Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

rarestg/skill-review

Name: skill-review
Author: rarestg

skills/skill-review/SKILL.md

npx skillsauth add rarestg/rarestg-skills skill-review

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Skill Review

Review a skill and propose improvements only if genuinely needed. Bias toward leaving things alone. A short, focused skill is better than a comprehensive one that wastes tokens.

Process

1. Read everything

Read all files in the skill directory: SKILL.md, any scripts, references, assets.

2. State the intent

In one sentence: what problem does this skill solve, and for whom? Ground the rest of the review in this.

3. First-principles check

Is this the right approach to the problem?
Is it the simplest approach that works?
Does the skill add value beyond what an AI agent already knows?
If the agent could do this without the skill, the skill may not be needed.

4. Review checklist

Frontmatter:

Is description specific about WHEN to trigger? Does it include concrete phrases a user would say?
disable-model-invocation: true if the skill has side effects (merges, deploys, sends, deletes).
allowed-tools set to restrict scope to only what's needed?
argument-hint set if the skill takes arguments?
Are context, agent, model, user-invocable, or hooks relevant and missing?

Body:

Under 500 lines? If over, move content to reference files.
Does every paragraph justify its token cost? Cut anything the agent already knows.
Are instructions concrete and actionable, not vague?
If files are referenced, is it clear when to load them?

Progressive disclosure:

Is SKILL.md doing too much? Should content move to references/?
Would a bundled script be more reliable than prose instructions? (Yes if the agent would regenerate the same code every invocation.)

Scripts (if present):

Do they actually run? Test them.
Are they necessary, or would instructions suffice?

Bloat check:

Is anything here that an AI agent already knows? Remove it.
Are there redundant explanations? Cut them.
Could the skill be shorter without losing effectiveness?
If the skill is fine as-is, say so. Do not invent improvements.

5. Ask clarifying questions

Before proposing any changes, ask the user about anything ambiguous: intent, scope, preferences, edge cases. Do not assume.

6. Present findings

Summarize:

The skill's purpose (one sentence)
What's working well
Specific issues found (if any)
Proposed changes with rationale for each

If no changes are needed, say "No changes recommended" and stop. Do not manufacture improvements.

7. Apply changes (only with approval)

Only after the user explicitly approves:

Make the changes
Stage the modified files
Commit with a clear message
Push

Never commit or push without explicit user approval.

rarestg/skill-review

skills/skill-review/SKILL.md

Review an agent skill for quality, completeness, and correctness. Evaluates purpose, approach, implementation, frontmatter, progressive disclosure, and whether scripts or references are needed. Use after creating or modifying a skill.

testing

Updated Apr 12, 2026

$ install --global

skillsauth

npx skillsauth add rarestg/rarestg-skills skill-review

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 12, 2026, 2:02 AM10.2s1 file scanned

SKILL.md

name:: skill-review
description:: Review an agent skill for quality, completeness, and correctness. Evaluates purpose, approach, implementation, frontmatter, progressive disclosure, and whether scripts or references are needed. Use after creating or modifying a skill.
disable-model-invocation:: true
allowed-tools:: Read, Glob, Grep
argument-hint:: [path/to/skill]

Skill Review

Review a skill and propose improvements only if genuinely needed. Bias toward leaving things alone. A short, focused skill is better than a comprehensive one that wastes tokens.

Process

1. Read everything

Read all files in the skill directory: SKILL.md, any scripts, references, assets.

2. State the intent

In one sentence: what problem does this skill solve, and for whom? Ground the rest of the review in this.

3. First-principles check

Is this the right approach to the problem?
Is it the simplest approach that works?
Does the skill add value beyond what an AI agent already knows?
If the agent could do this without the skill, the skill may not be needed.

4. Review checklist

Frontmatter:

Is description specific about WHEN to trigger? Does it include concrete phrases a user would say?
disable-model-invocation: true if the skill has side effects (merges, deploys, sends, deletes).
allowed-tools set to restrict scope to only what's needed?
argument-hint set if the skill takes arguments?
Are context, agent, model, user-invocable, or hooks relevant and missing?

Body:

Under 500 lines? If over, move content to reference files.
Does every paragraph justify its token cost? Cut anything the agent already knows.
Are instructions concrete and actionable, not vague?
If files are referenced, is it clear when to load them?

Progressive disclosure:

Is SKILL.md doing too much? Should content move to references/?
Would a bundled script be more reliable than prose instructions? (Yes if the agent would regenerate the same code every invocation.)

Scripts (if present):

Do they actually run? Test them.
Are they necessary, or would instructions suffice?

Bloat check:

Is anything here that an AI agent already knows? Remove it.
Are there redundant explanations? Cut them.
Could the skill be shorter without losing effectiveness?
If the skill is fine as-is, say so. Do not invent improvements.

5. Ask clarifying questions

Before proposing any changes, ask the user about anything ambiguous: intent, scope, preferences, edge cases. Do not assume.

6. Present findings

Summarize:

The skill's purpose (one sentence)
What's working well
Specific issues found (if any)
Proposed changes with rationale for each

If no changes are needed, say "No changes recommended" and stop. Do not manufacture improvements.

7. Apply changes (only with approval)

Only after the user explicitly approves:

Make the changes
Stage the modified files
Commit with a clear message
Push

Never commit or push without explicit user approval.

Related Skills

rarestg/stacked-diffs

tools

VerifiedTrustedCommunity

Break large code changes into small, stacked pull requests using vanilla git and the gh CLI. Auto-trigger when implementing a feature or change that spans multiple logical steps, touches several files, or will exceed ~200 changed lines. Also trigger on "stack PRs", "break this into smaller PRs", "stacked diffs", or "create a PR stack". Do NOT trigger for single-file fixes, small bug fixes, or changes under ~200 lines that are a single logical unit.

1SKILL.mdUpdated Apr 12, 2026

rarestg/stacked-diffs

rarestg/github-review-workflow

development

VerifiedTrustedCommunity

Export a PR's clean inline review comments, CodeRabbit outside-diff comments, and CodeRabbit nitpicks into local files, then triage review feedback through a stack-aware orchestrator workflow with durable reply drafts for follow-up PRs. Use when given a GitHub pull request URL and asked to work through review comments without relying on noisy raw API blobs.

1SKILL.mdUpdated Apr 12, 2026

rarestg/github-review-workflow

rarestg/graphify-architecture-review

development

VerifiedTrustedCommunity

Run reusable Graphify-led architecture analysis for codebases using semantic graphs, optional subagent extraction, graph synthesis, source-search validation, graph-shape review, and follow-up refactor planning. Use when asked to analyze repo architecture, god nodes, surprising edges, topology, module boundaries, or graph-derived cleanup/refactor opportunities.

SKILL.mdUpdated May 2, 2026

rarestg/graphify-architecture-review

rarestg/delegated-delivery

testing

VerifiedTrustedCommunity

Run a meaningful coding ticket through a delegated delivery workflow: tighten the ticket, assign one ticket owner, delegate implementation, get an independent review, scan for high-value simplification, validate the result, and return a compact outcome packet. Use when the user wants structured agent execution with clear scope, ownership, and review rather than a single-pass implementation. Triggers on: "delegate this ticket", "use a sub-PM", "run this through worker and reviewer", "own this ticket end to end", "send this for independent review", or "close this ticket out with review". Skip trivial fixes and tasks that are still too vague to delegate.

SKILL.mdUpdated Apr 18, 2026

rarestg/delegated-delivery

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/rarestg/rarestg-skills.git

# Copy into Claude Code skills folder (global)
cp -r rarestg-skills/skills/skill-review ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

rarestg/rarestg-skills

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT