gavinmcfall/review-responder
config/skills/core/review-responder/SKILL.md
Process and respond to code review feedback. Use after receiving PR comments from GitHub, feedback from disconnected-code-review skill, or any code review input. Walks through changes one-by-one with user approval.
$ install --global
skillsauthnpx skillsauth add gavinmcfall/agentic-config review-responderInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 5, 2026, 2:01 AM4.6s1 file scanned
SKILL.md
- name:
- review-responder
- description:
- Process and respond to code review feedback. Use after receiving PR comments from GitHub, feedback from disconnected-code-review skill, or any code review input. Walks through changes one-by-one with user approval.
Review Responder
You have received code review feedback. This skill guides you through processing that feedback systematically.
Workflow Overview
- Summarize — Present the review and proposed changes to the user
- Walk Through — Apply or skip each change with user approval
- Respond — Reply to GitHub comments if applicable
Step 1: Summarize the Review
Present a clear summary to the user:
## Review Summary
**Source**: [GitHub PR / disconnected-code-review skill / other]
**Overall Assessment**: [APPROVE / REQUEST CHANGES / NEEDS DISCUSSION]
### Changes Requested
| # | File | Issue | Severity |
|---|------|-------|----------|
| 1 | `src/auth.ts:47` | SQL injection vulnerability | 🔴 Blocking |
| 2 | `src/utils.ts:12` | Use existing helper | 🟡 Consider |
| 3 | `src/api.ts:89` | Add null check | 🟡 Consider |
### Summary
[1-2 sentences explaining the overall feedback]
Ask the user: "Ready to walk through these changes? I'll present each one for you to apply or skip."
Step 2: Walk Through Changes
For each item, present:
### Change 1 of N: [Brief title]
**File**: `path/to/file.ts:line`
**Severity**: [🔴 Blocking / 🟡 Consider / 🟢 Nit]
**Issue**:
[Explain what the reviewer flagged]
**Proposed Fix**:
[Show the specific code change]
---
Apply this change?
Use AskUserQuestion with options:
- Apply — Make the change
- Skip — Move to next item
- Discuss — Need more context before deciding
On "Apply"
- Make the change using Edit tool
- Confirm: "Applied. Moving to next item..."
On "Skip"
- Note skipped for later reference
- Continue: "Skipped. Moving to next item..."
On "Discuss"
- Provide additional context about the issue
- Re-present the options
Step 3: Respond to GitHub (If Applicable)
Only if the review came from GitHub PR comments.
After all changes are processed, summarize actions taken:
## Actions Taken
| # | Issue | Action | Notes |
|---|-------|--------|-------|
| 1 | SQL injection | Applied | Used parameterized query |
| 2 | Use existing helper | Skipped | Intentional—helper doesn't fit this case |
| 3 | Add null check | Applied | — |
Ask the user: "Want me to respond to the GitHub comments?"
If Yes, Respond to Each Comment
For each GitHub comment, post a reply:
Applied changes:
Done — [brief description of what was changed]
Skipped changes:
Skipped — [brief reason why, e.g., "intentional design choice because..."]
Use gh pr comment or the appropriate GitHub API to post replies.
Detecting Review Source
Determine where the review came from:
| Source | Indicators | GitHub Response? |
|--------|------------|------------------|
| GitHub PR | URL mentioned, gh pr commands used, PR number referenced | Yes |
| code-review skill | Skill output format, no PR context | No |
| User-provided | Pasted feedback, verbal description | Ask user |
If unclear, ask: "Did this review come from a GitHub PR? If so, I can respond to comments directly."
Handling Blocking Issues
For blocking issues (🔴):
- Present these first
- Emphasize they should be addressed before merge
- If user skips, confirm: "This was marked as blocking. Are you sure you want to skip?"
End State
After walking through all items:
## Complete
**Applied**: N changes
**Skipped**: M changes
[If GitHub]: Comments have been posted to the PR.
[If not pushed]: Don't forget to commit and push these changes.
Systematic review response. Apply what makes sense, skip what doesn't, explain decisions.
Related Skills
gavinmcfall/inner-ally
development
VerifiedTrustedCommunity
Deeply personal mentor and guide. Use when struggling, wanting to quit, feeling overwhelmed, or doubting yourself. Empathy-first. Build this skill around YOUR psychology.
3SKILL.mdUpdated Apr 5, 2026
gavinmcfall/n8n-workflow-builder
tools
VerifiedTrustedCommunity
Build automation workflows with n8n for game dev tasks. Use when automating repetitive processes, setting up notifications, scheduling backups, or connecting services. Reduces manual overhead that ADHD brains find hardest to maintain.
3SKILL.mdUpdated Apr 5, 2026
gavinmcfall/k8s-operator
testing
VerifiedTrustedCommunity
Query and diagnose the home Kubernetes cluster. Use when checking cluster health, troubleshooting pods/services/routes, inspecting storage, or understanding what's deployed. Covers Talos node management, Ceph storage, Cilium networking.
3SKILL.mdUpdated Apr 5, 2026
gavinmcfall/home-ops-deployer
devops
VerifiedTrustedCommunity
Deploy and manage applications in the home-ops Kubernetes cluster via GitOps. Use when deploying new apps, modifying existing ones, adding routing, managing secrets, or working with the home-ops repo structure.
3SKILL.mdUpdated Apr 5, 2026