ryan-mahoney/pr-review
skills/pr-review/SKILL.md
This skill should be used when the user asks to "review this PR", "review PR", "review the pull request", "code review PR", "give PR feedback", or "check this PR". Reviews a PR's code changes, submits review comments, and commits any fixes.
development
Updated Apr 28, 2026
$ install --global
skillsauthnpx skillsauth add ryan-mahoney/ryan-llm-skills pr-reviewInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 28, 2026, 8:42 AM170.0s1 file scanned
SKILL.md
- name:
- pr-review
- description:
- This skill should be used when the user asks to "review this PR", "review PR", "review the pull request", "code review PR", "give PR feedback", or "check this PR". Reviews a PR's code changes, submits review comments, and commits any fixes.
- disable-model-invocation:
- true
- argument-hint:
- [pr-number (optional)]
PR Review
If a PR number is provided ($ARGUMENTS), use that PR. Otherwise, use the PR associated with the current branch.
- Use
gh pr viewandgh pr diffto read the pull request description and code changes - Review the changes for correctness, clarity, and adherence to
docs/engineering-standards.md - Submit review comments using
gh apiorgh pr reviewfor specific lines or general feedback - If any changes are needed and can be made directly, make the fixes, then conventional commit and push to the branch
Do not add Co-Authored-By trailers, "Generated with" footers, or any AI model attribution.
Related Skills
ryan-mahoney/spec-write
documentation
VerifiedTrustedCommunity
This skill should be used when the user asks to "write a spec", "create a spec", "spec this out", "plan this feature", or "write an implementation plan" for a feature or change. Creates a structured implementation spec in .specs/<slug>/spec.md and mirrors it to GitHub only when the current repository is hosted on GitHub.
SKILL.mdUpdated Jun 12, 2026
ryan-mahoney/spec-run
data-ai
VerifiedTrustedCommunity
This skill should be used when the user asks to "execute the spec", "run the plan", "implement the spec", "implement the issue", "run all steps", or "run spec". Implements all steps from .specs/<slug>/spec.md, using a subagent per step when the harness supports subagents.
SKILL.mdUpdated Jun 12, 2026
ryan-mahoney/spec-review
testing
VerifiedTrustedCommunity
This skill should be used when the user asks to "review a spec", "review an issue", "check the plan", "review the implementation plan", "find gaps in the spec", or "review spec". Reviews .specs/<slug>/spec.md for gaps and viability, edits it when needed, and mirrors changes to GitHub only when a GitHub mirror exists.
SKILL.mdUpdated Jun 12, 2026
ryan-mahoney/spec-remediate
development
VerifiedTrustedCommunity
This skill should be used when the user asks to "remediate the audit findings", "fix the spec violations", "close the audit findings", "fix conformance violations", or "spec remediate". Reads a spec-audit report, drives one smart subagent per VIOLATION to converge the code back to the frozen spec, and re-audits until clean. Edits production code; never rewrites the spec.
SKILL.mdUpdated Jun 12, 2026