Does it support specific coding styles?

Yes, the skill checks for naming conventions, documentation, file organization, and consistent formatting to ensure code follows project standards.

Can I use this for existing code or just new changes?

It is designed for both; you can use git diff to review new changes or provide specific file paths for an audit of existing code.

How are the findings reported?

Findings are summarized in a structured report categorized by severity: Critical (must fix), High (fix before merge), Medium, Low, and Info.

How does it help with database performance?

It specifically looks for N+1 query patterns, where database access occurs inside loops, and suggests more efficient batching or joining methods.

What security vulnerabilities does this skill detect?

The skill scans for SQL injection, XSS, command injection, hardcoded secrets, authentication flaws, and missing authorization checks.

Code Reviewer

Name: Code Reviewer
Author: ANcpLua

byANcpLua

•

보안 및 테스팅

Performs comprehensive automated code reviews to identify security vulnerabilities, performance bottlenecks, and style inconsistencies.

소개

The code-review skill provides a structured framework for auditing code changes using Claude. It follows a rigorous workflow that includes analyzing git diffs, conducting deep security audits for injection and XSS flaws, verifying naming conventions, and identifying performance issues like N+1 queries. By generating detailed reports categorized by severity levels—from critical security risks to minor style suggestions—it helps developers maintain high code quality and safety standards before commits or merges. This skill is essential for teams looking to automate technical debt reduction and ensure robust error handling across their applications.

주요 기능

Direct integration with git diff workflows
Style and naming convention verification
Performance analysis for N+1 queries and inefficient algorithms
1 GitHub stars
Categorized severity reporting from Critical to Info
Security audit for injection, XSS, and sensitive data exposure

사용 사례

Pre-merge pull request auditing for security vulnerabilities
Automated identification of performance bottlenecks in database-heavy code
Refactoring legacy code to align with modern best practices

소개

주요 기능

Direct integration with git diff workflows
Style and naming convention verification
Performance analysis for N+1 queries and inefficient algorithms
1 GitHub stars
Categorized severity reporting from Critical to Info
Security audit for injection, XSS, and sensitive data exposure

사용 사례

Pre-merge pull request auditing for security vulnerabilities
Automated identification of performance bottlenecks in database-heavy code
Refactoring legacy code to align with modern best practices