code-reviewlisted

# Code review — Router This skill produces honest, actionable findings on a codebase. It is **not** a generic "tell me if this code is good"; it asks specific, methodical questions across 13 dimensions, picks severity per finding, and emits triageable output. It absorbs the best of `anthropics/knowledge-work-plugins/engineering/skills/code-review` (Apache-2.0), `anthropics/claude-code-security-review` (MIT), `VoltAgent/awesome-claude-code-subagents`, `awesome-skills/code-review-skill`, OWASP ASVS L1, and a generalized 13-dimension tech-DD framework forged on a multi-stack production codebase. ## When to invoke Trigger keywords (any of): - "review this code/PR/codebase/file" - "audit my code/project", "tech audit", "tech DD" - "security review", "security audit", "vuln scan" - "is this ready to ship?", "release check", "pre-release" - explicit `/code-review` slash command ## Step 1 — pick the cut Five cuts, picked by user intent. If the prompt makes intent clear, pick directly. **Only ask** (via `AskUserQuestion`) when genuinely ambiguous. | Cut | When | What loads | Effort | |---|---|---|---| | **quick** | "review this file/PR" | `cuts/quick.md` + matching `languages/*.md` | 5-10 min | | **security** | "security review", "OWASP" | `cuts/security.md` + D4 + D5 + `threat-models/{auth,multi-tenant,secret-mgmt,pii}.md` + matching languages | 30 min | | **release** | "ready to ship?", "release check" | `cuts/release.md` + scan over all dim, deep on diff since last tag | 30