What specific security issues does this skill detect?

The skill checks for SQL injection, Cross-Site Scripting (XSS), hardcoded secrets, authentication bypasses, and improper data encryption.

How does it prioritize code issues?

It categorizes findings into Critical (security/data loss), High (logic/performance), Medium (maintainability), and Low (style/conventions).

Does it replace automated linting tools?

It complements them. The skill's process includes running npm lint and test scripts as part of its multi-stage review logic.

Can I use this for specific programming languages?

Yes, while the principles are universal, it includes specific checks for TypeScript/JavaScript conventions and modern software architecture patterns.

Code Quality & Security Reviewer

Name: Code Quality & Security Reviewer
Author: zellycloud

byzellycloud

0•

セキュリティとテスト

Ensures code excellence and security by performing systematic reviews based on industry best practices and rigorous safety standards.

The Code Review skill transforms Claude into a senior-level technical auditor, providing systematic evaluations of your codebase. It focuses on four critical pillars: structural quality, security vulnerability detection, performance optimization, and adherence to best practices. By utilizing comprehensive checklists—ranging from SOLID principles and DRY patterns to protection against SQL injection and XSS—it identifies critical issues, suggests refactoring opportunities, and ensures that every pull request meets professional production standards.

主な機能

01Standardized feedback templates for bugs and improvements

02Automated review workflow integration (linting, testing, type-checks)

03Deep security audits for auth, injection, and secret management

04Comprehensive code quality checklists (complexity, naming, structure)

05Severity-based issue prioritization (Critical to Low)

060 GitHub stars

ユースケース

01Pre-deployment security audits to prevent data leaks and vulnerabilities

02Automating peer reviews to maintain consistent coding standards across teams

03Refactoring legacy code by identifying technical debt and anti-patterns

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add zellycloud/zyflow code-review

For use in Claude.ai and ChatGPT

Download Skill