euxx/review-toolkit
skills/review-toolkit/SKILL.md
Orchestrates a comprehensive code review using up to 6 specialist skills. Dispatches code-review, code-simplifier, comment-analyzer, silent-failure-hunter, type-design-analyzer, and test-analyzer based on the scope of changes. Use for thorough end-to-end review of code changes.
tools
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add euxx/claude-skills-for-copilot review-toolkitInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 2:38 PM5.4s1 file scanned
SKILL.md
- name:
- review-toolkit
- description:
- Orchestrates a comprehensive code review using up to 6 specialist skills. Dispatches code-review, code-simplifier, comment-analyzer, silent-failure-hunter, type-design-analyzer, and test-analyzer based on the scope of changes. Use for thorough end-to-end review of code changes.
- argument-hint:
- [file, directory, or git diff to review]
- user-invocable:
- true
Review Toolkit
Comprehensive code review orchestrator. Dispatches specialist review agents based on the scope of changes and aggregates all findings in a unified report.
Specialist Skills
| Skill | Purpose | | ------------------------- | --------------------------------------------------------------- | | code-review | Bugs, security issues, correctness, conventions-file violations | | code-simplifier | Unnecessary complexity, duplication, readability | | comment-analyzer | Comment accuracy, comment rot, misleading documentation | | silent-failure-hunter | Silent errors, inadequate user feedback, catch block quality | | type-design-analyzer | Type encapsulation, invariant expression and enforcement | | test-analyzer | Behavioral coverage gaps, test quality, anti-pattern detection |
Dispatch Rules
Always run:
- code-review — applies to any code change
Run when applicable:
- test-analyzer — test files modified or new behavior added
- silent-failure-hunter — error handling code modified (
try/catch, error callbacks, fallbacks) - type-design-analyzer — new types, interfaces, or data models added or significantly changed
- comment-analyzer — documentation comments or inline comments added/modified
Run after correctness is confirmed (regardless of other findings):
- code-simplifier — once critical bugs and coverage gaps are resolved
Process
- Identify the scope of changes (files changed, types of changes)
- Determine which specialist skills to dispatch based on the rules above
- Run each selected skill as a sub-agent against the relevant scope
- Collect all findings
- Aggregate into a unified report
Output Format
## Toolkit Summary
Specialists dispatched: [list]
Overall assessment: [PASS / NEEDS WORK / CRITICAL ISSUES]
## Critical Issues
[Aggregated CRITICAL findings from all specialists, with source skill noted]
## Important Issues
[Aggregated HIGH/IMPORTANT findings]
## Suggestions
[Aggregated MEDIUM/lower priority findings]
## Positive Observations
[Notable good practices found across all reviews]
Severity order: Critical → Important → Suggestions → Positive Observations.
Related Skills
euxx/type-design-analyzer
testing
VerifiedTrustedCommunity
Analyzes type design quality by rating encapsulation, invariant expression, usefulness, and enforcement. Helps design types that make invalid states unrepresentable. Use when reviewing new types or data models.
SKILL.mdUpdated Apr 16, 2026
euxx/test-analyzer
testing
VerifiedTrustedCommunity
Reviews test coverage quality from a behavioral perspective, identifying critical gaps and test quality issues. Does not check line coverage — checks meaningful scenario coverage. Use after adding or modifying tests.
SKILL.mdUpdated Apr 16, 2026
euxx/silent-failure-hunter
development
VerifiedTrustedCommunity
Audits error handling for silent failures, inadequate user feedback, and unjustified fallback behavior. Finds issues in catch blocks, fallbacks, and error paths. Use after modifying error handling code.
SKILL.mdUpdated Apr 16, 2026
euxx/security-threat-model
development
VerifiedTrustedCommunity
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse paths, or perform AppSec threat modeling. Do not trigger for general architecture summaries, code review, or non-security design work.
SKILL.mdUpdated Apr 16, 2026