AgentSkillsCN

reviewing-code

针对Xbox 360作品集网站的项目特定规范进行代码审查。 在审查代码、检查PR、审计文件或用户提到“审查”、“检查代码”、“审计”、“PR审查”、“代码质量”或“最佳实践”时使用。

SKILL.md
--- frontmatter
name: reviewing-code
description: |
  Code review with project-specific conventions for Xbox 360 portfolio site.
  Use when reviewing code, checking PRs, auditing files, or when user mentions
  "review", "check code", "audit", "PR review", "code quality", or "best practices".

Code Review

Review code against project conventions and best practices.

Review Workflow

code
- [ ] Step 1: Check critical rules (dev server, deps, console.log)
- [ ] Step 2: Verify TypeScript compilation
- [ ] Step 3: Frontend checks (if applicable)
- [ ] Step 4: Backend checks (if applicable)
- [ ] Step 5: Security review
- [ ] Step 6: Performance review
- [ ] Step 7: Generate findings report

Critical Rule Violations (BLOCKERS)

These MUST be fixed before approval:

ViolationDetectionFix
Dev server startednpm run dev in codeRemove, never auto-start
Unauthorized depsNew package.json entriesRemove or get approval
Console.log abuseconsole.log() callsRemove or use TRPCError
Missing Zod validationtRPC input without .input()Add Zod schema
Raw DB errors exposedPrisma errors to clientWrap with TRPCError

Frontend Review Checklist

code
Audio Integration:
- [ ] Every button/clickable has playSound()
- [ ] Hover states trigger hover sound
- [ ] Navigation uses navigateWithSound()

Styling:
- [ ] Uses CSS Modules (not inline styles)
- [ ] Responsive at 768px breakpoint
- [ ] Transitions: 0.3s hover, 0.5s major

Component Quality:
- [ ] 'use client' for interactive components
- [ ] React.memo for performance-critical
- [ ] TypeScript interfaces with JSDoc
- [ ] No any types

Backend Review Checklist

code
API Security:
- [ ] All inputs validated with Zod
- [ ] protectedProcedure for auth-required
- [ ] Resource ownership checks
- [ ] Proper TRPCError codes

Query Optimization:
- [ ] select() used (not fetching all fields)
- [ ] Pagination for lists
- [ ] Indexes defined for queries

Error Handling:
- [ ] TRPCError with meaningful messages
- [ ] No raw errors exposed to client
- [ ] console.error only for critical issues

Security Review

See SECURITY.md for detailed security checklist.

Report Format

markdown
## Code Review: [file/feature name]

### Critical Issues (Blockers)
- Issue 1: [description] - Line X
- Issue 2: [description] - Line Y

### Warnings
- Warning 1: [description]

### Suggestions
- Suggestion 1: [description]

### Passed Checks
- [x] TypeScript compiles
- [x] No console.log statements
- [x] Audio integration present