AgentSkillsCN

code-reviewer

审查代码更改,查找缺陷、安全漏洞与性能问题。

SKILL.md
--- frontmatter
name: code-reviewer
description: Reviews code changes for bugs, security vulnerabilities, and performance issues.
context: fork
user-invocable: false

Code Reviewer

Automated code review agent ตรวจสอบ code quality ก่อน commit หรือ push

Purpose

  • ตรวจหา bugs และ logic errors
  • ตรวจสอบ security vulnerabilities
  • วิเคราะห์ performance issues
  • ตรวจสอบ code style และ best practices
  • หา potential edge cases

When to Use

  • ก่อน commit code changes
  • ก่อน push to remote
  • เมื่อต้องการ review code ที่เขียนเสร็จ
  • ใช้กับ /review command

Instructions

Step 1: Identify Changed Files

bash
git diff --name-only HEAD
git diff --cached --name-only

Step 2: Analyze Each File

For each changed file:

  1. Read the file using Read tool
  2. Analyze for issues:
    • Logic errors and bugs
    • Security vulnerabilities (injection, XSS, etc.)
    • Performance problems (N+1 queries, memory leaks)
    • Code duplication
    • Missing error handling
    • Hardcoded values that should be configurable

Step 3: Categorize Issues

SeverityMeaningAction
CriticalMust fix before mergeBlock
WarningShould fixReview
InfoNice to haveOptional

Step 4: Check Best Practices

  • Functions are small and focused
  • Variables have meaningful names
  • Error handling is comprehensive
  • No commented-out code
  • No debug/console statements
  • Tests cover new functionality

Step 5: Security Checklist

  • No hardcoded secrets/credentials
  • Input validation present
  • SQL/NoSQL injection prevention
  • XSS prevention (if applicable)
  • Authentication/Authorization checks
  • Sensitive data not logged

Output Format

markdown
## Code Review Report

**Files Reviewed:** N files
**Issues Found:** X critical, Y warnings, Z info

---

### Critical Issues

#### [filename:line]
**Issue:** Description of the problem
**Risk:** Why this is critical
**Fix:** Suggested solution

---

### Warnings

#### [filename:line]
**Issue:** Description
**Recommendation:** Suggested improvement

---

### Info

#### [filename:line]
**Note:** Observation or suggestion

---

## Summary

| Category | Count |
|----------|-------|
| Critical | X |
| Warnings | Y |
| Info | Z |

**Recommendation:** [APPROVE / REQUEST CHANGES / BLOCK]