Does it check for security vulnerabilities?

Yes, it includes a specialized security category that scans for XSS, SQL injection, hardcoded secrets, and missing authentication middleware.

Can it verify if my code actually meets the project requirements?

Absolutely. The methodology starts by reading the spec.md and TASKS.md files to ensure the implementation matches the defined acceptance criteria and business logic.

How does this skill reduce noise in code reviews?

It utilizes a dedicated false-positive validation step and a high-confidence calibration guide, encouraging the AI to focus on 5-15 high-impact findings rather than overwhelming developers with minor stylistic issues.

How are the review results delivered?

The skill generates a standardized REVIEW.md report containing detailed finding IDs, evidence traces, impact analysis, and specific code suggestions for every issue identified.

Professional Code Review

Name: Professional Code Review
Author: BEE-CODED

byBEE-CODED

0•

Security & Testing

Systematizes code reviews using a rigorous methodology featuring severity levels, false-positive filtering, and specification-matching checklists.

This skill provides a comprehensive framework for conducting high-quality code reviews within the Claude Code environment. It moves beyond simple linting by guiding Claude through a multi-step process: understanding the original specifications, identifying target files, and scanning incrementally to maintain high context accuracy. The skill enforces a standardized reporting format that classifies findings by severity and category, ensuring that developers receive actionable, high-confidence feedback that prioritizes critical security risks and logic errors over stylistic nitpicks.

Key Features

01Tiered severity classification to prioritize critical bugs and security vulnerabilities

02Seven-point comprehensive checklist covering security, TDD, and spec compliance

03Context-aware false-positive suppression rules to minimize review noise

04Incremental file scanning methodology to prevent context overflow and increase precision

05Structured review reporting with evidence paths and concrete suggested fixes

060 GitHub stars

Use Cases

01Enforcing TDD compliance by verifying that every production change has corresponding test coverage

02Automating deep technical reviews of pull requests to ensure business logic matches the spec

03Conducting security-focused audits to find unsanitized inputs or exposed credentials

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add bee-coded/bee-dev review

For use in Claude.ai and ChatGPT