fix-review
Verify fix commits address audit findings without new bugs
Best use case
fix-review is best used when you need a repeatable AI agent workflow instead of a one-off prompt. It is especially useful for teams working in multi. Verify fix commits address audit findings without new bugs
Verify fix commits address audit findings without new bugs
Users should expect a more consistent workflow output, faster repeated execution, and less time spent rewriting prompts from scratch.
Practical example
Example input
Use the "fix-review" skill to help with this workflow task. Context: Verify fix commits address audit findings without new bugs
Example output
A structured workflow result with clearer steps, more consistent formatting, and an output that is easier to reuse in the next run.
When to use this skill
- Use this skill when you want a reusable workflow rather than writing the same prompt again and again.
When not to use this skill
- Do not use this when you only need a one-off answer and do not need a reusable workflow.
- Do not use it if you cannot install or maintain the related files, repository context, or supporting tools.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/fix-review/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How fix-review Compares
| Feature / Agent | fix-review | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Verify fix commits address audit findings without new bugs
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Fix Review ## Overview Verify that fix commits properly address audit findings without introducing new bugs or security vulnerabilities. ## When to Use This Skill Use this skill when you need to verify fix commits address audit findings without new bugs. Use this skill when: - Reviewing commits that address security audit findings - Verifying that fixes don't introduce new vulnerabilities - Ensuring code changes properly resolve identified issues - Validating that remediation efforts are complete and correct ## Instructions This skill helps verify that fix commits properly address audit findings: 1. **Review Fix Commits**: Analyze commits that claim to fix audit findings 2. **Verify Resolution**: Ensure the original issue is properly addressed 3. **Check for Regressions**: Verify no new bugs or vulnerabilities are introduced 4. **Validate Completeness**: Ensure all aspects of the finding are resolved ## Review Process When reviewing fix commits: 1. Compare the fix against the original audit finding 2. Verify the fix addresses the root cause, not just symptoms 3. Check for potential side effects or new issues 4. Validate that tests cover the fixed scenario 5. Ensure no similar vulnerabilities exist elsewhere ## Best Practices - Review fixes in context of the full codebase - Verify test coverage for the fixed issue - Check for similar patterns that might need fixing - Ensure fixes follow security best practices - Document the resolution approach ## Resources For more information, see the [source repository](https://github.com/trailofbits/skills/tree/main/plugins/fix-review).
Related Skills
woocommerce-code-review
Review WooCommerce code changes for coding standards compliance. Use when reviewing code locally, performing automated PR reviews, or checking code quality.
security-review
Use this skill when adding authentication, handling user input, working with secrets, creating API endpoints, or implementing payment/sensitive features. Provides comprehensive security checklist and patterns.
performance-testing-review-multi-agent-review
Use when working with performance testing review multi agent review
performance-testing-review-ai-review
You are an expert AI-powered code review specialist combining automated static analysis, intelligent pattern recognition, and modern DevOps practices. Leverage AI tools (GitHub Copilot, Qodo, GPT-5, C
error-debugging-multi-agent-review
Use when working with error debugging multi agent review
comprehensive-review-pr-enhance
You are a PR optimization expert specializing in creating high-quality pull requests that facilitate efficient code reviews. Generate comprehensive PR descriptions, automate review processes, and ensure PRs follow best practices for clarity, size, and reviewability.
comprehensive-review-full-review
Use when working with comprehensive review full review
codex-review
Professional code review with auto CHANGELOG generation, integrated with Codex AI
code-review-excellence
Master effective code review practices to provide constructive feedback, catch bugs early, and foster knowledge sharing while maintaining team morale. Use when reviewing pull requests, establishing review standards, or mentoring developers.
code-review-checklist
Comprehensive checklist for conducting thorough code reviews covering functionality, security, performance, and maintainability
code-review-ai-ai-review
You are an expert AI-powered code review specialist combining automated static analysis, intelligent pattern recognition, and modern DevOps practices. Leverage AI tools (GitHub Copilot, Qodo, GPT-5, C
cc-skill-security-review
Use this skill when adding authentication, handling user input, working with secrets, creating API endpoints, or implementing payment/sensitive features. Provides comprehensive security checklist a...