Skip to main content

when-reviewing-pull-request-orchestrate-comprehensive-code-review

Orchestrates a comprehensive code review process using specialized agents to ensure quality across multiple dimensions in a systematic workflow.

Install this skill

or
0/100

Security score

The when-reviewing-pull-request-orchestrate-comprehensive-code-review skill was audited on May 23, 2026 and we found 50 security issues across 3 threat categories, including 18 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

medium line 87

Template literal with variable interpolation in command context

SourceSKILL.md
87```bash
medium line 104

Template literal with variable interpolation in command context

SourceSKILL.md
104```bash
high line 135

Template literal with variable interpolation in command context

SourceSKILL.md
135**Memory Pattern**: `code-review/${PR_ID}/phase-1/code-analyzer/lint-results`
high line 156

Template literal with variable interpolation in command context

SourceSKILL.md
156**Memory Pattern**: `code-review/${PR_ID}/phase-1/tester/test-results`
high line 173

Template literal with variable interpolation in command context

SourceSKILL.md
173**Memory Pattern**: `code-review/${PR_ID}/phase-1/qa-engineer/coverage-report`
high line 190

Template literal with variable interpolation in command context

SourceSKILL.md
190**Memory Pattern**: `code-review/${PR_ID}/phase-1/code-analyzer/build-status`
medium line 193

Template literal with variable interpolation in command context

SourceSKILL.md
193```bash
medium line 214

Template literal with variable interpolation in command context

SourceSKILL.md
214await memory_store(`code-review/${PR_ID}/phase-1/automated-feedback`);
high line 286

Template literal with variable interpolation in command context

SourceSKILL.md
286**Memory Pattern**: `code-review/${PR_ID}/phase-2/code-analyzer/quality-review`
high line 328

Template literal with variable interpolation in command context

SourceSKILL.md
328**Memory Pattern**: `code-review/${PR_ID}/phase-2/security-manager/security-review`
high line 362

Template literal with variable interpolation in command context

SourceSKILL.md
362**Memory Pattern**: `code-review/${PR_ID}/phase-2/performance-analyzer/performance-review`
high line 395

Template literal with variable interpolation in command context

SourceSKILL.md
395**Memory Pattern**: `code-review/${PR_ID}/phase-2/system-architect/architecture-review`
high line 427

Template literal with variable interpolation in command context

SourceSKILL.md
427**Memory Pattern**: `code-review/${PR_ID}/phase-2/api-documentation-specialist/docs-review`
medium line 439

Template literal with variable interpolation in command context

SourceSKILL.md
439```bash
medium line 458

Template literal with variable interpolation in command context

SourceSKILL.md
458```bash
high line 506

Template literal with variable interpolation in command context

SourceSKILL.md
506**Memory Pattern**: `code-review/${PR_ID}/phase-3/tester/integration-tests`
medium line 509

Template literal with variable interpolation in command context

SourceSKILL.md
509```bash
high line 533

Template literal with variable interpolation in command context

SourceSKILL.md
533**Memory Pattern**: `code-review/${PR_ID}/phase-3/devops-engineer/deployment-impact`
high line 558

Template literal with variable interpolation in command context

SourceSKILL.md
558**Memory Pattern**: `code-review/${PR_ID}/phase-3/product-manager/user-impact`
medium line 561

Template literal with variable interpolation in command context

SourceSKILL.md
561```bash
high line 587

Template literal with variable interpolation in command context

SourceSKILL.md
587**Memory Pattern**: `code-review/${PR_ID}/phase-3/code-reviewer/risk-analysis`
medium line 612

Template literal with variable interpolation in command context

SourceSKILL.md
612```bash
medium line 620

Template literal with variable interpolation in command context

SourceSKILL.md
620```markdown
medium line 662

Template literal with variable interpolation in command context

SourceSKILL.md
662```bash
medium line 686

Template literal with variable interpolation in command context

SourceSKILL.md
686message: `${blocking.length} blocking issue(s) must be fixed before merge.`
medium line 694

Template literal with variable interpolation in command context

SourceSKILL.md
694message: `Approved with ${highPriority.length} recommendations to address before or after merge.`
medium line 769

Template literal with variable interpolation in command context

SourceSKILL.md
769```bash
medium line 779

Template literal with variable interpolation in command context

SourceSKILL.md
779```bash
medium line 791

Template literal with variable interpolation in command context

SourceSKILL.md
791```bash
medium line 806

Template literal with variable interpolation in command context

SourceSKILL.md
806```bash
medium line 818

Template literal with variable interpolation in command context

SourceSKILL.md
818```bash
medium line 857

Template literal with variable interpolation in command context

SourceSKILL.md
857```bash
medium line 869

Template literal with variable interpolation in command context

SourceSKILL.md
869```bash
medium line 878

Template literal with variable interpolation in command context

SourceSKILL.md
878```bash
medium line 891

Template literal with variable interpolation in command context

SourceSKILL.md
891```bash
medium line 916

Template literal with variable interpolation in command context

SourceSKILL.md
916```bash
medium line 981

Template literal with variable interpolation in command context

SourceSKILL.md
981```bash
medium line 1059

Template literal with variable interpolation in command context

SourceSKILL.md
1059```bash
medium line 1086

Template literal with variable interpolation in command context

SourceSKILL.md
1086```bash
medium line 1118

Template literal with variable interpolation in command context

SourceSKILL.md
1118```bash
high line 1170

Template literal with variable interpolation in command context

SourceSKILL.md
1170- [ ] `code-review/${PR_ID}/metadata` - PR information
high line 1171

Template literal with variable interpolation in command context

SourceSKILL.md
1171- [ ] `code-review/${PR_ID}/phase-1/*` - Automated check results
high line 1172

Template literal with variable interpolation in command context

SourceSKILL.md
1172- [ ] `code-review/${PR_ID}/phase-2/*` - Specialist review findings
high line 1173

Template literal with variable interpolation in command context

SourceSKILL.md
1173- [ ] `code-review/${PR_ID}/phase-3/*` - Integration analysis
high line 1174

Template literal with variable interpolation in command context

SourceSKILL.md
1174- [ ] `code-review/${PR_ID}/phase-4/final-summary` - Comprehensive report
low line 416

Webhook reference - potential data exfiltration

SourceSKILL.md
416"file": "src/api/webhooks.ts",
low line 417

Webhook reference - potential data exfiltration

SourceSKILL.md
417"issue": "New webhook endpoint /api/webhooks/stripe missing API documentation",
low line 648

Webhook reference - potential data exfiltration

SourceSKILL.md
6484. [MEDIUM/DOCUMENTATION] Add API documentation for webhook endpoint
low line 751

Webhook reference - potential data exfiltration

SourceSKILL.md
751- Add JSDoc for webhook endpoint
low line 318

Access to .env file

SourceSKILL.md
318"suggestion": "Move to environment variables and add to .env.example"
Scanned on May 23, 2026
View Security Dashboard
Installation guide →
GitHub Stars 4
Rate this skill
Categorydevelopment
UpdatedJune 15, 2026
openclawtestingbackendqa-engineerdevops-srebackend-developerproduct-managertechnical-pmdevelopmentproduct
DNYoussef/ai-chrome-extension