What is the output format of the review?

Feedback is organized into a structured report covering Critical fixes, Suggestions, Nits, and Positive Feedback on good implementation patterns.

How does the Code Review skill handle security?

It scans for common vulnerabilities including SQL injection, XSS, hardcoded secrets, and insecure deserialization patterns to prevent security breaches.

Which code quality principles does it enforce?

It flags violations of DRY (Don't Repeat Yourself) and SRP (Single Responsibility Principle), along with complex nesting and poor naming conventions.

Can it help identify performance issues?

Yes, it specifically identifies N+1 queries, missing database indexes, memory leaks, and blocking operations in asynchronous code.

Does it check for test coverage?

Yes, the skill reviews new code for missing test coverage and identifies flaky test patterns or tests that fail to verify actual behavior.

Automated Code Review

Name: Automated Code Review
Author: julianromli

byjulianromli

•

101

•

Collaboration Tools

Analyzes code changes for security vulnerabilities, performance bottlenecks, and architectural best practices to streamline the pull request process.

The Code Review skill transforms Claude into an automated senior developer, scrutinizing pull requests and code audits for critical flaws. It systematically checks for security vulnerabilities like SQL injection and hardcoded secrets, identifies performance issues such as N+1 queries, and enforces code quality through DRY and SOLID principles. By providing structured feedback categorized by severity—from Critical fixes to minor Nits—this skill ensures high engineering standards are maintained while significantly reducing the manual effort required for peer reviews.

Key Features

01Performance bottleneck detection including N+1 queries and memory leaks

02Code quality enforcement focusing on SRP, DRY, and naming conventions

03Standardized reporting format with clear fix suggestions and rationales

04Automated testing validation to ensure behavior-driven coverage

05Comprehensive security auditing for common vulnerabilities (OWASP)

06101 GitHub stars

Use Cases

01Optimizing application performance by identifying inefficient database or async patterns

02Reviewing pull requests to ensure new features meet production standards

03Conducting deep security audits of legacy codebases for vulnerability mitigation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add julianromli/opencode-template code-review

For use in Claude.ai and ChatGPT

Download Skill