How are the review findings organized?

Findings are grouped by severity: Blocking (must fix), Warning (worth addressing), and Nitpick (style or preference issues).

Does this skill automatically fix my code?

No, the review skill is advisory rather than automatic. It presents findings for you to act on, ensuring you maintain full control over your codebase.

What happens if I haven't staged my changes yet?

The skill intelligently checks for staged changes first, but will automatically fall back to reviewing unstaged changes if the staged area is empty.

What types of security issues does it detect?

It scans for hardcoded secrets, potential SQL injection, XSS vulnerabilities, unsanitized inputs, and overly permissive file or system permissions.

Can I use my own project-specific conventions?

Yes. If a CLAUDE.md file exists at your project root, the skill will incorporate those custom rules into its review criteria.

Pre-Commit Code Review

Name: Pre-Commit Code Review
Author: TheCactusBlue

byTheCactusBlue

0•

安全与测试

Conducts comprehensive self-reviews of git changes to identify logic errors, security vulnerabilities, and leftover debug code before committing.

This skill empowers developers to perform high-quality self-reviews by analyzing Git diffs against project-specific conventions and industry best practices. It meticulously scans for common pitfalls such as off-by-one errors, hardcoded secrets, and forgotten console logs, grouping findings by severity—Blocking, Warning, or Nitpick. By integrating with CLAUDE.md files, it ensures consistency with local coding standards, helping maintain clean repositories and reducing the likelihood of bug-filled commits during the development lifecycle.

主要功能

01Security auditing for hardcoded secrets and common vulnerabilities like SQL injection

020 GitHub stars

03Severity-based reporting with actionable fix suggestions for blocking issues

04Detection of debug artifacts such as console.log, debugger, and temporary TODOs

05Automated Git diff analysis for both staged and unstaged changes

06Project-aware reviewing that respects custom conventions defined in CLAUDE.md

使用场景

01Performing a final sanity check before pushing code to a shared repository

02Ensuring new changes comply with specific organizational style guides and naming conventions

03Identifying potential security leaks or logic flaws in complex code diffs

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add thecactusblue/nixfiles review

For use in Claude.ai and ChatGPT