← Back to Skills Marketplace
fortunto2

Review

by Rust · GitHub ↗ · v1.1.1
cross-platform ⚠ suspicious
721
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install solo-review
Description
Final code review and quality gate — run tests, check coverage, audit security, verify acceptance criteria from spec, and generate ship-ready report. Use whe...
Usage Guidance
This skill is coherent with its stated purpose, but before installing or running it consider: (1) it will run tests/builds which execute project code — run it only on code you trust or in a sandbox/CI runner; (2) it will edit project docs (it checks and updates spec.md checkboxes) so review commits/changes after a run; (3) it searches for secrets (grep patterns) but does not request credentials — nevertheless ensure secrets are not stored in the repo; (4) confirm you grant only the needed tools (Read, Grep, Bash, Glob, Write, Edit, and the listed MCP tools) and restrict access to sensitive projects if needed. If you want extra safety, run this skill in an isolated environment (container/CI job) and review its edits before merging.
Capability Analysis
Type: OpenClaw Skill Name: solo-review Version: 1.1.1 The skill is classified as suspicious due to its extensive use of the `Bash` tool for executing various commands, including `grep` for potentially sensitive patterns like `sk_live`, `sk_test`, and `password` in source files. While the stated purpose is a security audit, this capability (found in SKILL.md) inherently carries a risk of information disclosure if the agent's output or environment is compromised. Additionally, the skill initiates network calls to external services (e.g., Vercel, Cloudflare, Fly.io logs) and modifies the git repository, which, while aligned with its review function, expands the attack surface. There is no clear evidence of intentional malicious behavior like unauthorized data exfiltration to third-party domains or persistence mechanisms, but the high-risk capabilities warrant a 'suspicious' classification.
Capability Assessment
Purpose & Capability
Name/description (final review, tests, lint, security, acceptance criteria, report) match the SKILL.md steps (run tests, linters, builds, dependency audits, verify spec, generate report). No unrelated credentials, binaries, or installs are requested.
Instruction Scope
Instructions legitimately direct the agent to run tests, linters, builds, grep for secrets, read docs, and update spec.md checkboxes. This includes mutating repository docs (Edit/Write) and executing project test/build commands (which will run project code). Those behaviors are expected for a review skill, but you should be aware the skill will modify files and execute repository code during its run.
Install Mechanism
Instruction-only skill with no install spec and no external downloads — minimal disk footprint and low install risk.
Credentials
No environment variables, credentials, or external config paths are requested. The checks for common secret patterns (e.g., sk_live) are appropriate for a security audit and proportional to the stated purpose.
Persistence & Privilege
always is false (normal). The skill requires Write/Edit tool permissions to update spec.md checkboxes within the repo — a reasonable repository-level mutation for a quality gate, but it is persistent in the sense that it will change project files. It does not request system-wide or cross-skill configuration changes.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install solo-review
  3. After installation, invoke the skill by name or use /solo-review
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.1
Universalize: remove project-specific references, add SearXNG recommendation
v1.1.0
Initial publish
Metadata
Slug solo-review
Version 1.1.1
License
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Review?

Final code review and quality gate — run tests, check coverage, audit security, verify acceptance criteria from spec, and generate ship-ready report. Use whe... It is an AI Agent Skill for Claude Code / OpenClaw, with 721 downloads so far.

How do I install Review?

Run "/install solo-review" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Review free?

Yes, Review is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Review support?

Review is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Review?

It is built and maintained by Rust (@fortunto2); the current version is v1.1.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments