Requesting Code Review
PassAudited by ClawScan on May 1, 2026.
Overview
This instruction-only skill is coherent and low risk, but it relies on a separate code-reviewer subagent and a referenced template that is not included in the provided artifacts.
This skill appears safe for its stated purpose. Before installing, confirm you trust the configured superpowers:code-reviewer subagent and inspect the referenced code-reviewer template if available, since those external pieces determine what information is reviewed and how.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Code or task context may be shared with the configured reviewer subagent during normal use.
The skill routes implementation details, requirements, and commit SHAs to another agent for review. This is central to the skill's purpose, but it is still an inter-agent data flow users should recognize.
Dispatch superpowers:code-reviewer subagent ... Use Task tool with superpowers:code-reviewer type
Use this skill only where sharing repository context with the configured code-reviewer subagent is acceptable, and verify that subagent is trusted.
The exact review prompt/template may come from outside the reviewed artifact set.
The provided manifest contains only SKILL.md, so the referenced reviewer template is not part of the supplied artifacts. This is not suspicious by itself, but users should confirm the referenced template exists and is trustworthy.
Use Task tool with superpowers:code-reviewer type, fill template at `code-reviewer.md` ... See template at: requesting-code-review/code-reviewer.md
Before relying on the workflow, inspect the referenced code-reviewer template and ensure it matches the expected review behavior.