AgentSkillsCN

review-full

开展综合性项目适配性评审,融合架构、安全、可靠性、测试、性能、算法、数据、无障碍性、流程与可维护性等多维度分析。当用户说“全面评审”、“综合评审”、“项目适配性”、“审查一切”,或希望在交付前对当前变更逐一运行所有评审技能时使用。

SKILL.md
--- frontmatter
name: review-full
description: Runs a comprehensive project fitness review combining architecture, security, reliability, testing, performance, algorithms, data, accessibility, process, and maintainability analysis. Use when the user says "full review", "comprehensive review", "project fitness", "review everything", or wants all review skills run on current changes before shipping.

Full Project Fitness Review

Run all review skills in parallel to produce a unified fitness assessment.

Workflow

Step 1: Identify Review Scope

Determine what to review:

  • If there are pending git changes (git diff), review those changes
  • If the user specifies files or directories, review those
  • Otherwise, review the entire project

Step 2: Launch All Reviews in Parallel

Use the Task tool to launch these agents concurrently:

  1. Architecture (/review:review-architecture) - Design, coupling, naming, API fitness
  2. Security (/review:review-security) - Vulnerability and compliance fitness
  3. Reliability (/review:review-reliability) - Operations, observability, availability fitness
  4. Testing (/review:review-testing) - Test strategy and quality fitness
  5. Performance (/review:review-performance) - Scalability and efficiency fitness
  6. Algorithms (/review:review-algorithms) - Algorithm choice, data structures, concurrency, correctness fitness
  7. Data (/review:review-data) - Schema design, migration safety, data integrity fitness
  8. Accessibility (/review:review-accessibility) - UX and a11y fitness (if frontend code exists)
  9. Process (/review:review-process) - Development workflow and documentation fitness
  10. Maintainability (/review:review-maintainability) - Complexity, understandability, technical debt, code smells fitness

Skip review-accessibility if the project has no frontend code (no HTML, CSS, JSX, TSX, Vue, Svelte files). Skip review-data if the project has no database code (no SQL files, migrations, ORM models, or database configuration).

Step 3: Collect and Synthesize Results

Wait for all agents to complete. Gather each skill's:

  • Dimension scores (1-10)
  • Key findings with file:line evidence
  • Recommended action items

Step 4: Produce Unified Report

Write the report to docs/fitness-report.md with this structure:

markdown
# Project Fitness Report

**Date:** YYYY-MM-DD
**Scope:** [what was reviewed]

## Overall Score: X.X / 10

| Domain | Score | Status |
|--------|-------|--------|
| Architecture | X/10 | [status emoji] |
| Security | X/10 | [status emoji] |
| Reliability | X/10 | [status emoji] |
| Testing | X/10 | [status emoji] |
| Performance | X/10 | [status emoji] |
| Algorithms | X/10 | [status emoji] |
| Data | X/10 | [status emoji] |
| Accessibility | X/10 | [status emoji] |
| Process | X/10 | [status emoji] |
| Maintainability | X/10 | [status emoji] |

Status: 8-10 = Healthy, 5-7 = Needs Attention, 1-4 = Critical

## Top 10 Action Items (Priority Order)

1. [CRITICAL] description - file:line
2. [HIGH] description - file:line
...

## Domain Details

### Architecture
[scores and findings from review-architecture]

### Security
[scores and findings from review-security]

### Maintainability
[scores and findings from review-maintainability]

### Algorithms
[scores and findings from review-algorithms]

### Data
[scores and findings from review-data]

...repeat for each domain...

## References

Based on guidance from https://jeffbailey.us/categories/fundamentals/

Scoring

Overall score = weighted average:

  • Architecture: 14%
  • Security: 14%
  • Reliability: 10%
  • Testing: 10%
  • Performance: 10%
  • Algorithms: 10%
  • Data: 10% (0% if skipped)
  • Accessibility: 8% (0% if skipped)
  • Process: 8%
  • Maintainability: 6%

If a domain is skipped, redistribute its weight proportionally across the remaining domains.

Action Item Prioritization

Rank by severity and exploitability:

  1. CRITICAL - Security vulnerabilities, data loss risks, production outages
  2. HIGH - Architecture violations causing maintenance burden, missing tests for critical paths, algorithm correctness issues, data integrity gaps
  3. MEDIUM - Performance bottlenecks, observability gaps, process improvements, concurrency risks
  4. LOW - Style issues, minor naming inconsistencies, nice-to-have improvements