Engineering
code-review-expert avatar

code-review-expert

Expert code review agent that performs systematic audits of git changes for SOLID violations, security vulnerabilities, performance regressions, and architectural smells.

Introduction

The Code Review Expert is an advanced engineering assistant designed for automated, high-quality code analysis directly within the development terminal. It acts as a senior engineer, systematically reviewing pending git changes before they are committed or merged. By utilizing structured checklists for SOLID principles, security, and performance, it helps teams maintain high standards and prevent technical debt, security regressions, or production incidents. It is specifically optimized for developers and engineering teams who prioritize architectural integrity and robust, maintainable codebases.

  • Performs automated audits of staged or current git diffs to identify high-risk areas.

  • Detects SOLID architecture smells including SRP, OCP, LSP, ISP, and DIP violations.

  • Scans for critical security vulnerabilities such as XSS, injection (SQL/NoSQL), insecure deserialization, and authentication gaps.

  • Identifies performance bottlenecks like N+1 queries, CPU-intensive operations, and missing cache strategies.

  • Evaluates code quality by checking for swallowed exceptions, incorrect error handling, and boundary condition failures.

  • Recommends actionable refactoring plans for redundant, unused, or legacy code that should be removed.

  • Features a rigorous safety-first workflow that defaults to review-only mode, preventing unauthorized changes to the codebase.

  • Utilizes a tiered severity classification (P0-P3) to help developers prioritize fixes based on impact and risk.

  • Run the skill using the /code-review-expert command to trigger a scan of your current environment.

  • It requires git to be initialized in the workspace to scope changes and perform git diff analysis.

  • The output is provided in a structured format, enabling developers to review findings, confirm specific fixes, or opt for a no-change report.

  • Ensure the repository contains the necessary reference files (SOLID, security, quality checklists) to enable full diagnostic capabilities.

  • Suitable for modern CI/CD pipelines, pre-commit hooks, or iterative code review cycles in team environments.

Repository Stats

Stars
3,405
Forks
301
Open Issues
7
Language
Python
Default Branch
main
Sync Status
Idle
Last Synced
May 3, 2026, 04:50 AM
View on GitHub