ReddRadar
Agent skill
code-review
Code review workflow and best practices. Use when: reviewing PRs, receiving feedback, or preparing code for review. Triggers: "code review", "review", "pr review", "pull request", "feedback", "review changes".
Install this agent skill to your Project
npx add-skill https://github.com/timequity/vibe-coder/tree/main/skills/code-review
SKILL.md
Code Review
Core Principle
Technical correctness over social comfort.
Don't say "Great point!" or "You're absolutely right!" — analyze the feedback technically and respond with substance.
Review Checklist
□ Does it work? (logic, edge cases)
□ Is it secure? (injection, auth, secrets)
□ Is it tested? (coverage, edge cases)
□ Is it readable? (naming, structure)
□ Is it maintainable? (complexity, coupling)
□ Does it follow patterns? (consistency)
Issue Severity
| Level | What | Action |
|---|---|---|
| Critical | Security holes, data loss, crashes | Must fix before merge |
| Important | Bugs, performance issues, bad patterns | Should fix |
| Minor | Style, naming, small improvements | Nice to have |
| Nitpick | Personal preference | Comment only, don't block |
Giving Feedback
# Good feedback format:
**Issue**: [What's wrong]
**Why**: [Why it matters]
**Suggestion**: [How to fix]
# Example:
**Issue**: SQL query uses string concatenation
**Why**: Vulnerable to SQL injection
**Suggestion**: Use parameterized queries:
`db.query('SELECT * FROM users WHERE id = $1', [userId])`
Be Specific
# BAD
"This code is confusing"
# GOOD
"The variable `data` doesn't describe what it contains.
Consider renaming to `userProfiles` to match its type."
Praise Meaningfully
# BAD
"LGTM!" (says nothing)
# GOOD
"Clean extraction of the validation logic into a separate function —
makes it much easier to test."
Receiving Feedback
Don't
- Take it personally
- Argue without investigating
- Dismiss without explanation
- Say "You're right!" without checking
Do
- Investigate the concern technically
- Test the suggested approach
- Explain your reasoning if you disagree
- Ask clarifying questions
# Good response to feedback:
"I tested this approach and [result].
The original implementation handles [edge case] because [reason].
However, your suggestion would work if we also [modification].
Should I make that change?"
Verification Before Claiming Done
Before saying "done" or "fixed":
□ Run tests locally
□ Check the specific scenario mentioned
□ Verify the fix doesn't break related code
□ Test edge cases
PR Description Template
## What
[Brief description of changes]
## Why
[Motivation, link to issue]
## How
[Implementation approach]
## Testing
- [ ] Unit tests added/updated
- [ ] Manual testing done
- [ ] Edge cases covered
## Screenshots
[If UI changes]
Quick Commands
# Prepare review (get diff stats)
git diff main...HEAD --stat
git log main..HEAD --oneline
# Review specific commits
git show <sha>
git diff <sha1>..<sha2>
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
timequity/vibe-coder
mvp-help
Help and documentation for Idea to MVP plugin. Use when: user asks about building MVPs, vibe coding, or available commands. Triggers: "help", "what can you do", "mvp help", "how to build".
timequity/vibe-coder
verification-gate
Hidden quality gate that runs before showing "Done!" to user - ensures all tests pass, build succeeds, and requirements met before claiming completion
timequity/vibe-coder
brainstorming
Refine ideas into detailed designs through Socratic dialogue. Use when: user has rough idea, needs to clarify requirements, explore approaches. Triggers: "brainstorm", "discuss idea", "I'm thinking about", "what if", "help me think through", "explore options", "/brainstorm".
timequity/vibe-coder
subagent-creator
Guide for creating effective subagents (custom agents). Use when users want to create a new subagent that can be dispatched via Task tool for autonomous work. Covers frontmatter fields (name, description, tools, model, permissionMode, skills), prompt design, and when to use subagents vs skills.
timequity/vibe-coder
backend-rust
Modern Rust backend with Axum, SQLx, tokio + CI/CD automation. Use when: building Rust APIs, high-performance services, or needing build/test/lint/audit automation. Triggers: "axum", "rust backend", "rust api", "sqlx", "tokio", "cargo build", "cargo test", "clippy", "rustfmt", "cargo-audit", "cross-compile", "rust ci", "release build", "rust security", "shuttle", "actix".
timequity/vibe-coder
test-driven-development
Write failing test first, then minimal code to pass. Red-Green-Refactor cycle. Use when: implementing features, fixing bugs, refactoring code. Triggers: "implement", "add feature", "fix bug", "tdd", "test first", "write tests", "test-driven".
Didn't find tool you were looking for?