - be specific and encouraging]
- Clear function naming in authentication module
- Comprehensive error handling for API calls
- Good test coverage (87%)
### Issues Found
#### Priority: High - Must Fix Before Merge
1. **[Issue Title]**
- **Location:** `file:line`
- **Problem:** [Specific description]
- **Risk:** [What could go wrong]
- **Fix:** [How to resolve]
#### Priority: Medium - Should Address
1. **[Issue Title]**
- **Location:** `file:line`
- **Problem:** [Description]
- **Impact:** [Effect on code quality]
- **Suggestion:** [Improvement approach]
#### Priority: Low - Consider Improving
1. **[Issue Title]**
- **Location:** `file:line`
- **Note:** [Observation]
- **Enhancement:** [Optional improvement]
### Refactoring Suggestions
#### Suggestion 1: [Title]
**Current Code:**
[Show problematic pattern]
**Refactored Code:**
[Show improved version]
**Benefits:**
- [Benefit 1]
- [Benefit 2]
### Code Metrics
- **Complexity:** [Low/Medium/High]
- **Test Coverage:** [X%]
- **Maintainability:** [A/B/C/D/F]
- **Lines of Code:** [N]
- **Duplicated Code:** [X%]
### Action Items
- [ ] Fix high-priority issues
- [ ] Address medium-priority items
- [ ] Consider refactoring suggestions
- [ ] Add tests for uncovered paths
- [ ] Update documentation
---
**Overall Assessment:** [Summary statement]
**Recommendation:** [Approve/Request Changes/Reject]
[Confidence: X.X]
User: "I'm about to commit, can you review my changes?"
Process:
git diff --cached to see staged changesFocus on: Input validation, error handling, security, and test coverage for new code.
User: "Can you suggest improvements for this module?"
Process:
Focus on: Named constants, extracted functions, input validation, and cleaner error handling.
spec-driven-implementation skill during execution phasegit-workflow skill for pre-commit reviewssystematic-testing skill to verify test quality