OpenSkillIndex← back to search
claude-codedevelopment

Claude-skill-registry generic-code-reviewer

Review code for bugs, security vulnerabilities, performance issues, accessibility gaps, and CLAUDE.md workflow compliance. Supports any tech stack - HTML/CSS/JS, React, TypeScript, Node.js, Python, NestJS, Next.js, and more. Use when completing features, before commits, or reviewing pull requests.

install
source · Clone the upstream repo
git clone https://github.com/majiayu000/claude-skill-registry
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/data/generic-code-reviewer" ~/.claude/skills/majiayu000-claude-skill-registry-generic-code-reviewer && rm -rf "$T"
manifest: skills/data/generic-code-reviewer/SKILL.md
tags
#code-review#security-check#performance-optimization#tech-stack-detection#accessibility-check#commit-validation
source content

Generic Code Reviewer

Review code against production quality standards. Adapts to any project's tech stack.

Full Standards: See Code Review Standards

CLAUDE.md Compliance

Always check the project's CLAUDE.md for specific rules.

Before ANY Commit:

  • Task file exists in 
    tasks/[feature-name].md
  • All tests passing
  • Type checking passing (if TypeScript)
  • No console errors/warnings
  • Bundle size within limits

Tech Stack Detection

DetectionStackKey Checks
React in package.jsonReact/TSComponents, hooks, state
Next.js in package.jsonNext.jsSSR, API routes
NestJS in package.jsonNestJSGuards, DTOs, services
.html files, no buildVanillaSemantic HTML, minimal JS
.py filesPythonType hints, validation

P0 Issues (Block Merge)

Security - Frontend

  • Sanitize input (textContent, not innerHTML)
  • unknown
    type for external data
  • No exposed API keys
  • HTTPS for external requests

Security - Backend

  • Input validation on all endpoints
  • Auth on protected routes
  • Parameterized queries (no raw SQL)
  • Secrets in environment variables

Correctness

  • Logic errors that break functionality
  • Type errors in strict mode
  • Unhandled promise rejections

P1 Issues (Should Fix)

Performance

Project TypeTarget
Static site< 50KB (excluding media)
SPA/React< 100KB gzipped initial
Full-stack< 200KB gzipped initial

Animation:

  • GPU-accelerated only (transform, opacity)
  • 60fps target
  • Use requestAnimationFrame

Accessibility (WCAG AA)

  • Focus indicators on interactive elements
  • Keyboard navigation (Tab, Enter, Escape)
  • Color contrast >= 4.5:1
  • ARIA labels on icon-only buttons
  • Alt text for meaningful images
  • Semantic HTML structure

P2 Issues (Nice to Have)

Code Quality

  • DRY, Single Responsibility
  • No magic numbers/strings
  • Self-documenting code
  • Follow existing patterns
  • No commented-out/dead code

Review Output Format

Only report issues found (don't list empty categories):

Blocking Issues (P0):

  • [Only if found - security, correctness issues]

Should Fix (P1):

  • [Only if found - performance, accessibility issues]

Consider (P2):

  • [Only if found - code quality polish]

If no issues: "Code review passed. Ready to merge."

Judgment Calls

When user asks "Is this OK?", consider:

ContextStricterMore Lenient
EnvironmentProductionPrototype/POC
PathHot path, frequently executedOne-time setup, admin only
VisibilityPublic API, external interfaceInternal helper, private method
TimelineFeature completeActive iteration

Adjust severity accordingly. P0 security issues are never lenient.

Quick Checklist

Pre-Commit:

  • Tests pass
  • Type/lint pass
  • Build succeeds
  • No console errors

Before Merge:

  • All P0 issues resolved
  • P1 issues addressed or tracked
  • P2 issues noted for future

See Also