← Back to Skills Marketplace
Sqlx Code Review
by
Kevin Anderson
· GitHub ↗
· v1.0.2
· MIT-0
172
Downloads
0
Stars
1
Active Installs
3
Versions
Install in OpenClaw
/install sqlx-code-review
Description
Reviews sqlx database code for compile-time query checking, connection pool management, migration patterns, and PostgreSQL-specific usage. Use when reviewing...
Usage Guidance
This is an instruction-only checklist for reviewing sqlx usage in Rust projects and appears coherent with that purpose. Before installing/using it: 1) confirm what the referenced "beagle-rust:review-verification-protocol" means in your environment (it looks like an external verification step or another skill/protocol but is not declared); 2) only run the review on code you permit the agent to read — the skill expects the agent to open Cargo.toml, sqlx.toml, .rs files and may look for DATABASE_URL/sqlx cached metadata; and 3) there are no network endpoints or credentials declared by the skill, but if you see prompts later to provide a DATABASE_URL or other secret for live verification, treat that as an optional external action and confirm you want to provide such secrets. Overall the skill is internally consistent and low-risk, aside from the minor undeclared protocol dependency.
Capability Assessment
Purpose & Capability
Name and description (sqlx code review) match the SKILL.md and reference docs: it asks the reviewer to inspect Cargo.toml, sqlx.toml, .rs files, queries, pools, and migrations — all directly relevant. No unrelated binaries, credentials, or config paths are required.
Instruction Scope
The runtime instructions stay on-topic (open Cargo.toml/sqlx.toml/source files and report file:line anchored findings). One minor ambiguity: the SKILL.md requires the reviewer to "Load and complete beagle-rust:review-verification-protocol" after certain gates — that references an external protocol/skill ID without explanation. This could simply be a verification step in your environment, but it is an external dependency the skill doesn't declare. Otherwise the instructions do not ask the agent to read unrelated system files or exfiltrate data.
Install Mechanism
Instruction-only skill with no install spec and no code files to execute. This is the lowest-risk install profile; nothing is downloaded or written to disk by an installer.
Credentials
The skill declares no required environment variables (and none are needed to perform a static code review). The SKILL.md does instruct the reviewer to check for DATABASE_URL, sqlx.toml, and cached `.sqlx/` metadata when assessing offline/compile-time checks — this is reasonable for accuracy but is an implicit request to examine those files/env if present. It's not asking for arbitrary secrets, but you should be aware it may look for a DATABASE_URL documented in the repo or environment when validating offline checks.
Persistence & Privilege
always is false and there are no install scripts or persistent configuration changes. The skill does not request persistent presence or elevated privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sqlx-code-review - After installation, invoke the skill by name or use
/sqlx-code-review - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
**Tightened code review protocol to require specific evidence before severity claims.**
- Added "Gates" section with mandatory evidence collection steps before reporting Critical or Major issues.
- Clarified review sequence, requiring identification of file paths, configuration files, and line referencing for all significant findings.
- Output and severity guidelines updated to enforce new evidence requirements.
- Existing checklists and references retained; instructions strengthened for better review reproducibility.
v1.0.1
**Rust 2024 edition support and static pool best practices added.**
- Added review points for Rust 2024 edition: RPIT lifetime capture, use of `std::sync::LazyLock`, and reserved keyword handling (`gen`).
- Expanded checklist for type mapping and migration safety regarding edition 2024 reserved names and static pool singleton patterns.
- Clarified and extended Minor/Major findings for edition 2024-specific constructs.
- Augmented "Valid Patterns" to clarify edition 2024 compliance and new Rust language features.
- References and checklist now emphasize best practices for future Rust compatibility.
v1.0.0
Initial release of sqlx-code-review skill.
- Reviews Rust code using sqlx for query safety, pool management, transaction patterns, and migrations.
- Provides checklist and output format for clear, actionable code review findings.
- Calibrates issue severity (Critical, Major, Minor, Informational) with examples.
- Includes quick references and patterns not to flag.
- Emphasizes secure query construction, proper pool usage, and sound migration practices.
Metadata
Frequently Asked Questions
What is Sqlx Code Review?
Reviews sqlx database code for compile-time query checking, connection pool management, migration patterns, and PostgreSQL-specific usage. Use when reviewing... It is an AI Agent Skill for Claude Code / OpenClaw, with 172 downloads so far.
How do I install Sqlx Code Review?
Run "/install sqlx-code-review" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Sqlx Code Review free?
Yes, Sqlx Code Review is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Sqlx Code Review support?
Sqlx Code Review is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Sqlx Code Review?
It is built and maintained by Kevin Anderson (@anderskev); the current version is v1.0.2.
More Skills