From code-auditor-agent
Trigger with "review the PR", "check the PR", "audit the PR", "pre-merge review". Use when reviewing PRs, auditing code, or running pre-merge quality gates.
npx claudepluginhub emasoft/emasoft-plugins --plugin code-auditor-agentThis skill is limited to using the following tools:
Six-phase PR review. Phase 4 security scan is **MANDATORY** (never skip): correctness swarm, claim verification, skeptical review, security review (parallel with skeptical), merge + dedup.
Suggests manual /compact at logical task boundaries in long Claude Code sessions and multi-phase tasks to avoid arbitrary auto-compaction losses.
Share bugs, ideas, or general feedback.
Six-phase PR review. Phase 4 security scan is MANDATORY (never skip): correctness swarm, claim verification, skeptical review, security review (parallel with skeptical), merge + dedup.
gh CLI authenticated, PR on GitHub, reports/code-auditor/ exists, ${CLAUDE_PLUGIN_ROOT} setcaa-code-correctness-agent per domain in parallelcaa-claim-verification-agent (after step 2 completes)caa-skeptical-reviewer-agent AND caa-security-review-agent in parallel (security is MANDATORY — never skip)uv run ${MERGE_SCRIPT} --quiet ${REPORT_DIR} 1, then spawn caa-dedup-agentIf MUST-FIX issues exist, do NOT push until resolved and pipeline re-run.
Final merged report in reports/code-auditor/ with verdict (PASS/CONDITIONAL/FAIL), per-finding severity, MUST-FIX/SHOULD-FIX/NIT counts. Details:
Agent failures: re-spawn with new UUID. Merge errors: check report paths. Details:
Input: "review PR 206"
Output: 6-phase pipeline → verdict (3 MUST-FIX, 2 SHOULD-FIX, 5 NIT)
All invocations run all six phases including the mandatory security scan. Partial runs not supported — see critical-rules.md Rule 1.
Copy this checklist and track your progress: