cubetiq/review
workflows/workflows/agent-environment-setup/platforms/claude/generated-skills/review/SKILL.md
Audit a change set for correctness, regression risk, missing tests, and security issues.
$ install --global
skillsauthnpx skillsauth add cubetiq/cubis-foundry reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 4, 2026, 9:59 AM10.6s1 file scanned
SKILL.md
- name:
- review
- description:
- Audit a change set for correctness, regression risk, missing tests, and security issues.
- license:
- MIT
- author:
- cubis-foundry
- route-kind:
- workflow
- route-id:
- review
- platform:
- Claude Code
- command:
- /review
- compatibility:
- Claude Code
Review Workflow
What this workflow does
Performs a findings-first review of a change set, concentrating on defects, regressions, and missing verification.
When to use
Use this on PR review, before handoff, or whenever the user asks for a code review rather than implementation.
Agent chain
reviewer
Step details
- Inspect the diff and affected files.
- Identify correctness, coverage, and security concerns.
- Return findings ordered by severity with concrete references.
Skill routing
code-reviewis mandatory.- Add
owasp-security-reviewwhen the change touches auth, secrets, input handling, or external boundaries.
Context notes
Provide the diff, branch, or file list under review and any known concerns.
Verification
The result should cite code evidence and avoid speculative or preference-only feedback.
Output contract
REVIEW_WORKFLOW_RESULT:
findings:
- severity: high | medium | low
file: <path>
issue: <problem>
residual_risks:
- <risk>
Follow-up items
Typical next step: /implement
Related Skills
cubetiq/deep-research
tools
VerifiedTrustedCommunity
Use when investigating latest vendor behavior, comparing tools or platforms, verifying claims beyond the repo, or gathering external evidence before implementation.
1SKILL.mdUpdated Apr 4, 2026
cubetiq/database-design
documentation
VerifiedTrustedCommunity
Use when designing database schemas, normalization strategies, indexing plans, query optimization, and migration workflows for relational, document, or hybrid data stores.
1SKILL.mdUpdated Apr 4, 2026
cubetiq/csharp-best-practices
development
VerifiedTrustedCommunity
Use when writing, reviewing, or refactoring modern C#/.NET code, including minimal APIs, records, async streams, pattern matching, DI lifetimes, and memory-efficient performance tuning.
1SKILL.mdUpdated Apr 4, 2026
cubetiq/code-review
development
VerifiedTrustedCommunity
Use when conducting code reviews, building review checklists, calibrating review depth, providing structured feedback, or establishing team review practices. Covers review methodology, feedback patterns, automated checks, and batch review strategies.
1SKILL.mdUpdated Apr 4, 2026