From oh-my-claudecode
Runs a thorough code review with severity-rated feedback on security, quality, performance, and maintainability. Useful before merging PRs or after major features.
How this skill is triggered — by the user, by Claude, or both
Slash command
/oh-my-claudecode:code-reviewThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Conduct a thorough code review for quality, security, and maintainability with severity-rated feedback.
Conduct a thorough code review for quality, security, and maintainability with severity-rated feedback.
This skill activates when:
Delegates to the code-reviewer agent (Opus model) for deep analysis:
Identify Changes
git diff to find changed filesReview Categories
Severity Rating
Specific Recommendations
Task(
subagent_type="oh-my-claudecode:code-reviewer",
model="opus",
prompt="CODE REVIEW TASK
Review code changes for quality, security, and maintainability.
Scope: [git diff or specific files]
Review Checklist:
- Security vulnerabilities (OWASP Top 10)
- Code quality (complexity, duplication)
- Performance issues (N+1, inefficient algorithms)
- Best practices (naming, documentation, error handling)
- Maintainability (coupling, testability)
Output: Code review report with:
- Files reviewed count
- Issues by severity (CRITICAL, HIGH, MEDIUM, LOW)
- Specific file:line locations
- Fix recommendations
- Approval recommendation (APPROVE / REQUEST CHANGES / COMMENT)"
)
The code-reviewer agent MAY consult a Claude Task agent for cross-validation.
Use Task(subagent_type="oh-my-claudecode:code-reviewer", ...) for cross-validation.
CODE REVIEW REPORT
==================
Files Reviewed: 8
Total Issues: 15
CRITICAL (0)
-----------
(none)
HIGH (3)
--------
1. src/api/auth.ts:42
Issue: User input not sanitized before SQL query
Risk: SQL injection vulnerability
Fix: Use parameterized queries or ORM
2. src/components/UserProfile.tsx:89
Issue: Password displayed in plain text in logs
Risk: Credential exposure
Fix: Remove password from log statements
3. src/utils/validation.ts:15
Issue: Email regex allows invalid formats
Risk: Accepts malformed emails
Fix: Use proven email validation library
MEDIUM (7)
----------
...
LOW (5)
-------
...
RECOMMENDATION: REQUEST CHANGES
Critical security issues must be addressed before merge.
The code-reviewer agent checks:
APPROVE - No CRITICAL or HIGH issues, minor improvements only REQUEST CHANGES - CRITICAL or HIGH issues present COMMENT - Only LOW/MEDIUM issues, no blocking concerns
With Pipeline:
/pipeline review "implement user authentication"
Includes code review as part of implementation workflow.
With Ralph:
/ralph code-review then fix all issues
Review code, get feedback, fix until approved.
With Ultrawork:
/ultrawork review all files in src/
Parallel code review across multiple files.
13plugins reuse this skill
First indexed Jul 10, 2026
Showing the 6 earliest of 13 plugins
npx claudepluginhub sigridjineth/oh-my-claudecodeConducts code reviews checking quality, security (OWASP Top 10), maintainability, and performance using tools like code_outline, code_search, and grep.
Reviews pull requests and code changes with structured analysis of code quality, security, performance, testing, and maintainability. Provides constructive feedback and best practices guidance.
Reviews code diffs and files for bugs, security flaws, N+1 queries, code smells, naming issues, and architecture, producing structured reports with prioritized feedback.