requesting-code-review
請求 AI 程式碼審查
También disponible en: Cygnusfear,DMJGilbert,davila7,Cycleaddict,sickn33,obra,DYAI2025,CodingCossack
開發者經常因為過於接近實作而忽略自己程式碼中的問題。此技能會派遣 AI 子代理程式來根據需求審查程式碼變更,在合併前檢查品質、架構、測試和生產環境就緒狀態。
Descargar el ZIP de la skill
Subir en Claude
Ve a Configuración → Capacidades → Skills → Subir skill
Activa y empieza a usar
Pruébalo
Usando "requesting-code-review". Request code review for my authentication module changes
Resultado esperado:
### Strengths
- Clean separation of concerns with auth service (auth.ts:1-50)
- Proper password hashing using bcrypt (hash.ts:15)
- Good test coverage for edge cases
### Issues
#### Important
1. **Missing token expiration check**
- File: auth.ts:45
- Issue: Tokens never expire, creating security risk
- Fix: Add expiration timestamp to JWT payload
#### Minor
1. **Inconsistent error messages**
- File: auth.ts:30-35
### Assessment
**Ready to merge: With fixes**
**Reasoning:** Core authentication logic is solid. Important issue with token expiration must be addressed before production use.
Usando "requesting-code-review". Review my database migration changes
Resultado esperado:
### Strengths
- Proper foreign key constraints (migrations/002.sql:20)
- Good rollback strategy
### Issues
#### Critical
1. **No backup before destructive operation**
- File: migrations/003.sql:15
- Issue: DROP TABLE without backup strategy
- Fix: Add data migration script or backup step
### Assessment
**Ready to merge: With fixes**
**Reasoning:** Critical data safety issue must be resolved.
Auditoría de seguridad
SeguroAll 27 static findings are false positives. The skill uses legitimate git commands (git diff, git rev-parse) for code review - these are standard development operations. The detected 'weak cryptographic algorithm' patterns match the word 'security' in documentation headings, not actual crypto code. The 'system reconnaissance' matches are generic text. This is a safe code review workflow skill with no command injection risk - git commands use hardcoded arguments with template variable placeholders.
Factores de riesgo
⚙️ Comandos externos (5)
Patrones detectados
Puntuación de calidad
Lo que puedes crear
合併前的程式碼審查
在合併功能分支前使用,以及早發現問題。子代理程式會根據需求審查所有變更並提供明確的準備就緒/未準備就緒判定。
子代理程式任務驗證
在代理程式驅動開發中每個子代理程式完成任務後,派遣程式碼審查者來驗證工作後再繼續下一個任務。
卡在問題上
當卡在複雜的錯誤或功能上時,請求程式碼審查以從 AI 子代理程式獲得關於潛在問題或更好方法的全新觀點。
Prueba estos prompts
Request code review for the changes I just made. Use the requesting-code-review skill with: WHAT_WAS_IMPLEMENTED: [describe what you built], PLAN_OR_REQUIREMENTS: [link to plan or describe requirements], BASE_SHA: [starting commit], HEAD_SHA: [ending commit], DESCRIPTION: [brief summary]
Please review my latest feature implementation using the requesting-code-review skill. Compare against the requirements in docs/plans/[feature-name].md. Include architecture assessment and testing coverage evaluation.
Run the code-reviewer subagent to verify the task just completed. Check against the original task requirements and report any Critical or Important issues that need fixing before proceeding.
Request a code review of the current state of [component/module] before I refactor it. This will serve as a baseline to ensure the refactoring does not introduce regressions.
Mejores prácticas
- 請求審查時提供明確的需求或計劃參考 — 子代理程式會根據這些來比較實作
- 在代理程式驅動開發中每個重要任務後進行審查,以防止問題累積
- 在繼續之前修復 Critical 和 Important 問題;在後續工作中處理 Minor 問題
Evitar
- 因為變更看起來簡單就跳過審查 — 即使是小變更也可能有隱藏的錯誤
- 忽略 Critical 問題或繼續進行未修復的 Important 問題
- 請求審查時未提供明確的需求或計劃供子代理程式比較
Preguntas frecuentes
此技能與直接使用 Claude 有何不同?
這可以用於任何程式語言嗎?
如果我沒有正式的需求文件怎麼辦?
這會取代人類程式碼審查嗎?
如何取得 BASE_SHA 和 HEAD_SHA?
我可以自訂審查標準嗎?
Detalles del desarrollador
Autor
ZhanlinCuiLicencia
MIT
Repositorio
https://github.com/ZhanlinCui/Ultimate-Agent-Skills-Collection/tree/main/requesting-code-reviewRef.
main
Estructura de archivos