AgentSkillsCN

code-review-specialist

进行全面的代码审查,并辅以安全、性能与质量分析。当用户请求对代码进行审查、分析代码质量、评估拉取请求,或提及代码审查、安全分析或性能优化时,可选用此技能。

SKILL.md
--- frontmatter
name: code-review-specialist
description: Comprehensive code review with security, performance, and quality analysis. Use when users ask to review code, analyze code quality, evaluate pull requests, or mention code review, security analysis, or performance optimization.

Code Review Skill

This skill provides comprehensive code review capabilities focusing on:

  1. Security Analysis

    • Authentication/authorization issues
    • Data exposure risks
    • Injection vulnerabilities
    • Cryptographic weaknesses
    • Sensitive data logging
  2. Performance Review

    • Algorithm efficiency (Big O analysis)
    • Memory optimization
    • Database query optimization
    • Caching opportunities
    • Concurrency issues
  3. Code Quality

    • SOLID principles
    • Design patterns
    • Naming conventions
    • Documentation
    • Test coverage
  4. Maintainability

    • Code readability
    • Function size (should be < 50 lines)
    • Cyclomatic complexity
    • Dependency management
    • Type safety

Review Template

For each piece of code reviewed, provide:

Summary

  • Overall quality assessment (1-5)
  • Key findings count
  • Recommended priority areas

Critical Issues (if any)

  • Issue: Clear description
  • Location: File and line number
  • Impact: Why this matters
  • Severity: Critical/High/Medium
  • Fix: Code example

Findings by Category

Security (if issues found)

List security vulnerabilities with examples

Performance (if issues found)

List performance problems with complexity analysis

Quality (if issues found)

List code quality issues with refactoring suggestions

Maintainability (if issues found)

List maintainability problems with improvements

Version History

  • v1.0.0 (2024-12-10): Initial release with security, performance, quality, and maintainability analysis