Can it detect security vulnerabilities?

Yes, it specifically checks for SQL injection, XSS, command injection, hardcoded secrets, and improper authentication patterns.

What languages does the Code Review skill support?

The skill can review any programming language supported by Claude Code, including JavaScript, TypeScript, Python, Go, and Java.

Does it identify performance bottlenecks?

Yes, it identifies issues such as N+1 database queries, missing indexes, memory leaks, and unoptimized React re-renders.

How are the review results formatted?

Results are delivered in a structured Markdown format categorized into Critical (must fix), Suggestions (should consider), Nits (optional), and positive feedback.

Can I use this for security audits?

Absolutely. It is designed to be used during PR reviews, code changes, or full-scale security and performance audits.

Automated Code Review

Name: Automated Code Review
Author: januarfonti

byjanuarfonti

0•

Seguridad y Pruebas

Analyzes code changes for security vulnerabilities, performance bottlenecks, and best practices to ensure high-quality pull requests.

The Code Review skill provides a comprehensive, automated audit of your codebase, focusing on critical areas such as security vulnerabilities, performance efficiency, and adherence to clean code principles. By scanning for common pitfalls like SQL injection, N+1 queries, and violations of the Single Responsibility Principle, it helps developers catch issues early in the development lifecycle. It generates a structured report categorizing findings into critical fixes, suggestions, and minor nits, making it an essential tool for pull request reviews, code audits, and maintaining long-term technical health.

Características Principales

01Structured output with prioritized severity levels (Critical, Suggestions, Nits)

02Comprehensive testing review including coverage and edge cases

03Code quality analysis based on DRY and SRP principles

040 GitHub stars

05Security vulnerability scanning for SQLi, XSS, and hardcoded secrets

06Performance optimization checks for N+1 queries and memory leaks

Casos de Uso

01Ensuring consistent coding standards and best practices across multi-developer teams.

02Reviewing complex pull requests to catch subtle bugs and security flaws before merging.

03Performing deep code audits on legacy codebases to identify technical debt.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add januarfonti/opencode-template-configured code-review

For use in Claude.ai and ChatGPT

Download Skill