Skills
.Work. You
Rest

pr-review

Official

Security-first PR reviews that catch risks early.

Software Engineering#security#dependencies#supply-chain#privacy#code-review#PII#pr-review
AuthorOneKeyHQ
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill provides a security-first PR review checklist to help reviewers focus on risk areas when evaluating diffs/PRs, especially changes involving authentication, networking, sensitive data, or dependency/lockfile updates. Focus on secret/PII leakage risk, supply-chain risk (npm + node_modules inspection), cross-platform architecture (extension/mobile/desktop/web), and React performance (hooks + re-render hotspots). Avoid UI style nitpicks.

Core Features & Use Cases

  • Security-first scope: Prioritize secrets, PII, and privacy in PR diffs.
  • AuthN / AuthZ checks: Ensure authentication/authorization boundaries are correct and cannot be bypassed.
  • Dependency & supply-chain review: Inspect changes to dependencies and lockfiles for potential risks.
  • Cross-platform considerations: Review across extension/mobile/desktop/web layers.

Quick Start

When reviewing a PR, run the pr-review skill to generate a safety-focused diff analysis and remediation checklist.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: pr-review
Download link: https://github.com/OneKeyHQ/app-monorepo/archive/main.zip#pr-review

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository