https://github.com/sanyuan0704/code-review-expert
Expert code review skill: SOLID, security, performance, error handling, boundary conditions
https://github.com/sanyuan0704/code-review-expert
Last synced: 24 days ago
JSON representation
Expert code review skill: SOLID, security, performance, error handling, boundary conditions
- Host: GitHub
- URL: https://github.com/sanyuan0704/code-review-expert
- Owner: sanyuan0704
- Created: 2026-02-04T06:44:11.000Z (27 days ago)
- Default Branch: main
- Last Pushed: 2026-02-04T06:54:30.000Z (27 days ago)
- Last Synced: 2026-02-04T17:55:33.339Z (27 days ago)
- Size: 11.7 KB
- Stars: 147
- Watchers: 0
- Forks: 7
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-ccamel - sanyuan0704/code-review-expert - Expert code review skill: SOLID, security, performance, error handling, boundary conditions (Misc)
- my-awesome - sanyuan0704/code-review-expert - 02 star:1.9k fork:0.2k Expert code review skill: SOLID, security, performance, error handling, boundary conditions (Others)
- awesome-claude-code - **AI-research-SKILLs**
README
# Code Review Expert
A comprehensive code review skill for AI agents. Performs structured reviews with a senior engineer lens, covering architecture, security, performance, and code quality.
## Installation
```bash
npx skills add sanyuan0704/code-review-expert
```
## Features
- **SOLID Principles** - Detect SRP, OCP, LSP, ISP, DIP violations
- **Security Scan** - XSS, injection, SSRF, race conditions, auth gaps, secrets leakage
- **Performance** - N+1 queries, CPU hotspots, missing cache, memory issues
- **Error Handling** - Swallowed exceptions, async errors, missing boundaries
- **Boundary Conditions** - Null handling, empty collections, off-by-one, numeric limits
- **Removal Planning** - Identify dead code with safe deletion plans
## Usage
After installation, simply run:
```
/code-review-expert
```
The skill will automatically review your current git changes.
## Workflow
1. **Preflight** - Scope changes via `git diff`
2. **SOLID + Architecture** - Check design principles
3. **Removal Candidates** - Find dead/unused code
4. **Security Scan** - Vulnerability detection
5. **Code Quality** - Error handling, performance, boundaries
6. **Output** - Findings by severity (P0-P3)
7. **Confirmation** - Ask user before implementing fixes
## Severity Levels
| Level | Name | Action |
|-------|------|--------|
| P0 | Critical | Must block merge |
| P1 | High | Should fix before merge |
| P2 | Medium | Fix or create follow-up |
| P3 | Low | Optional improvement |
## Structure
```
code-review-expert/
├── SKILL.md # Main skill definition
├── agents/
│ └── agent.yaml # Agent interface config
└── references/
├── solid-checklist.md # SOLID smell prompts
├── security-checklist.md # Security & reliability
├── code-quality-checklist.md # Error, perf, boundaries
└── removal-plan.md # Deletion planning template
```
## References
Each checklist provides detailed prompts and anti-patterns:
- **solid-checklist.md** - SOLID violations + common code smells
- **security-checklist.md** - OWASP risks, race conditions, crypto, supply chain
- **code-quality-checklist.md** - Error handling, caching, N+1, null safety
- **removal-plan.md** - Safe vs deferred deletion with rollback plans
## License
MIT