代码审查与质量门控指南：五维评估确保代码正确性、安全性与性能

code-review-and-quality by addyosmani/agent-skills

85 周安装量

112 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/addyosmani/agent-skills --skill code-review-and-quality

质量管理软件工程代码质量

🇨🇳中文介绍

代码审查与质量

概述

多维度的代码审查与质量门控。每个变更在合并前都必须经过审查——无一例外。审查涵盖五个维度：正确性、可读性、架构、安全性和性能。标准是："高级工程师是否会批准这个差异和验证过程？"

何时使用

在合并任何 PR 或变更之前
完成功能实现之后
当需要评估其他智能体或模型生成的代码时
重构现有代码时
任何错误修复之后（审查修复和回归测试）

五维审查

每次审查都会从以下维度评估代码：

1. 正确性

代码是否完成了它声称要做的事情？

是否符合规范或任务要求？
是否处理了边界情况（空值、空集、边界值）？
是否处理了错误路径（不仅仅是正常路径）？
是否通过了所有测试？测试是否真正测试了正确的内容？
是否存在差一错误、竞态条件或状态不一致？

2. 可读性与简洁性

另一位工程师（或智能体）能否在没有作者解释的情况下理解这段代码？

命名是否具有描述性且符合项目约定？（避免没有上下文的 temp、data、result）
控制流是否直接明了（避免嵌套三元运算符、深层回调）？
代码组织是否合乎逻辑（相关代码分组、清晰的模块边界）？
是否存在应该被简化的"巧妙"技巧？
能否用更少的行数完成？（用 1000 行代码完成 100 行就能做到的事情是失败的）
抽象是否物有所值？（在第三个用例出现之前不要进行泛化）

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

步骤 1：理解上下文

在查看代码之前，先理解意图：

- 这个变更试图实现什么？
- 它实现了什么规范或任务？
- 预期的行为变化是什么？

步骤 2：先审查测试

测试揭示了意图和覆盖率：

- 变更是否有测试？
- 它们测试的是行为（而不是实现细节）吗？
- 是否覆盖了边界情况？
- 测试名称是否具有描述性？
- 如果代码发生变化，测试能否捕获回归问题？

步骤 3：审查实现

带着五个维度的考量浏览代码：

对于每个更改的文件：
1. 正确性：这段代码是否做了测试说它应该做的事情？
2. 可读性：我能否在没有帮助的情况下理解它？
3. 架构：这符合系统吗？
4. 安全性：有任何漏洞吗？
5. 性能：有任何瓶颈吗？

步骤 4：分类发现的问题

类别	行动	示例
严重	必须在合并前修复	安全漏洞、数据丢失风险、功能损坏
重要	应在合并前修复	缺少测试、错误的抽象、错误处理不当
建议	考虑改进	命名改进、代码风格偏好、可选优化
吹毛求疵	可采纳也可忽略	格式、注释措辞（在 AI 审查中跳过这些）

步骤 5：验证验证过程

检查作者的验证过程：

- 运行了哪些测试？
- 构建是否通过？
- 是否进行了手动测试？
- UI 变更是否有截图？
- 是否有前后对比？

多模型审查模式

使用不同的模型以获得不同的审查视角：

Model A 编写代码
    │
    ▼
Model B 审查正确性和架构
    │
    ▼
Model A 处理反馈
    │
    ▼
人类做出最终决定

这可以捕获单个模型可能遗漏的问题——不同的模型有不同的盲点。

审查智能体的示例提示：

Review this code change for correctness, security, and adherence to
our project conventions. The spec says [X]. The change should [Y].
Flag any issues as Critical, Important, or Suggestion.

在任何重构或实现变更之后，检查是否有孤立的代码：

识别现在无法访问或未使用的代码
明确列出
删除前询问："我应该删除这些现在未使用的元素吗：[列表]？"

不要留下死代码——它会混淆未来的读者和智能体。但不要在不清楚的情况下静默删除。如有疑问，请询问。

DEAD CODE IDENTIFIED:
- formatLegacyDate() in src/utils/date.ts — replaced by formatDate()
- OldTaskCard component in src/components/ — replaced by TaskCard
- LEGACY_API_URL constant in src/config.ts — no remaining references
→ Safe to remove these?

在审查代码时——无论是由你、另一个智能体还是人类编写的：

不要橡皮图章。 没有审查证据的"LGTM"对任何人都没有帮助。
不要弱化真正的问题。 当它是一个会影响生产环境的错误时，说"这可能是一个小问题"是不诚实的。
尽可能量化问题。 "这个 N+1 查询将为列表中的每个项目增加约 50 毫秒"比"这可能很慢"要好。
对有明显问题的方法提出质疑。 在审查中，阿谀奉承是一种失败模式。如果实现有问题，直接指出来并提出替代方案。
优雅地接受否决。 如果作者有完整的上下文并不同意，请尊重他们的判断。

代码审查的一部分是依赖审查：

在添加任何依赖之前：

现有技术栈能解决这个问题吗？（通常可以。）
依赖有多大？（检查包大小影响。）
它是否积极维护？（检查最后提交、未解决问题。）
是否有已知漏洞？（npm audit）
许可证是什么？（必须与项目兼容。）

规则： 优先使用标准库和现有工具，而不是新的依赖。每个依赖都是一项负债。

## Review: [PR/Change title]

### Context
- [ ] I understand what this change does and why

### Correctness
- [ ] Change matches spec/task requirements
- [ ] Edge cases handled
- [ ] Error paths handled
- [ ] Tests cover the change adequately

### Readability
- [ ] Names are clear and consistent
- [ ] Logic is straightforward
- [ ] No unnecessary complexity

### Architecture
- [ ] Follows existing patterns
- [ ] No unnecessary coupling or dependencies
- [ ] Appropriate abstraction level

### Security
- [ ] No secrets in code
- [ ] Input validated at boundaries
- [ ] No injection vulnerabilities
- [ ] Auth checks in place

### Performance
- [ ] No N+1 patterns
- [ ] No unbounded operations
- [ ] Pagination on list endpoints

### Verification
- [ ] Tests pass
- [ ] Build succeeds
- [ ] Manual verification done (if applicable)

### Verdict
- [ ] **Approve** — Ready to merge
- [ ] **Request changes** — Issues must be addressed

常见的合理化借口

合理化借口	现实
"它能用，这就够了"	能用但不可读、不安全或架构错误的代码会产生不断累积的技术债务。
"我写的，所以我知道它是正确的"	作者对自己的假设是盲目的。每个变更都能从另一双眼睛的审视中受益。
"我们以后会清理它"	"以后"永远不会来。审查就是质量门控——利用好它。
"AI 生成的代码可能没问题"	AI 代码需要更多的审查，而不是更少。即使错了，它也显得自信且合理。
"测试通过了，所以它是好的"	测试是必要的，但并不充分。它们无法捕获架构问题、安全问题或可读性问题。

未经任何审查就合并的 PR
只检查测试是否通过（忽略其他维度）的审查
没有实际审查证据的"LGTM"
没有安全重点审查的安全敏感变更
"太大而无法适当审查"的大型 PR
错误修复 PR 没有回归测试

所有严重问题都已解决
所有重要问题都已解决或有明确理由并记录在案地推迟
测试通过
构建成功
验证过程已记录（更改了什么，如何验证的）

2026 年 2 月 16 日

🇺🇸English

Code Review and Quality

Overview

Multi-dimensional code review with quality gates. Every change gets reviewed before merge — no exceptions. Review covers five axes: correctness, readability, architecture, security, and performance. The standard is: "Would a staff engineer approve this diff and the verification story?"

When to Use

Before merging any PR or change
After completing a feature implementation
When another agent or model produced code you need to evaluate
When refactoring existing code
After any bug fix (review both the fix and the regression test)

The Five-Axis Review

Every review evaluates code across these dimensions:

1. Correctness

Does the code do what it claims to do?

Does it match the spec or task requirements?
Are edge cases handled (null, empty, boundary values)?
Are error paths handled (not just the happy path)?
Does it pass all tests? Are the tests actually testing the right things?
Are there off-by-one errors, race conditions, or state inconsistencies?

2. Readability & Simplicity

Can another engineer (or agent) understand this code without the author explaining it?

Are names descriptive and consistent with project conventions? (No temp, data, result without context)
Is the control flow straightforward (avoid nested ternaries, deep callbacks)?
Is the code organized logically (related code grouped, clear module boundaries)?
Are there any "clever" tricks that should be simplified?
Could this be done in fewer lines? (1000 lines where 100 suffice is a failure)
Are abstractions earning their complexity? (Don't generalize until the third use case)
Would comments help clarify non-obvious intent? (But don't comment obvious code.)
Are there dead code artifacts: no-op variables (_unused), backwards-compat shims, or // removed comments?

3. Architecture

Does the change fit the system's design?

Does it follow existing patterns or introduce a new one? If new, is it justified?
Does it maintain clean module boundaries?
Is there code duplication that should be shared?
Are dependencies flowing in the right direction (no circular dependencies)?
Is the abstraction level appropriate (not over-engineered, not too coupled)?

4. Security

Does the change introduce vulnerabilities?

Is user input validated and sanitized?
Are secrets kept out of code, logs, and version control?
Is authentication/authorization checked where needed?
Are SQL queries parameterized (no string concatenation)?
Are outputs encoded to prevent XSS?
Are dependencies from trusted sources with no known vulnerabilities?

5. Performance

Does the change introduce performance problems?

Any N+1 query patterns?
Any unbounded loops or unconstrained data fetching?
Any synchronous operations that should be async?
Any unnecessary re-renders in UI components?
Any missing pagination on list endpoints?
Any large objects created in hot paths?

Review Process

Step 1: Understand the Context

Before looking at code, understand the intent:

- What is this change trying to accomplish?
- What spec or task does it implement?
- What is the expected behavior change?

Step 2: Review the Tests First

Tests reveal intent and coverage:

- Do tests exist for the change?
- Do they test behavior (not implementation details)?
- Are edge cases covered?
- Do tests have descriptive names?
- Would the tests catch a regression if the code changed?

Step 3: Review the Implementation

Walk through the code with the five axes in mind:

For each file changed:
1. Correctness: Does this code do what the test says it should?
2. Readability: Can I understand this without help?
3. Architecture: Does this fit the system?
4. Security: Any vulnerabilities?
5. Performance: Any bottlenecks?

Step 4: Categorize Findings

Category	Action	Example
Critical	Must fix before merge	Security vulnerability, data loss risk, broken functionality
Important	Should fix before merge	Missing test, wrong abstraction, poor error handling
Suggestion	Consider for improvement	Naming improvement, code style preference, optional optimization
Nitpick	Take it or leave it	Formatting, comment wording (skip these in AI reviews)

Step 5: Verify the Verification

Check the author's verification story:

- What tests were run?
- Did the build pass?
- Was the change tested manually?
- Are there screenshots for UI changes?
- Is there a before/after comparison?

Multi-Model Review Pattern

Use different models for different review perspectives:

Model A writes the code
    │
    ▼
Model B reviews for correctness and architecture
    │
    ▼
Model A addresses the feedback
    │
    ▼
Human makes the final call

This catches issues that a single model might miss — different models have different blind spots.

Example prompt for a review agent:

Review this code change for correctness, security, and adherence to
our project conventions. The spec says [X]. The change should [Y].
Flag any issues as Critical, Important, or Suggestion.

Dead Code Hygiene

After any refactoring or implementation change, check for orphaned code:

Identify code that is now unreachable or unused
List it explicitly
Ask before deleting: "Should I remove these now-unused elements: [list]?"

Don't leave dead code lying around — it confuses future readers and agents. But don't silently delete things you're not sure about. When in doubt, ask.

DEAD CODE IDENTIFIED:
- formatLegacyDate() in src/utils/date.ts — replaced by formatDate()
- OldTaskCard component in src/components/ — replaced by TaskCard
- LEGACY_API_URL constant in src/config.ts — no remaining references
→ Safe to remove these?

Honesty in Review

When reviewing code — whether written by you, another agent, or a human:

Don't rubber-stamp. "LGTM" without evidence of review helps no one.
Don't soften real issues. "This might be a minor concern" when it's a bug that will hit production is dishonest.
Quantify problems when possible. "This N+1 query will add ~50ms per item in the list" is better than "this could be slow."
Push back on approaches with clear problems. Sycophancy is a failure mode in reviews. If the implementation has issues, say so directly and propose alternatives.
Accept override gracefully. If the author has full context and disagrees, defer to their judgment.

Dependency Discipline

Part of code review is dependency review:

Before adding any dependency:

Does the existing stack solve this? (Often it does.)
How large is the dependency? (Check bundle impact.)
Is it actively maintained? (Check last commit, open issues.)
Does it have known vulnerabilities? (npm audit)
What's the license? (Must be compatible with the project.)

Rule: Prefer standard library and existing utilities over new dependencies. Every dependency is a liability.

The Review Checklist

## Review: [PR/Change title]

### Context
- [ ] I understand what this change does and why

### Correctness
- [ ] Change matches spec/task requirements
- [ ] Edge cases handled
- [ ] Error paths handled
- [ ] Tests cover the change adequately

### Readability
- [ ] Names are clear and consistent
- [ ] Logic is straightforward
- [ ] No unnecessary complexity

### Architecture
- [ ] Follows existing patterns
- [ ] No unnecessary coupling or dependencies
- [ ] Appropriate abstraction level

### Security
- [ ] No secrets in code
- [ ] Input validated at boundaries
- [ ] No injection vulnerabilities
- [ ] Auth checks in place

### Performance
- [ ] No N+1 patterns
- [ ] No unbounded operations
- [ ] Pagination on list endpoints

### Verification
- [ ] Tests pass
- [ ] Build succeeds
- [ ] Manual verification done (if applicable)

### Verdict
- [ ] **Approve** — Ready to merge
- [ ] **Request changes** — Issues must be addressed

Common Rationalizations

Rationalization	Reality
"It works, that's good enough"	Working code that's unreadable, insecure, or architecturally wrong creates debt that compounds.
"I wrote it, so I know it's correct"	Authors are blind to their own assumptions. Every change benefits from another set of eyes.
"We'll clean it up later"	Later never comes. The review is the quality gate — use it.
"AI-generated code is probably fine"	AI code needs more scrutiny, not less. It's confident and plausible, even when wrong.
"The tests pass, so it's good"	Tests are necessary but not sufficient. They don't catch architecture problems, security issues, or readability concerns.

Red Flags

PRs merged without any review
Review that only checks if tests pass (ignoring other axes)
"LGTM" without evidence of actual review
Security-sensitive changes without security-focused review
Large PRs that are "too big to review properly"
No regression tests with bug fix PRs

Verification

After review is complete:

All Critical issues are resolved
All Important issues are resolved or explicitly deferred with justification
Tests pass
Build succeeds
The verification story is documented (what changed, how it was verified)

Weekly Installs

Repository

addyosmani/agent-skills

GitHub Stars

First Seen

Feb 16, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

codex24

gemini-cli23

github-copilot23

amp23

kimi-cli23

opencode23

AI绩效改进计划PIP技能：提升AI任务执行主动性、交付质量与问题解决能力

967 周安装