branch-reviewlisted

Reviews a git branch against its base — code review plus a separate security pass — and returns risk-ranked findings. Works on a bare Claude Code install (no plugins required). Use when you need a focused review of a branch's changes, standalone or as part of a QA cycle.
AleksandrGarnov/qa_skill · ★ 1 · Code & Development · score 77

Install: claude install-skill AleksandrGarnov/qa_skill

# Branch Review Reviews the changes on `$ARGUMENTS` (branch, optional base) and returns deduplicated, risk-ranked **code** and **security** findings. Standalone, and also used by `test-iteration`. ## 1. Get the diff (deterministic) Run the bundled script — do not hand-roll git commands or guess the base: ```bash "${CLAUDE_PLUGIN_ROOT}/scripts/branch-diff.sh" <branch> [base] ``` If `base` is omitted the script auto-detects it (origin/HEAD → develop → main). If it prints `base: UNKNOWN`, read `CLAUDE.md` for the project's base branch or ask the user — do not guess. If `${CLAUDE_PLUGIN_ROOT}` is unset (manual install) or the script is missing, run the equivalent git commands inline (`git fetch`; `git checkout <branch>`; `git diff --name-only origin/<base>...HEAD`). **Done when:** you have the head commit, the resolved base, and the list of changed files. ## 2. Run two passes (in parallel) — tool-agnostic with fallbacks Pick the first available tool in each chain. The last option in each chain works on a bare Claude Code install, so this never silently no-ops. - **Code review:** `ruflo-core:reviewer` → built-in `/code-review` → **a `general-purpose` subagent** prompted to review the diff (always available). - **Security review:** `ruflo-security-audit` → built-in `/security-review` → **a `general-purpose` subagent** prompted to audit the diff for vulnerabilities (always available). Whatever tool runs, record which one you used. **Verification bar:** flag only what affec