nearai/review-readiness
skills/review-readiness/SKILL.md
PR readiness dashboard — tracks which reviews have been completed per branch and gates merge decisions. Shows code review, tests, security, QA, and linting status.
$ install --global
skillsauthnpx skillsauth add nearai/ironclaw review-readinessInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 24, 2026, 8:47 PM1.8s1 file scanned
SKILL.md
- name:
- review-readiness
- version:
- 0.1.0
- description:
- PR readiness dashboard — tracks which reviews have been completed per branch and gates merge decisions. Shows code review, tests, security, QA, and linting status.
- max_context_tokens:
- 1200
Review Readiness Dashboard
Track process completeness per PR branch. Gate merges on evidence, not gut feel.
How it works
For each active PR branch, maintain a readiness state in projects/<owner>-<repo>/readiness/<branch-slug>.md:
---
type: review-readiness
repo: owner/repo
branch: feature-branch-name
pr_number: 123
updated_at: YYYY-MM-DD
---
# Review Readiness — PR #123
| Check | Status | Last Run | Score | Notes |
|-------|--------|----------|-------|-------|
| Code review | completed | 2026-03-28 | — | Approved by @alice |
| Tests | passing | 2026-03-28 | — | CI green, 3 new tests |
| Security review | completed | 2026-03-28 | 85/100 | 1 P3 finding (accepted) |
| QA review | pending | — | — | Not yet run |
| Linting | passing | 2026-03-28 | — | Zero warnings |
## Verdict: NOT READY
Missing: QA review
## Findings log
- [2026-03-28] Security: P3 — missing rate limit on new endpoint (accepted risk)
- [2026-03-28] Code review: approved, 2 nits addressed
When to use
Checking readiness: User asks "is this PR ready?" or "can I merge?"
- Read the readiness file for the branch
- If no file exists, create one with all checks as
pending - Present the dashboard
- If all checks passed: "Ready to merge."
- If checks missing: "Not ready. Missing: <list>. Run
/security-reviewand/qa-reviewto complete."
After running a review skill: When /security-review or /qa-review completes, update the readiness file with the result and score.
In the morning brief: For PRs that are "READY TO MERGE" (approved + CI green), also check review readiness. If security or QA is missing, note it: "READY TO MERGE (code + CI), but security review not run."
Automated updates
The readiness file is updated by:
- Code review: when PR gets GitHub approval or changes-requested
- Tests: from CI status (green/red/pending)
- Security review: when
/security-reviewruns on the branch - QA review: when
/qa-reviewruns on the branch - Linting: from CI or manual
cargo clippy/eslintoutput
Readiness verdict logic
- READY: All checks completed, no unresolved P1/P2 findings, CI green
- ALMOST READY: All checks completed but has accepted findings or pending CI
- NOT READY: One or more checks not yet run
- BLOCKED: P1 finding unresolved, or CI failing
Effort estimates
When presenting readiness, show dual-time estimates for remaining work:
- "Missing: QA review (~15min AI-assisted, ~2h manual)"
- "Missing: Security review (~10min AI-assisted, ~1h manual)"
This reframes the cost — completeness is cheap with AI assistance.
Related Skills
nearai/linear
development
VerifiedTrustedCommunity
Linear issue tracker API integration. Covers first-use identity bootstrap (viewer + teams cached), raw GraphQL for list/search/create/update, and the rules for handling "my issues" / "assigned to me" requests.
12,145SKILL.mdUpdated Apr 15, 2026
nearai/trader-setup
testing
VerifiedTrustedCommunity
One-time onboarding for the financial trader workflow — real-time alerts, position-aware relevance, decision journaling with outcome tracking. After successful setup this skill is excluded from selection until the marker file is deleted.
11,894SKILL.mdUpdated Apr 19, 2026
nearai/developer-setup
development
VerifiedTrustedCommunity
One-time onboarding for the developer workflow — installs github-workflow missions, creates the commitments workspace, registers per-repo projects, writes calibration memories. After successful setup this skill is excluded from selection until the marker file is deleted.
11,894SKILL.mdUpdated Apr 19, 2026
nearai/content-creator-setup
devops
VerifiedTrustedCommunity
One-time onboarding for the content creator workflow — content pipeline stages, trend expiration, cross-platform cascades, heavy idea parking. After successful setup this skill is excluded from selection until the marker file is deleted.
11,894SKILL.mdUpdated Apr 19, 2026