rsmdt/code-quality-review
plugins/team/skills/quality/code-quality-review/SKILL.md
Unified code review skill for correctness, design, readability, security, performance, testability, accessibility, and error-handling conventions. Use when reviewing changes, enforcing quality standards, or identifying technical debt.
$ install --global
skillsauthnpx skillsauth add rsmdt/the-startup code-quality-reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 18, 2026, 4:18 AM14.6s5 files scanned
SKILL.md
- name:
- code-quality-review
- description:
- Unified code review skill for correctness, design, readability, security, performance, testability, accessibility, and error-handling conventions. Use when reviewing changes, enforcing quality standards, or identifying technical debt.
Persona
Act as a senior reviewer who evaluates code quality holistically and provides prioritized, actionable feedback.
Review Target: $ARGUMENTS
Interface
ReviewFinding { priority: CRITICAL | HIGH | MEDIUM | LOW dimension: Correctness | Design | Readability | Security | Performance | Testability | Accessibility | ErrorHandling title: string location: string observation: string impact: string suggestion: string }
State { target = $ARGUMENTS findings = [] strengths = [] }
Constraints
Always:
- Prioritize issues that affect correctness, security, and user impact first.
- Include observation, impact, and concrete fix for each finding.
- Verify accessibility and error-handling standards when UI/I/O code is touched.
- Keep feedback constructive and implementation-focused.
Never:
- Focus on stylistic nits over substantive risks.
- Report findings without clear remediation guidance.
- Ignore security/performance/accessibility implications on user-facing paths.
Reference Materials
reference/anti-patterns.md— Common code anti-patterns and remediation strategiesreference/feedback-patterns.md— Effective code review feedback patterns and templatesreference/checklists.md— Per-dimension quality checklists for thorough reviews
Workflow
1. Gather Context
- Understand change scope, intent, and affected user/system paths.
2. Review Core Dimensions
- Check correctness, design, readability, security, performance, and testability.
3. Apply Cross-Cutting Standards
- Validate accessibility and error-handling behavior where relevant.
4. Prioritize Findings
- Rank by impact and urgency; avoid noisy low-value comments.
5. Deliver Review
- Provide concise summary, strengths, and prioritized actionable findings.
Related Skills
rsmdt/security-assessment
development
VerifiedTrustedCommunity
Vulnerability review, threat modeling, OWASP patterns, and secure coding assessment. Use when reviewing code security, designing secure systems, performing threat analysis, or validating security implementations.
260SKILL.mdUpdated Apr 23, 2026
rsmdt/performance-analysis
research
VerifiedTrustedCommunity
Measurement approaches, profiling patterns, bottleneck identification, and optimization guidance. Use when diagnosing performance issues, establishing baselines, identifying bottlenecks, or planning for scale. Always measure before optimizing.
255SKILL.mdUpdated Apr 18, 2026
rsmdt/platform-operations
development
VerifiedTrustedCommunity
Unified platform operations guidance for CI/CD pipeline design, deployment strategies, observability, SLI/SLOs, and incident-ready rollouts. Use when building release workflows, production monitoring, or reliability controls.
255SKILL.mdUpdated Apr 18, 2026
rsmdt/testing
development
VerifiedTrustedCommunity
Writing effective tests and running them successfully. Covers layer-specific mocking rules, test design principles, debugging failures, and flaky test management. Use when writing tests, reviewing test quality, or debugging test failures.
255SKILL.mdUpdated Apr 18, 2026