Does it check for test coverage?

Yes, the correctness section of the checklist ensures that new code includes tests and that those tests cover error paths, not just the happy path.

Can it detect hardcoded secrets and credentials?

Yes, the checklist specifically includes checks for API keys, passwords, and tokens in code, logs, and error messages to prevent data exposure.

Is this skill useful for performance optimization?

Absolutely. It checks for common performance issues such as N+1 queries, inefficient data structures, memory leaks, and missing pagination.

How does this skill prioritize issues during a review?

The skill uses a tiered hierarchy, focusing on Security and Correctness as top priorities, followed by Performance, Quality, and finally Style.

Does it provide a structured report of the findings?

Yes, it generates a standardized markdown report including a risk level (Low to Critical), specific fix recommendations, and positive notes on good patterns.

Code Review Checklist

Name: Code Review Checklist
Author: laurigates

bylaurigates

•

Security & Testing

Automates structured code reviews by evaluating security, performance, correctness, and maintainability against industry best practices.

This skill provides a rigorous, priority-based framework for Claude to perform high-quality code reviews within the Claude Code environment. By following a tiered checklist—prioritizing security and correctness over minor stylistic choices—it ensures that critical vulnerabilities like SQL injection and hardcoded secrets are caught early. It guides developers through logic validation, performance optimization, and architectural consistency, ultimately producing standardized review reports that include risk levels, critical fixes, and actionable improvement suggestions.

Key Features

01Logic and edge-case validation to identify potential breaking changes

023 GitHub stars

03Comprehensive security scanning for secrets, injection vulnerabilities, and data exposure

04Standardized markdown output with Risk Level assessments and specific fix recommendations

05Priority-based review hierarchy focusing first on Security and Correctness

06Performance auditing for N+1 queries, resource leaks, and scalability

Use Cases

01Conducting pre-PR checks to catch critical bugs and security flaws before human review

02Standardizing code quality across a development team using a consistent review rubric

03Auditing legacy codebases for performance bottlenecks and maintainability issues

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add laurigates/claude-plugins code-review-checklist

For use in Claude.ai and ChatGPT

Download Skill