Can it detect security vulnerabilities like SQL injection?

Yes, it is designed to identify OWASP Top 10 vulnerabilities, including SQL injection, XSS, CSRF, and insecure credential management.

How does it provide feedback on pull requests?

The skill provides structured feedback organized by severity and priority, offering specific code examples and clear rationales for every suggested improvement.

What languages does the Code Reviewer skill support?

It supports all major programming languages including JavaScript/TypeScript, Python, Java, Go, Rust, C#, and PHP, applying specific modern patterns and best practices for each ecosystem.

Does this skill work with Infrastructure as Code (IaC)?

Absolutely. It can review Terraform, CloudFormation, and Kubernetes manifests to ensure security, reliability, and cloud-native best practices.

Does it replace manual code reviews?

While it significantly automates the detection of technical issues and security risks, it is designed to augment human reviewers by handling the heavy lifting of static and pattern analysis.

Code Reviewer Pro

Name: Code Reviewer Pro
Author: anton-abyzov

byanton-abyzov

•

Security & Testing

Performs comprehensive code audits for security vulnerabilities, performance bottlenecks, and architectural best practices.

The Code Reviewer skill transforms Claude into an elite quality assurance expert capable of identifying deep-seated logic flaws, OWASP security risks, and performance anti-patterns. By integrating modern static analysis principles with AI-driven context awareness, it provides actionable, production-grade feedback across dozens of programming languages and infrastructure configurations. This skill is essential for teams looking to shift security left, reduce technical debt, and ensure that every pull request adheres to high standards of maintainability and reliability before reaching production.

Key Features

01Adherence verification for SOLID principles and clean code patterns

02Security-first vulnerability scanning for OWASP Top 10 risks

0313 GitHub stars

04Infrastructure as Code (IaC) and Kubernetes configuration review

05Deep performance optimization and N+1 query detection

06Automated pull request analysis with structured, prioritized feedback

Use Cases

01Conducting pre-deployment security audits for microservices and APIs

02Standardizing code quality and style across large, multi-language teams

03Identifying performance bottlenecks and memory leaks in legacy codebases

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add anton-abyzov/specweave code-reviewer

For use in Claude.ai and ChatGPT

Download Skill