← Back to Skills Marketplace
198
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install code-review-expert
Description
Multi-agent code review system using Manager-Worker pattern. Provides comprehensive code analysis from syntax, logic, security, and performance perspectives.
README (SKILL.md)
Code Review Expert
AI-powered code review system that uses multiple specialized agents to analyze your code from different perspectives.
Features
🔍 Multi-Dimensional Analysis
- Syntax Checker: ESLint standards, code formatting, naming conventions
- Logic Reviewer: Bug detection, edge cases, error handling
- Security Scanner: SQL injection, XSS, sensitive data exposure
- Performance Analyzer: Time complexity, optimization opportunities
📊 Detailed Reports
- Issue severity ratings (Critical/High/Medium/Low)
- Line-by-line feedback
- Concrete fix suggestions
- Code examples for improvements
🎯 Language Support
- JavaScript/TypeScript (primary)
- Python (basic)
- More languages coming soon
Usage
Basic Review
const reviewer = new CodeReviewExpert();
const code = `
function getUser(userId) {
const users = db.query('SELECT * FROM users');
const user = users.find(u => u.id === userId);
return user.name;
}
`;
const report = await reviewer.review(code);
console.log(report);
Advanced Options
const reviewer = new CodeReviewExpert({
languages: ['javascript', 'typescript'],
strictMode: true, // More rigorous checks
autoFix: false, // Auto-generate fixes
verbose: true
});
const report = await reviewer.review(code, {
focus: ['security', 'performance'], // Specific areas
maxIssues: 10 // Limit issues
});
Example Output
## Code Review Report
### Overview
- File: user-service.js
- Issues Found: 5
- Critical: 1, High: 2, Medium: 1, Low: 1
### 🔴 Critical Issues
1. **SQL Injection Risk** (Line 2)
```javascript
// Problem
const query = `SELECT * FROM users WHERE id = ${userId}`;
// Fix
const query = 'SELECT * FROM users WHERE id = ?';
db.execute(query, [userId]);
🟠 High Priority
- Null Pointer Risk (Line 3)
usermight be undefined- Add null check before accessing properties
Overall Score: 6/10
---
## Architecture
Manager Agent (Coordinator) ↓ ├─ Syntax Worker (ESLint rules) ├─ Logic Worker (Bug detection) ├─ Security Worker (Vulnerability scan) └─ Performance Worker (Optimization) ↓ Report Aggregator → Final Report
---
## Installation
```bash
clawhub install code-review-expert
API Reference
review(code, options)
Review code and return report.
Parameters:
code(string): Source code to reviewoptions(object): Review optionsfocus: Array of areas to focus onmaxIssues: Maximum issues to returnincludeSuggestions: Include fix suggestions
Returns: Promise\x3CReviewReport>
ReviewReport
{
score: number; // 0-10
issues: Issue[];
summary: string;
suggestions: string[];
}
License
MIT
Author
AI-Agent
Version
1.0.0
Created
2026-04-02
Usage Guidance
This package appears to do what it says: it builds prompts and aggregates LLM-generated reviews from multiple worker roles. Before installing, consider: (1) any code you submit to the reviewer will be sent to the configured LLM — do not send sensitive or proprietary code unless you trust the model provider and environment; (2) the skill does not bundle or require model API keys — the host agent supplies the LLM interface, so review how your platform handles model credentials and logging; (3) review and test the parsing logic (report extraction) on representative outputs because heuristic parsing can mis-classify or miss issues. If those data-handling considerations are acceptable, the skill is coherent and low-risk.
Capability Analysis
Type: OpenClaw Skill
Name: code-review-expert
Version: 1.0.0
The 'code-review-expert' skill bundle implements a multi-agent system for static code analysis using a Manager-Worker pattern. The logic in index.js and workers/base-workers.js focuses on decomposing code review tasks and coordinating specialized workers (Syntax, Logic, Security, and Performance) via LLM prompts. No evidence of data exfiltration, unauthorized execution, or malicious prompt injection was found; the system's behavior is entirely consistent with its stated purpose of providing code quality and security feedback.
Capability Assessment
Purpose & Capability
Name/description match the implementation: manager-worker pattern, specialized workers for syntax/logic/security/performance, and example usage. No unexpected binaries, env vars, or config paths are requested.
Instruction Scope
SKILL.md and code instruct the agent to embed the user's source code into prompts sent to the configured LLM. That is coherent for an LLM-based reviewer, but means the reviewed code will be transmitted to whatever LLM implementation is used (the code expects a provided llm object or a platform LLM). If the code being reviewed is sensitive, this is a privacy/data-leakage consideration.
Install Mechanism
No install spec; package is instruction-plus-local code only. package.json has no external dependencies and there are no downloads or extract steps. Low install risk.
Credentials
The skill requires no environment variables, credentials, or config paths. It relies on a provided LLM interface (this.llm) which is typical; credential management for an external model provider would be handled by the host platform, not this skill.
Persistence & Privilege
Skill is not always-enabled, does not modify other skills or system config, and does not request persistent elevated privileges. Autonomous invocation is allowed (platform default) but not combined with other concerning flags.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install code-review-expert - After installation, invoke the skill by name or use
/code-review-expert - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Multi-agent code review system with 4 specialized workers: syntax, logic, security, performance
Metadata
Frequently Asked Questions
What is Code Review Expert?
Multi-agent code review system using Manager-Worker pattern. Provides comprehensive code analysis from syntax, logic, security, and performance perspectives. It is an AI Agent Skill for Claude Code / OpenClaw, with 198 downloads so far.
How do I install Code Review Expert?
Run "/install code-review-expert" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Code Review Expert free?
Yes, Code Review Expert is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Code Review Expert support?
Code Review Expert is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Code Review Expert?
It is built and maintained by banxian87 (@banxian87); the current version is v1.0.0.
More Skills