bjg4/code-review
bakeoff/fixtures/v4/code-review/code-review/SKILL.md
Helps with code review tasks for developers.
$ install --global
skillsauthnpx skillsauth add bjg4/bgskillz code-reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 12, 2026, 3:01 AM20.5s1 file scanned
SKILL.md
- name:
- code-review
- description:
- Helps with code review tasks for developers.
Code Review Skill
This skill is designed to help you with all aspects of code review. Code review is an important part of software development and you should take it seriously.
Overview
When doing code review, you should look at many different things. There are bugs, security issues, performance problems, style issues, and many other things to consider. You should be thorough and comprehensive in your review.
General Guidelines
You should always be helpful and constructive when reviewing code. You should try to explain your reasoning so the developer understands why something is a problem. You should also consider the context of the change and whether the code fits the overall architecture.
Things to Look For
You should look for bugs in the logic. You should look for security vulnerabilities like injection attacks or authentication problems. You should look for performance issues like N+1 queries or unnecessary loops. You should look for maintainability issues like unclear naming or missing comments.
Security
Security is very important. You should check for common vulnerabilities. You should recommend best practices when you see problems.
Output Format
You should format your review in a clear way. You should use headings and lists. You should prioritize the most important issues first.
Error Handling
If you cannot review the code for some reason, you should explain why.
Additional Notes
Remember that code review is a collaborative process. You should be respectful. You should suggest improvements rather than just criticizing. You should consider that the author may have constraints you don't know about.
More Guidelines
Always read the full diff before commenting. Consider edge cases. Think about test coverage. Check for breaking changes.
Related Skills
bjg4/bgskillz
development
VerifiedTrustedCommunity
Create S-tier portable skills and agents with comprehensive quality guidance. Use when creating or improving skills, designing multi-agent orchestration workflows, auditing agent quality, running evals, or learning agent-building best practices. Covers the full lifecycle from use case definition through automated evaluation, review, and iteration. Do NOT use for general coding tasks, writing documentation unrelated to agents/skills, or building applications.
1SKILL.mdUpdated Jun 12, 2026
bjg4/bgskillz
development
VerifiedTrustedCommunity
Create S-tier portable skills and agents with comprehensive quality guidance. Use when creating or improving skills, designing multi-agent orchestration workflows, auditing agent quality, running evals, or learning agent-building best practices. Covers the full lifecycle from use case definition through automated evaluation, review, and iteration. Do NOT use for general coding tasks, writing documentation unrelated to agents/skills, or building applications.
1SKILL.mdUpdated Jun 12, 2026
bjg4/bgskillz
development
VerifiedTrustedCommunity
Create S-tier portable skills and agents with comprehensive quality guidance. Use when creating or improving skills, designing multi-agent orchestration workflows, auditing agent quality, running evals, or learning agent-building best practices. Covers the full lifecycle from use case definition through automated evaluation, review, and iteration. Do NOT use for general coding tasks, writing documentation unrelated to agents/skills, or building applications.
1SKILL.mdUpdated Jun 12, 2026
bjg4/grill-me
development
VerifiedTrustedCommunity
Stress-test a plan or design through Socratic questioning until shared understanding. Use when the user says "grill me", wants to stress-test a plan, or review a design. Do NOT use for implementation or code generation.
1SKILL.mdUpdated Jun 12, 2026