rails-code-review
Portable staff-level Rails code review workflow for any Rails project: local changes, branch diffs, pull requests, Rails architecture, Rails conventions, and maintainability reviews. Use this whenever the user asks to review Rails code or Rails application changes. If the review target is not explicit, ask whether to review local changes, this branch against main, or a pull request before proceeding.
What this skill does
# Rails Code Review Review Rails changes with concrete repository evidence. `SKILL.md` defines the workflow; the bundled references provide context, examples, review lenses, and detailed Rails component checks. Resolve bundled reference paths relative to this `SKILL.md` file, not relative to the Rails project being reviewed. In Codex or Claude Code plugin installs, use the skill path shown in the loaded skill block and read: - `<rails-code-review skill directory>/references/project-discovery.md` - `<rails-code-review skill directory>/references/review-rubric.md` If a direct `references/...` read fails, first locate the `rails-code-review` skill directory in the installed plugin bundle or local skill cache, then read the files from its `references/` directory. Do not report missing references until checking that skill-bundle location. Read the reference after identifying the target and changed files. Use it to identify code that fights Rails behavior or bypasses Rails primitives, not to impose generic style. This skill must work in any Rails project. Discover the app's Rails version, testing setup, database, frontend choices, background job backend, authentication and authorization patterns, and local instructions before applying the rubric. ## Intake First identify the review target. If the user did not say which one, ask one concise question: ```text Which review target should I use: local staged/uncommitted changes, this branch against main, or a pull request? ``` Use the explicit target when provided: - Local staged or uncommitted code: review `git diff --staged` and `git diff`; include committed-but-unpushed changes only if the user asks for all local changes. - Branch against main: compare the current branch with the repository's main branch using the merge base, for example `git diff "$(git merge-base HEAD origin/main)"..HEAD` after confirming the base branch. - Pull request review: use the repository's pull request tooling when available. Read existing inline comments if the user wants feedback posted or asks you to avoid duplicates. Do not post PR comments, resolve threads, stage, commit, or run destructive commands unless the user explicitly asks. ## Review Workflow 1. Collect the diff for the chosen target. 2. Read repository instructions and project docs that apply to changed files. 3. Read `references/project-discovery.md` from this skill directory to adapt the review to this app. 4. Read `references/review-rubric.md` from this skill directory for source context and detailed review criteria. 5. Inspect surrounding code only to answer concrete questions raised by the diff. 6. Compare the change against existing local patterns. 7. Report only evidence-backed findings. Ignore generated and lock files unless the issue is specifically about dependency or generated-artifact drift. Leave whitespace, house style, and simple linting to the project. Human review should focus on behavior, design, risk, and changeability. ## Finding Rules Only report findings that are backed by repository evidence. - Include file and line whenever possible. - Explain the runtime or maintenance consequence, not just the preference. - Separate correctness, security, performance, framework alignment, and maintainability findings. - Avoid speculative rewrites. If a concern is only project preference, omit it. - Use the reference rubric as calibration, then judge the local code. Severity guide: - `P0`: breaks production, leaks data, corrupts data, or creates an urgent security issue. - `P1`: likely bug, security issue, migration hazard, or severe performance problem. - `P2`: maintainability, Rails alignment, or reliability issue that will likely cost the team soon. - `P3`: small cleanup, naming, or consistency issue worth considering but not blocking. ## Output Lead with findings. Keep the review brief and actionable. If issues were found: ```markdown N issues found. [1-3 sentence summary of overall risk and the main themes.] 1. `path/to/file.rb:42` - [P1] [category] Short title The issue and why it matters. Suggested fix: concrete fix when straightforward. Confidence: high|medium|low. ``` If no issues were found: ```markdown No issues found. [1-3 sentences explaining the target reviewed, the main Rails areas checked, and any residual test or runtime risk.] ``` For PR posting, only when asked, convert each finding into a concise inline comment and post a single review body summarizing the count. Do not duplicate already-addressed inline comments.
Related in Code Review
gstack
IncludedFast headless browser for QA testing and site dogfooding. Navigate pages, interact with elements, verify state, diff before/after, take annotated screenshots, test responsive layouts, forms, uploads, dialogs, and capture bug evidence. Use when asked to open or test a site, verify a deployment, dogfood a user flow, or file a bug with screenshots. (gstack)
startup-due-diligence
IncludedLegal due diligence review for seed-stage and Series A startups (US, Delaware C-Corp focus). Supports both investor and founder perspectives. Capabilities include: (1) Interactive document review and issue spotting; (2) Document request list generation; (3) Cap table and SAFE/convertible note analysis; (4) Red flag identification with severity ratings; (5) Diligence report generation. TRIGGERS: due diligence, DD, startup investment, cap table review, Series A, seed round, investor diligence, legal review startup, SAFE analysis, convertible note, 409A, founder vesting.
interview-master
IncludedThis skill should be used when the user asks to "generate interview questions", "prepare for interview", "optimize resume", "conduct mock interview", "analyze git commits for resume", "generate resume from code", "review my resume", or mentions interview preparation, career assistance, or extracting project experience from git history. Provides comprehensive interview and career development guidance for both job seekers and interviewers.
fix-issue
IncludedFixes GitHub issues using parallel analysis agents for root cause investigation, code exploration, and regression detection. Reads issue context from gh CLI, searches codebase and memory for related patterns, generates a fix with tests, and links the resolution back to the issue via PR. Includes prevention analysis to avoid recurrence. Use when debugging errors, resolving regressions, fixing bugs, or triaging issues.
sf-apex
IncludedGenerates and reviews Salesforce Apex code with 150-point scoring. TRIGGER when: user writes, reviews, or fixes Apex classes, triggers, test classes, batch/queueable/schedulable jobs, or touches .cls/.trigger files. DO NOT TRIGGER when: LWC JavaScript (use sf-lwc), Flow XML (use sf-flow), SOQL-only queries (use sf-soql), or non-Salesforce code.
swift-development
IncludedComprehensive Swift development for building, testing, and deploying iOS/macOS applications. Use when Claude needs to: (1) Build Swift packages or Xcode projects from command line, (2) Run tests with XCTest or Swift Testing framework, (3) Manage iOS simulators with simctl, (4) Handle code signing, provisioning profiles, and app distribution, (5) Format or lint Swift code with SwiftFormat/SwiftLint, (6) Work with Swift Package Manager (SPM), (7) Implement Swift 6 concurrency patterns (async/await, actors, Sendable), (8) Create SwiftUI views with MVVM architecture, (9) Set up Core Data or SwiftData persistence, or any other Swift/iOS/macOS development tasks.