Refactor high-complexity React components in Dify frontend. Use when `pnpm analyze-component...
code-review
1
0
# Install this skill:
npx skills add DonTizi/CodeGeass --skill "code-review"
Install specific skill from multi-skill repository
# Description
Automated code review with focus on security, performance, and maintainability. Use when reviewing code changes, PRs, or performing scheduled audits.
# SKILL.md
name: code-review
description: Automated code review with focus on security, performance, and maintainability. Use when reviewing code changes, PRs, or performing scheduled audits.
context: fork
agent: Explore
allowed-tools: Read, Grep, Glob, Bash(git diff ), Bash(git log ), Bash(git status)
disable-model-invocation: true
Automated Code Review
You are performing an automated code review for the project at $ARGUMENTS.
Focus Areas
- Security: Check for vulnerabilities, injection risks, exposed secrets
- Performance: Identify inefficient code, N+1 queries, memory leaks
- Maintainability: Code clarity, complexity, proper abstractions
- Best Practices: Language idioms, design patterns, testing
Dynamic Context
- Recent changes: !
git diff HEAD~5 --stat 2>/dev/null || echo "No recent changes" - Current branch: !
git branch --show-current 2>/dev/null || echo "unknown" - Uncommitted changes: !
git status --short 2>/dev/null || echo "Not a git repo"
Instructions
- Gather Context
- Check
git statusfor current state - Review
git difffor recent changes -
Identify the most modified files
-
Analyze Code
- Focus on files with recent changes
- Check for security issues (hardcoded secrets, SQL injection, XSS)
- Look for performance problems
-
Evaluate code organization and readability
-
Provide Feedback
- Be specific with file paths and line numbers
- Explain why something is an issue
- Suggest concrete fixes
- Rate severity: low | medium | high | critical
Output Format
Return a JSON report:
{
"summary": "Brief overview of code health",
"files_reviewed": ["list of files"],
"issues": [
{
"file": "path/to/file.py",
"line": 42,
"severity": "high",
"category": "security",
"description": "SQL query uses string concatenation",
"suggestion": "Use parameterized queries instead"
}
],
"recommendations": [
"General improvement suggestions"
],
"metrics": {
"total_issues": 5,
"critical": 0,
"high": 1,
"medium": 2,
"low": 2
}
}
For detailed report template, see templates/report.md.
# Related Skills
Trigger when the user requests a review of frontend files (e.g., `.tsx`, `.ts`, `.js`). Support...
Generate Vitest + React Testing Library tests for Dify frontend components, hooks, and...
Guide for implementing oRPC contract-first API patterns in Dify frontend. Triggers when creating...
# Supported AI Coding Agents
This skill is compatible with the SKILL.md standard and works with all major AI coding agents:
Amp
Antigravity
Claude Code
Clawdbot
Codex
Cursor
Droid
Gemini CLI
GitHub Copilot
Goose
Kilo Code
Kiro CLI
OpenCode
Roo Code
Trae
Windsurf
Learn more about the SKILL.md standard and how to use these skills with your preferred AI coding agent.