From oh-my-claudecode
Runs code reviews on git diffs assessing security vulnerabilities, code quality, performance, best practices, and maintainability with severity-rated issues, file:line fixes, and merge recommendations.
How this skill is triggered — by the user, by Claude, or both
Slash command
/oh-my-claudecode:code-reviewThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Conduct a thorough code review for quality, security, and maintainability with severity-rated feedback.
Conduct a thorough code review for quality, security, and maintainability with severity-rated feedback.
This skill activates when:
Delegates to the code-reviewer agent (Opus model) for deep analysis:
Identify Changes
git diff to find changed filesReview Categories
Severity Rating
Specific Recommendations
Task(
subagent_type="oh-my-claudecode:code-reviewer",
model="opus",
prompt="CODE REVIEW TASK
Review code changes for quality, security, and maintainability.
Scope: [git diff or specific files]
Review Checklist:
- Security vulnerabilities (OWASP Top 10)
- Code quality (complexity, duplication)
- Performance issues (N+1, inefficient algorithms)
- Best practices (naming, documentation, error handling)
- Maintainability (coupling, testability)
Output: Code review report with:
- Files reviewed count
- Issues by severity (CRITICAL, HIGH, MEDIUM, LOW)
- Specific file:line locations
- Fix recommendations
- Approval recommendation (APPROVE / REQUEST CHANGES / COMMENT)"
)
CODE REVIEW REPORT
==================
Files Reviewed: 8
Total Issues: 15
CRITICAL (0)
-----------
(none)
HIGH (3)
--------
1. src/api/auth.ts:42
Issue: User input not sanitized before SQL query
Risk: SQL injection vulnerability
Fix: Use parameterized queries or ORM
2. src/components/UserProfile.tsx:89
Issue: Password displayed in plain text in logs
Risk: Credential exposure
Fix: Remove password from log statements
3. src/utils/validation.ts:15
Issue: Email regex allows invalid formats
Risk: Accepts malformed emails
Fix: Use proven email validation library
MEDIUM (7)
----------
...
LOW (5)
-------
...
RECOMMENDATION: REQUEST CHANGES
Critical security issues must be addressed before merge.
The code-reviewer agent checks:
APPROVE - No CRITICAL or HIGH issues, minor improvements only REQUEST CHANGES - CRITICAL or HIGH issues present COMMENT - Only LOW/MEDIUM issues, no blocking concerns
With Pipeline:
/pipeline review "implement user authentication"
Includes code review as part of implementation workflow.
With Ralph:
/ralph code-review then fix all issues
Review code, get feedback, fix until approved.
With Ultrawork:
/ultrawork review all files in src/
Parallel code review across multiple files.
npx claudepluginhub seunggabi/oh-my-claudecode --plugin oh-my-claudecode9plugins reuse this skill
First indexed Jul 8, 2026
Showing the 6 earliest of 9 plugins
Runs a thorough code review with severity-rated feedback on security, quality, performance, and maintainability. Useful before merging PRs or after major features.
Reviews code diffs, PRs, or files for security, performance, correctness, and maintainability, covering OWASP, N+1 queries, edge cases, race conditions, and more.
Conducts code reviews checking quality, security (OWASP Top 10), maintainability, and performance using tools like code_outline, code_search, and grep.