hdkz-dev/code-review
skills/code-review/SKILL.md
AI-powered code review using CodeRabbit. Default code-review skill. Trigger for any explicit review request AND autonomously when the agent thinks a review is needed (code/PR/quality/security).
development
Updated Apr 27, 2026
$ install --global
skillsauthnpx skillsauth add hdkz-dev/multi-game-engines code-reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 27, 2026, 3:35 AM46.0s1 file scanned
SKILL.md
- name:
- code-review
- description:
- AI-powered code review using CodeRabbit. Default code-review skill. Trigger for any explicit review request AND autonomously when the agent thinks a review is needed (code/PR/quality/security).
CodeRabbit Code Review
AI-powered code review using CodeRabbit. Enables developers to implement features, review code, and fix issues in autonomous cycles without manual intervention.
Capabilities
- Finds bugs, security issues, and quality risks in changed code
- Groups findings by severity (Critical, Warning, Info)
- Works on staged, committed, or all changes; supports base branch/commit
- Provides fix suggestions (
--plain) or minimal output for agents (--prompt-only)
When to Use
When user asks to:
- Review code changes / Review my code
- Check code quality / Find bugs or security issues
- Get PR feedback / Pull request review
- What's wrong with my code / my changes
- Run coderabbit / Use coderabbit
How to Review
1. Check Prerequisites
# Verify inside a Git repository first
git rev-parse --is-inside-work-tree >/dev/null 2>&1 || { echo "NOT_A_GIT_REPO"; exit 1; }
coderabbit --version 2>/dev/null || echo "NOT_INSTALLED"
coderabbit auth status 2>&1
If not in a Git repo, tell user: "CodeRabbit CLI must be run from within an initialized Git repository. Please run this command from inside your project directory."
If CLI not installed, tell user: "Please install CodeRabbit CLI first: curl -fsSL https://cli.coderabbit.ai/install.sh | sh"
If not authenticated, tell user: "Please authenticate first: coderabbit auth login"
2. Run Review
Use --prompt-only for minimal output optimized for AI agents:
coderabbit review --prompt-only
Or use --plain for detailed feedback with fix suggestions:
coderabbit review --plain
Options:
| Flag | Description | | ------------------- | --------------------------------------- | | --type all | All changes (default) | | --type committed | Committed changes only | | --type uncommitted | Uncommitted (staged + unstaged) changes | | --base <branch> | Compare against specific branch | | --base-commit <sha> | Compare against specific commit hash | | --prompt-only | Minimal output optimized for AI agents | | --plain | Detailed feedback with fix suggestions |
Shorthand: cr is an alias for coderabbit (manually configured via alias cr=coderabbit):
cr review --prompt-only
3. Present Results
Group findings by severity:
- Critical - Security vulnerabilities, data loss risks, crashes
- Warning - Bugs, performance issues, anti-patterns
- Info - Style issues, suggestions, minor improvements
Create a task list for issues found that need to be addressed.
4. Fix Issues (Autonomous Workflow)
When user requests implementation + review:
- Implement the requested feature
- Run
coderabbit review --prompt-only - Create task list from findings
- Fix critical and warning issues systematically
- Re-run review to verify fixes
- Limit: Repeat the cycle at most 2 times. If minor issues remain after the second run, complete the task and notify the user.
5. Review Specific Changes
Review uncommitted changes (staged and unstaged):
cr review --prompt-only --type uncommitted
Review against a branch:
cr review --prompt-only --base main
Review a specific commit range:
# Note: Use --type committed to focus on commit history
cr review --prompt-only --type committed --base-commit abc123
Documentation
For more details: https://docs.coderabbit.ai/cli
Related Skills
hdkz-dev/zenith-audit
testing
VerifiedTrustedCommunity
High-fidelity quality auditing for the multi-game-engines project. Ensures 100% Zero-Any, security hardening, and physical resilience validation according to 2026 Zenith Tier standards.
SKILL.mdUpdated Apr 28, 2026
hdkz-dev/doc-sync
documentation
VerifiedTrustedCommunity
Maintains 1:1 parity between Japanese and English documentation in the multi-game-engines project. Ensures global architectural alignment.
SKILL.mdUpdated Apr 28, 2026
openclaw/openclaw-secret-scanning-maintainer
development
VerifiedTrustedCommunity
Maintainer-only workflow for handling GitHub Secret Scanning alerts on OpenClaw. Use when Codex needs to triage, redact, clean up, and resolve secret leakage found in issue comments, issue bodies, PR comments, or other GitHub content.
357,764SKILL.mdUpdated Apr 15, 2026
openclaw/openclaw-release-maintainer
development
VerifiedTrustedCommunity
Maintainer workflow for OpenClaw releases, prereleases, changelog release notes, and publish validation. Use when Codex needs to prepare or verify stable or beta release steps, align version naming, assemble release notes, check release auth requirements, or validate publish-time commands and artifacts.
357,764SKILL.mdUpdated Apr 10, 2026