Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

asiaostrich/review

Name: review
Author: asiaostrich

skills/code-review-assistant/SKILL.md

npx skillsauth add asiaostrich/universal-dev-standards review

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Code Review Assistant | 程式碼審查助手

Perform systematic code review using standardized checklists and comment prefixes.

執行系統性的程式碼審查，使用標準化的檢查清單和評論前綴。

Workflow | 工作流程

Identify changes - Get diff of files to review via git diff or git show
Apply checklist - Check each review category systematically
Generate report - Output findings with standard comment prefixes
Summarize - Provide overall assessment and recommended actions

Review Categories | 審查類別

Functionality - Does it work correctly? | 功能是否正確？
Design - Is the architecture appropriate? | 架構是否合適？
Quality - Is the code clean and maintainable? | 程式碼是否乾淨可維護？
Readability - Is it easy to understand? | 是否容易理解？
Tests - Is there adequate test coverage? | 測試覆蓋是否足夠？
Security - Are there any vulnerabilities? | 是否有安全漏洞？
Performance - Is it efficient? | 是否有效率？
Error Handling - Are errors handled properly? | 錯誤處理是否妥當？

Comment Prefixes | 評論前綴

| Prefix | Meaning | Action | 動作 | |--------|---------|--------|------| | BLOCKING | Must fix before merge | Required | 必須修復 | | IMPORTANT | Should fix | Recommended | 建議修復 | | SUGGESTION | Nice-to-have | Optional | 可選改善 | | QUESTION | Need clarification | Discuss | 需要討論 | | NOTE | Informational | FYI | 僅供參考 |

Usage | 使用方式

/review - Review all changes in current branch
/review src/auth.js - Review specific file
/review feature/login - Review specific branch

Next Steps Guidance | 下一步引導

After /review completes, the AI assistant should suggest:

程式碼審查完成。建議下一步 / Code review complete. Suggested next steps:

有 ❗ BLOCKING 項目 → 修復後重新執行 /review — Fix issues then re-run /review

全部通過 → 執行 /checkin 品質關卡 ⭐ Recommended / 推薦 — All passed → Run /checkin quality gates

僅有 💡 SUGGESTION → 執行 /commit 提交變更 — Only suggestions → Run /commit

審查中發現規範不實用或缺失 → 執行 /audit --report 回報 — Found impractical or missing standards → Run /audit --report

Reference | 參考

Detailed guide: guide.md
Core standard: code-review-checklist.md

AI Agent Behavior | AI 代理行為

完整的 AI 行為定義請參閱對應的命令文件：/review

For complete AI agent behavior definition, see the corresponding command file: /review

asiaostrich/review

skills/code-review-assistant/SKILL.md

[UDS] Perform systematic code review with checklist

64 stars

development

Updated May 8, 2026

$ install --global

skillsauth

npx skillsauth add asiaostrich/universal-dev-standards review

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 8, 2026, 3:36 AM131.1s4 files scanned

SKILL.md

name:: review
scope:: universal
description:: [UDS] Perform systematic code review with checklist
allowed-tools:: Read, Grep, Glob, Bash(git diff:*), Bash(git log:*), Bash(git show:*)
argument-hint:: [file path or branch | 檔案路徑或分支名稱]
disable-model-invocation:: true

Code Review Assistant | 程式碼審查助手

Perform systematic code review using standardized checklists and comment prefixes.

執行系統性的程式碼審查，使用標準化的檢查清單和評論前綴。

Workflow | 工作流程

Identify changes - Get diff of files to review via git diff or git show
Apply checklist - Check each review category systematically
Generate report - Output findings with standard comment prefixes
Summarize - Provide overall assessment and recommended actions

Review Categories | 審查類別

Functionality - Does it work correctly? | 功能是否正確？
Design - Is the architecture appropriate? | 架構是否合適？
Quality - Is the code clean and maintainable? | 程式碼是否乾淨可維護？
Readability - Is it easy to understand? | 是否容易理解？
Tests - Is there adequate test coverage? | 測試覆蓋是否足夠？
Security - Are there any vulnerabilities? | 是否有安全漏洞？
Performance - Is it efficient? | 是否有效率？
Error Handling - Are errors handled properly? | 錯誤處理是否妥當？

Comment Prefixes | 評論前綴

Usage | 使用方式

/review - Review all changes in current branch
/review src/auth.js - Review specific file
/review feature/login - Review specific branch

Next Steps Guidance | 下一步引導

After /review completes, the AI assistant should suggest:

程式碼審查完成。建議下一步 / Code review complete. Suggested next steps:

有 ❗ BLOCKING 項目 → 修復後重新執行 /review — Fix issues then re-run /review

全部通過 → 執行 /checkin 品質關卡 ⭐ Recommended / 推薦 — All passed → Run /checkin quality gates

僅有 💡 SUGGESTION → 執行 /commit 提交變更 — Only suggestions → Run /commit

審查中發現規範不實用或缺失 → 執行 /audit --report 回報 — Found impractical or missing standards → Run /audit --report

Reference | 參考

Detailed guide: guide.md
Core standard: code-review-checklist.md

AI Agent Behavior | AI 代理行為

完整的 AI 行為定義請參閱對應的命令文件：/review

For complete AI agent behavior definition, see the corresponding command file: /review

Related Skills

asiaostrich/sweep

development

VerifiedTrustedCommunity

[UDS] 扫描代码库的调试残留与代码质量问题；可自动修正安全模式。 Use when: before committing, during PR review, or periodic codebase cleanup. Keywords: sweep, debug cleanup, console.log, debugger, TODO, ts-any, code quality, 扫描, 清理.

69SKILL.mdUpdated Jun 4, 2026

asiaostrich/spec-derive

tools

VerifiedTrustedCommunity

[UDS] 从规格衍生 BDD 场景、TDD 骨架或 ATDD 表格

69SKILL.mdUpdated Jun 4, 2026

asiaostrich/spec-derive

asiaostrich/skill-builder

development

VerifiedTrustedCommunity

[UDS] 识别重复流程并以正确的开发深度构建 Skill

69SKILL.mdUpdated Jun 4, 2026

asiaostrich/skill-builder

asiaostrich/push

tools

VerifiedTrustedCommunity

[UDS] AI 辅助 git push 安全层：质量门禁 + 协作护栏。 Use when: pushing commits, force pushing, pushing to protected branches, pushing feature branches. Keywords: git push, force push, protected branch, quality gate, push receipt, PR automation, 推送, 保护分支, 质量门禁.

69SKILL.mdUpdated Jun 4, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/asiaostrich/universal-dev-standards.git

# Copy into Claude Code skills folder (global)
cp -r universal-dev-standards/skills/code-review-assistant ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

asiaostrich/universal-dev-standards

64 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT