Does this skill check for specific security vulnerabilities?

Yes, it specifically audits code against the OWASP Top 10, including SQL injection, XSS, broken authentication, and sensitive data exposure.

Can I use this for TypeScript and JavaScript projects?

Absolutely. It includes dedicated checks for TypeScript safety, such as the usage of 'any' types, missing annotations, and inconsistent type assertions.

How are the review results structured?

Results are organized into a standardized report featuring a summary, critical issues, improvements, minor suggestions, and a final merge verdict.

What review modes are available?

You can request a Quick Review for critical issues, a Full Review for everything, or specialized audits focusing specifically on Security or Performance.

Will it provide the actual code to fix an issue?

Yes, for critical and high-severity issues, the skill provides specific code suggestions to help you implement the fix immediately.

Code Reviewer & Security Auditor

Name: Code Reviewer & Security Auditor
Author: allierays

byallierays

•

Seguridad y Pruebas

Conducts comprehensive code reviews focusing on security vulnerabilities, performance bottlenecks, and architectural best practices.

This skill transforms Claude into a senior technical reviewer capable of performing deep-dive analyses across your entire codebase. It systematically audits code for OWASP Top 10 security risks, TypeScript type safety, error handling robustness, and performance efficiency. By providing structured, actionable feedback with clear severity levels—ranging from critical security blocks to minor stylistic suggestions—it ensures that every code change meets high-quality production standards and minimizes technical debt before merging.

Características Principales

0128 GitHub stars

02Structured reporting with clear severity levels and code fix suggestions

03Automated OWASP Top 10 security vulnerability detection

04Comprehensive TypeScript type safety and error handling analysis

05Dependency vulnerability auditing and maintenance checks

06Multi-mode auditing including Security, Performance, and Quick reviews

Casos de Uso

01Automating pre-merge security audits for sensitive API endpoints

02Providing constructive mentorship-style feedback for team development

03Refactoring legacy code to improve performance and type safety standards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add allierays/agentic-loop review

For use in Claude.ai and ChatGPT

Download Skill