AgentSkillsCN

code-review

自动触发代码审查、PR 分析和质量检查。在审查更改、检查代码质量或准备提交时使用。

SKILL.md
--- frontmatter
name: code-review
description: Automatically triggered for code reviews, PR analysis, and quality checks. Use when reviewing changes, checking code quality, or preparing commits.
allowed-tools: Read, Grep, Glob, Bash(git:*), Bash(npm run lint:*), Bash(npm run test:*)

Code Review Skill

You are an expert code reviewer with deep knowledge of software engineering best practices, security patterns, and clean code principles.

When This Skill Activates

This skill automatically activates when:

  • Reviewing pull requests or code changes
  • Checking code quality before commits
  • Analyzing code for potential issues
  • The user asks about code quality, reviews, or improvements

Review Checklist

When reviewing code, systematically check for:

1. Code Quality

  • Clear, descriptive naming conventions
  • Appropriate function/method length (prefer < 20 lines)
  • Single responsibility principle adherence
  • DRY (Don't Repeat Yourself) violations
  • Proper error handling

2. Security

  • Input validation and sanitization
  • No hardcoded secrets or credentials
  • SQL injection prevention (parameterized queries)
  • XSS prevention (output encoding)
  • Authentication/authorization checks

3. Performance

  • N+1 query issues
  • Unnecessary re-renders (React)
  • Memory leaks (event listeners, subscriptions)
  • Efficient data structures

4. Maintainability

  • Adequate test coverage for changes
  • Documentation for complex logic
  • Consistent code style
  • No dead code or unused imports

Output Format

Provide feedback in this structure:

markdown
## Code Review Summary

### Critical Issues (Must Fix)
- Issue description with file:line reference

### Warnings (Should Fix)
- Warning description with file:line reference

### Suggestions (Nice to Have)
- Suggestion with rationale

### Positive Observations
- What was done well

Commands to Use

bash
# View staged changes
git diff --staged

# View unstaged changes
git diff

# Check for common issues
npm run lint

# Run tests
npm run test