← Back to Skills

Code Review

🌐Community
by sgcarstrends · vlatest · Repository

Analyzes backend code for performance bottlenecks, security vulnerabilities, and adherence to sgcarstrends coding standards.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add sgcarstrends-code-review npx -- -y @trustedskills/sgcarstrends-code-review
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "sgcarstrends-code-review": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/sgcarstrends-code-review"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill analyzes backend code to identify potential issues and ensure adherence to sgcarstrends coding standards. It performs automated checks for performance bottlenecks, security vulnerabilities (like SQL injection and XSS), and type safety errors. The skill also flags common anti-patterns and provides suggestions for improvement based on established best practices.

When to use it

  • Before submitting a pull request (PR) to ensure code quality.
  • To identify potential performance issues in backend code.
  • To proactively find security vulnerabilities before deployment.
  • When reviewing another developer's code for adherence to sgcarstrends standards.
  • During self-review of changes before merging into the main branch.

Key capabilities

  • Automated checks using pnpm biome check, TypeScript compiler (tsc), and test suite execution.
  • Code scanning with grep to find specific patterns (e.g., "any" type usage, console.log statements, TODOs).
  • Identification of common code anti-patterns (magic numbers, deep nesting, SQL injection vulnerabilities, N+1 queries, missing memoization).
  • Framework-specific checks for React, Next.js, and Drizzle projects.
  • Provides review comments categorized by severity: Must Fix, Should Fix, Suggestion, Learning, Question.

Example prompts

  • "Run a code review on this file: apps/my_feature/index.ts."
  • "Check for any instances of 'any' in the codebase."
  • "Perform a security audit focusing on SQL injection vulnerabilities."

Tips & gotchas

  • This skill is designed for backend development and focuses on TypeScript code.
  • It complements, but does not replace, dedicated security auditing or performance optimization skills. Refer to those skills for more in-depth analysis.
  • The skill relies on the pnpm package manager; ensure it's available in your environment.
View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
sgcarstrends
Installs
44
Repository (canonical source) →

🌐 Community

Passed automated security scans.