Code Review Pro

v1.0.0

专业代码审查 | 4Agent并行审查+ 置信度评分 | 覆盖逻辑/安全/性能/风格

⭐ 0· 45·0 current·0 all-time

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for softboypatrick/code-review-pro.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Code Review Pro" (softboypatrick/code-review-pro) from ClawHub.
Skill page: https://clawhub.ai/softboypatrick/code-review-pro
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install code-review-pro

ClawHub CLI

Package manager switcher

npx clawhub@latest install code-review-pro

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description claim a multi-agent code review covering logic, security, performance, and style; the skill is instruction-only and requires no binaries, env vars, or installs — all consistent with a reviewer helper.

✓

Instruction Scope

SKILL.md enumerates four focused review agents and an output format. It does not instruct reading unrelated system files, exfiltrating data, calling external endpoints, or accessing credentials. The checks listed (e.g., injection, XSS, hardcoded keys) are reasonable for a security review.

✓

Install Mechanism

No install spec and no code files — the lowest-risk form. Nothing will be written to disk or fetched at install time.

✓

Credentials

The skill declares no required environment variables, credentials, or config paths. There are no disproportionate secret requests compared to its stated functionality.

✓

Persistence & Privilege

always is false and model invocation is not disabled (the platform default). The skill does not request persistent presence or modify other skills or system settings.

Scan Findings in Context

[no_code_files_scanned] expected: The regex-based scanner had no code files to analyze because this is an instruction-only skill; this is expected and not a concern by itself.

Assessment

This skill is instruction-only and internally consistent with a multi-aspect code reviewer; it doesn't request credentials or install anything, so risk is low. Still, verify outputs before applying suggested fixes (LLMs can hallucinate or mis-evaluate complex code), avoid sharing sensitive secrets or proprietary code until you're comfortable with results, and prefer testing on non-sensitive samples. Also note the source/author is unknown — consider running a few known test cases to confirm the review quality before using it on important projects.

Like a lobster shell, security has layers — review code before you run it.

latestvk979nkvraesvqe57w0ac6y0ck185jsbd

45downloads

0stars

1versions

Updated 1d ago

v1.0.0

MIT-0

Code Review Pro

4Agent 并行代码审查。置信度≥70% 才输出。

Agent 1: 逻辑

检查：逻辑错误、边界条件、竞态条件、死循环

Agent 2: 安全

检查：注入漏洞、XSS、CSRF、权限泄露、密钥硬编码

Agent 3: 性能

检查：时间复杂度、内存泄漏、不必要重复、过大循环

Agent 4: 风格

检查：命名规范、代码整洁度、语言惯用法

输出格式

[严重] 问题描述 (置信度: 92%)

位置：文件:行号 | 风险：高危 | 建议：...

[建议] 优化点 (置信度: 78%)

Comments

Loading comments...