imvanzen/code-review
.cursor/skills/code-review/SKILL.md
Perform code review. Quality analysis. Acceptance criteria verification. Best practices review.
development
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add imvanzen/strava-kudosik code-reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 24, 2026, 8:58 PM1.8s1 file scanned
SKILL.md
- name:
- code-review
- description:
- Perform code review. Quality analysis. Acceptance criteria verification. Best practices review.
Code review
This skill helps you verify that the implemented code follows all best practices and quality standards.
Code Review Process
Use the checklist below and track your progress:
Analysis progress:
- [ ] Step 1: Understand the task description
- [ ] Step 2: Understand the plan to implement task
- [ ] Step 3: Analyse the implemented solution and compare that to task description and implementation plan
- [ ] Step 4: Verify that solution has implemented all necessary tests
- [ ] Step 5: Run the available tests
- [ ] Step 6: Verify that solution follows the best practices
- [ ] Step 7: Run static code analysis tools and formatting tools
- [ ] Step 8: Validate the solution is secure
- [ ] Step 9: Validate the solution is scalable
Step 1: Understand the task description
Look for *.research.md file to fully understand the business goal of the task.
In case of task being connected to task management tool make sure to use that tool to access even more context.
In case of missing research file, follow the conversation to understand the goal.
Step 2: Understand the plan to implement task
Look for *.plan.md file to understand the planned solution implementation.
In case of missing it follow the conversation to understand the goal.
Step 3: Analyse the implemented solution and compare that to task description and implementation plan
Based on implementation plan and task description, compare it to actually implementation.
Focus not only on files that were actually changed or added, but also those that claim to be already implemented.
Step 4: Verify that solution has implemented all necessary tests
Make sure that all critical paths of the solutions are fully tested by combination of different tests - e2e, unit, integration.
Step 5: Run the available tests
Make sure that all of the tests are working properly.
Step 6: Verify that solution follows the best practices
Check the implemented solution. Make sure it follow the best development practices.
Take into account project standards and a practices like SOLID, SRP, DDD, DRY, KISS, Atomic Design.
Make sure that solution is not over engineered. Keep the cognitive complexity on a lower side.
Step 7: Run static code analysis tools and formatting tools
Make sure to run linters, static code analysis tools and formatting tools.
Step 8: Validate the solution is secure
Focus on security. Check for potential OWASP TOP10 issues. Check for potential critical security issues that allows other users to take control over the system.
Step 9: Validate the solution is scalable
Analyse if the implemented solution is scalable. Focus on areas like being able to scale it horizontaly, not having a stateful components, not having code with high computational complexity.
Connected Skills
implementation-gap-analysistechnical-context-discovery- for understanding project conventions and standards to review against
Related Skills
imvanzen/technical-context-discovery
development
VerifiedTrustedCommunity
Discover and establish technical context before implementing any feature. Prioritize project instructions, existing codebase patterns, and external documentation in that order. Use for any task requiring understanding of project conventions, coding standards, architecture patterns, and established practices before writing code.
SKILL.mdUpdated Apr 16, 2026
imvanzen/task-analysis
development
VerifiedTrustedCommunity
Analyse task description, performs gap analysis, expand the context for the task, analyse the current state of the system in the context of the task, helps build PRD, creates a context for the task, gathers information about the task from different sources.
SKILL.mdUpdated Apr 16, 2026
imvanzen/maintenance
testing
VerifiedTrustedCommunity
Resolves dependency audit (security) issues and updates outdated packages with prioritization by breaking-change risk and security/value. Prefer security fixes and non-breaking updates; defer or flag major upgrades. Use when the user asks to fix audit, update packages, resolve vulnerabilities, or run maintenance.
SKILL.mdUpdated Apr 16, 2026
imvanzen/implementation-gap-analysis
testing
VerifiedTrustedCommunity
Implementation gap analysis. Verify what has to be implemented. Verify what was implemented. Compare plan to current state.
SKILL.mdUpdated Apr 16, 2026