code-reviewer

Analyzes code diffs and files to identify bugs, security vulnerabilities (SQL injection, XSS, insecure deserialization), code smells, N+1 queries, naming issues, and architectural concerns, then produces a structured review report with prioritized, actionable feedback. Use when reviewing pull requests, conducting code quality audits, identifying refactoring opportunities, or checking for security issues. Invoke for PR reviews, code quality checks, refactoring suggestions, review code, code quality. Complements specialized skills (security-reviewer, test-master) by providing broad-scope review across correctness, performance, maintainability, and test coverage in a single pass.

Quality

88%

Does it follow best practices?

Impact

—

No eval scenarios have been run

Securityby

Advisory

Suggest reviewing before use

Quality

Content

77%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

This is a well-structured code review skill with strong actionability and clear workflow sequencing. The inline code examples are concrete and useful, and the reference table provides good progressive disclosure structure. Minor weaknesses include some redundant content (the 'When to Use' section, knowledge acronym listing) and the inability to verify that referenced bundle files exist.

Suggestions

Remove the 'Knowledge Reference' line listing SOLID, DRY, KISS, etc. — Claude already knows these concepts and this adds no actionable value.

Consider trimming or removing the 'When to Use This Skill' section since it largely duplicates what the skill description and workflow already convey.

Dimension	Reasoning	Score
Conciseness	Generally efficient but includes some unnecessary content like the 'When to Use This Skill' bullet list (which largely restates the skill's purpose) and the 'Knowledge Reference' line listing well-known acronyms Claude already knows (SOLID, DRY, KISS, YAGNI). The inline code examples and reference table are well-justified, but there's room to tighten.	2 / 3
Actionability	Provides concrete, executable code examples for common issues (N+1 queries, magic numbers, SQL injection) with clear bad/good comparisons. The workflow steps are specific with checkpoint questions, the output template gives a concrete structure, and the constraints are explicit and actionable.	3 / 3
Workflow Clarity	The 5-step workflow is clearly sequenced with an explicit checkpoint at step 1 (summarize intent before proceeding, ask for clarification if unable). Step 5 includes early escalation of critical issues. Disagreement handling provides a feedback loop for ambiguous situations. The workflow is well-structured for a review process.	3 / 3
Progressive Disclosure	The reference table with 'Load When' conditions is a well-designed progressive disclosure mechanism pointing to 6 reference files. However, no bundle files were provided, so we cannot verify these references exist. The inline quick-reference examples are appropriate, but some content (like the full output template) could arguably live in the referenced report-template.md rather than being duplicated inline.	2 / 3
	Total	10 / 12 Passed

Description

100%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

This is an excellent skill description that hits all the marks. It provides highly specific capabilities with concrete examples, includes explicit 'Use when' and 'Invoke for' trigger clauses with natural user language, and thoughtfully distinguishes itself from complementary specialized skills. The description is comprehensive yet not overly verbose, using third-person voice throughout.

Dimension	Reasoning	Score
Specificity	Lists multiple specific concrete actions: analyzes code diffs, identifies bugs, security vulnerabilities (with examples like SQL injection, XSS, insecure deserialization), code smells, N+1 queries, naming issues, architectural concerns, and produces a structured review report with prioritized feedback.	3 / 3
Completeness	Clearly answers both 'what' (analyzes diffs/files to identify bugs, vulnerabilities, code smells, produces structured report) and 'when' (explicit 'Use when reviewing pull requests, conducting code quality audits, identifying refactoring opportunities, or checking for security issues'). Also includes an 'Invoke for' clause with additional trigger terms.	3 / 3
Trigger Term Quality	Excellent coverage of natural trigger terms users would say: 'pull requests', 'PR reviews', 'code quality', 'refactoring', 'security issues', 'review code', 'code quality checks', 'refactoring suggestions'. These are terms users would naturally use when requesting code review.	3 / 3
Distinctiveness Conflict Risk	Clearly carves out its niche as a broad-scope code reviewer and explicitly differentiates itself from related specialized skills (security-reviewer, test-master), explaining it provides broad review across multiple dimensions in a single pass. The specific mention of code diffs, PR reviews, and structured reports makes it distinct.	3 / 3
	Total	12 / 12 Passed

Validation

90%

Warnings & errors only

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation — 10 / 11 Passed

Validation for skill structure

Criteria	Description	Result
allowed_tools_field	'allowed-tools' contains unusual tool name(s)	Warning

	Total	10 / 11 Passed

Repository: Jeffallan/claude-skills
Commit: e8be415

Reviewed: 4 days ago

Table of Contents

Discovery Implementation Validation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.