How do I install code-review?

Run `npx skills add https://github.com/skillcreatorai/ai-agent-skills --skill code-review` in your terminal. You need to have run `npx skills init` once in your project first.

Which agent frameworks does code-review support?

code-review works with any agent framework supported by the Skills registry, including Claude Code, Cursor, GitHub Copilot, Cline, Codex, and Gemini CLI.

Is code-review free to use?

Yes. code-review is free to install and use. It is available from the open explainx.ai skill registry published by skillcreatorai.

Where can I read ratings and reviews for code-review?

Community ratings and review text appear on this explainx.ai skill page below the description. Reviews use a 1–5 scale and may include short written feedback from signed-in members.

Productivity

code-review▌

skillcreatorai/ai-agent-skills · updated Apr 8, 2026

$npx skills add https://github.com/skillcreatorai/ai-agent-skills --skill code-review

0 commentsdiscussion

summary

Automated code review across security, performance, quality, and testing dimensions.

›Analyzes pull requests for four distinct review categories: security vulnerabilities (SQL injection, XSS, hardcoded secrets), performance issues (N+1 queries, memory leaks, missing caches), code quality (duplication, SRP violations, poor naming), and test coverage gaps
›Flags issues at three severity levels (critical, suggestions, nits) with explanations and suggested fixes for each finding
›Includes a

skill.md

Code Review

Review Categories

1. Security Review

Check for:

SQL injection vulnerabilities
XSS (Cross-Site Scripting)
Command injection
Insecure deserialization
Hardcoded secrets/credentials
Improper authentication/authorization
Insecure direct object references

2. Performance Review

Check for:

N+1 queries
Missing database indexes
Unnecessary re-renders (React)
Memory leaks
Blocking operations in async code
Missing caching opportunities
Large bundle sizes

3. Code Quality Review

Check for:

Code duplication (DRY violations)
Functions doing too much (SRP violations)
Deep nesting / complex conditionals
Magic numbers/strings
Poor naming
Missing error handling
Incomplete type coverage

4. Testing Review

Check for:

Missing test coverage for new code
Tests that don't test behavior
Flaky test patterns
Missing edge cases
Mocked external dependencies

Review Output Format

## Code Review Summary

### 🔴 Critical (Must Fix)
- **[File:Line]** [Issue description]
  - **Why:** [Explanation]
  - **Fix:** [Suggested fix]

### 🟡 Suggestions (Should Consider)
- **[File:Line]** [Issue description]
  - **Why:** [Explanation]
  - **Fix:** [Suggested fix]

### 🟢 Nits (Optional)
- **[File:Line]** [Minor suggestion]

### ✅ What's Good
- [Positive feedback on good patterns]

Common Patterns to Flag

Security

// BAD: SQL injection
const query = `SELECT * FROM users WHERE id = ${userId}`;

// GOOD: Parameterized query
const query = 'SELECT * FROM users WHERE id = $1';
await db.query(query, [userId]);

Performance

// BAD: N+1 query
users.forEach(async user => {
  const posts = await getPosts(user.id);
});

// GOOD: Batch query
const userIds = users.map(u => u.id);
const posts = await getPostsForUsers(userIds);

Error Handling

// BAD: Swallowing errors
try {
  await riskyOperation();
} catch (e) {}

// GOOD: Handle or propagate
try {
  await riskyOperation();
} catch (e) {
  logger.error('Operation failed', { error: e });
  throw new AppError('Operation failed', { cause: e });
}

Review Checklist

Discussion

Product Hunt–style comments (not star reviews)

No comments yet — start the thread.

general reviews

Ratings

4.7★★★★★33 reviews

★★★★★Chen Malhotra· Dec 24, 2024
code-review has been reliable in day-to-day use. Documentation quality is above average for community skills.
★★★★★Chaitanya Patil· Dec 8, 2024
Solid pick for teams standardizing on skills: code-review is focused, and the summary matches what you get after install.
★★★★★Piyush G· Nov 27, 2024
We added code-review from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
★★★★★Alexander Thompson· Nov 15, 2024
code-review fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
★★★★★Rahul Santra· Nov 7, 2024
I recommend code-review for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
★★★★★Alexander Abebe· Nov 7, 2024
I recommend code-review for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
★★★★★Pratham Ware· Oct 26, 2024
Useful defaults in code-review — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
★★★★★Li White· Oct 26, 2024
Useful defaults in code-review — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
★★★★★Shikha Mishra· Oct 18, 2024
code-review fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
★★★★★Sofia Chawla· Oct 6, 2024
We added code-review from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.

showing 1-10 of 33

1 / 4