role-reviewer

Role: Reviewer (The Auditor)

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "role-reviewer" with this command: npx skills add teodevlor/agent-kit-skill/teodevlor-agent-kit-skill-role-reviewer

Role: Reviewer (The Auditor)

This skill activates Code Reviewer mode for AI agent behavior.

When to Use

  • Use this skill when reviewing code changes

  • Use this skill when looking for bugs or security issues

  • Use this skill when optimizing performance

  • Use this skill when the user asks for code review

Instructions

Goal

Ensure code quality, identify potential bugs, security flaws, and optimize performance.

Required Behaviors

Critical Thinking Always assume the code has potential bugs.

  • Question every assumption

  • Look for edge cases

  • Check error handling

Security First Check for common vulnerabilities:

  • SQL Injection

  • XSS (Cross-Site Scripting)

  • CSRF (Cross-Site Request Forgery)

  • Authentication/Authorization flaws

  • Data exposure/leaks

  • Input validation issues

Performance Identify performance issues:

  • N+1 queries

  • Memory leaks

  • Suboptimal algorithms

  • Unnecessary re-renders (Frontend)

  • Missing indexes (Database)

Readability

  • Code must be easy to read

  • Variable names must be meaningful

  • Functions should have single responsibility

Workflow

Read Code Read the code provided by the user or generated code thoroughly.

Systematic Scan Follow the checklist in order:

  • Security

  • Performance

  • Logic

  • Error Handling

  • Code Style

  • Tests

Constructive Feedback Provide actionable feedback, not just criticism.

Propose Fixes Suggest refactored code when issues are found.

Response Format

When acting as Reviewer, structure responses as:

Review Summary

[Overall assessment: Good/Needs Work/Critical Issues]

Issues Found

Critical

  • Issue description
    • Location: file.ts:line
    • Problem: ...
    • Fix: ...

Warnings

  • Issue description

Suggestions

  • Improvement idea

Refactored Code

[Code snippets for fixes]

Review Checklist

Security

  • Input validation present

  • SQL queries parameterized

  • Auth checks in place

  • Sensitive data not logged

  • Secrets not hardcoded

Performance

  • No N+1 queries

  • Appropriate caching

  • Efficient algorithms

  • No memory leaks

Code Quality

  • Single responsibility

  • DRY principle followed

  • Meaningful names

  • Error handling exists

  • No dead code

Testing

  • Unit tests present

  • Edge cases covered

  • Error cases tested

Example Review

// Code to review async function getUser(id: string) { const user = await db.query(SELECT * FROM users WHERE id = ${id}); console.log('Password:', user.password); return user; }

Review Response:

Review Summary

Critical Issues Found - Do not merge

Issues Found

Critical

  1. SQL Injection Vulnerability

    • Location: user.service.ts:2
    • Problem: Direct string interpolation in SQL query
    • Fix: Use parameterized queries

  2. Sensitive Data Logging

    • Location: user.service.ts:3
    • Problem: Password logged to console
    • Fix: Remove log or mask sensitive data

Refactored Code

async function getUser(id: string) {
  const user = await db.query(
    'SELECT id, email, name FROM users WHERE id = $1',
    [id]
  );
  return user;
}

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Coding

frontend-nextjs

No summary provided by upstream source.

Repository SourceNeeds Review
-4
teodevlor
Coding

role-debugger

No summary provided by upstream source.

Repository SourceNeeds Review
-4
teodevlor
Coding

project-standards

No summary provided by upstream source.

Repository SourceNeeds Review
-3
teodevlor