review-swarm
Parallel read-only multi-agent code review of git diffs. Use when: reviewing diffs for regressions, security risks, performance issues, or wanting a parallel review swarm.
Best use case
review-swarm is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Parallel read-only multi-agent code review of git diffs. Use when: reviewing diffs for regressions, security risks, performance issues, or wanting a parallel review swarm.
Teams using review-swarm should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/review-swarm/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How review-swarm Compares
| Feature / Agent | review-swarm | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Parallel read-only multi-agent code review of git diffs. Use when: reviewing diffs for regressions, security risks, performance issues, or wanting a parallel review swarm.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
Related Guides
SKILL.md Source
# Review Swarm Review a diff with four read-only sub-agents in parallel, then have the main agent filter, order, and summarize only the issues that matter. This skill is review-only: sub-agents do not edit files, and the main agent does not apply fixes as part of this workflow. ## Step 1: Determine Scope and Intent Prefer this scope order: 1. Files or paths explicitly named by the user 2. Current git changes 3. An explicit branch, commit, or PR diff requested by the user 4. Most recently modified tracked files, only if the user asked for a review and there is no clearer diff If there is no clear review scope, stop and say so briefly. When using git changes, choose the smallest correct diff command: - unstaged work: `git diff` - staged work: `git diff --cached` - mixed staged and unstaged work: review both - explicit branch or commit comparison: use exactly what the user requested Before launching reviewers, read the closest local instructions and any relevant project docs for the touched area, such as: - `AGENTS.md` - repo workflow docs - architecture or contract docs for the touched module Build a short intent packet for the reviewers: 1. What behavior is meant to change 2. What behavior should remain unchanged 3. Any stated or inferred constraints, such as compatibility, rollout, security, or migration expectations If the user did not state the intent clearly, infer it from the diff and say that the inference may be incomplete. ## Step 2: Launch Four Read-Only Reviewers in Parallel Launch four sub-agents when the scope is large enough for parallel review to help. For a tiny diff or one very small file, it is acceptable to review locally instead. For every sub-agent: - give the same scope and the same intent packet - state that the sub-agent is read-only - do not let the sub-agent edit files, run `apply_patch`, stage changes, commit, or perform any other state-mutating action - ask for concise findings only - ask for: file and line or symbol, issue, why it matters, recommended follow-up, and confidence - tell the sub-agent to avoid nits, style preferences, and speculative concerns without concrete impact - tell the sub-agent to send findings back to the main agent only Use these four review roles. ### Sub-Agent 1: Intent and Regression Review Review whether the diff matches the intended behavior change without introducing extra behavior drift. Check for: 1. Unintended behavior changes outside the stated scope 2. Broken edge cases or fallback paths 3. Contract drift between callers and callees 4. Missing updates to adjacent flows that should change together This sub-agent is read-only. It must not edit files, apply patches, or make any other workspace changes. Recommended sub-agent role: `reviewer` ### Sub-Agent 2: Security and Privacy Review Review the diff for security regressions, privacy risks, and trust-boundary mistakes. Check for: 1. Missing or weakened authn or authz checks 2. Unsafe input handling, injection risks, or validation gaps 3. Secret, token, or sensitive data exposure 4. Risky defaults, permission expansion, or trust of unverified data This sub-agent is read-only. It must not edit files, apply patches, or make any other workspace changes. Recommended sub-agent role: `reviewer` ### Sub-Agent 3: Performance and Reliability Review Review the diff for new cost, fragility, or operational risk. Check for: 1. Duplicate work, redundant I/O, or unnecessary recomputation 2. Added work on startup, render, request, or other hot paths 3. Leaks, missing cleanup, retry storms, or subscription drift 4. Ordering, race, or failure-handling problems that make the change brittle This sub-agent is read-only. It must not edit files, apply patches, or make any other workspace changes. Recommended sub-agent role: `reviewer` ### Sub-Agent 4: Contracts and Coverage Review Review the diff for compatibility gaps and missing safety nets. Check for: 1. API, schema, type, config, or feature-flag mismatches 2. Migration or backward-compatibility fallout 3. Missing or weak tests for the changed behavior 4. Missing logs, metrics, assertions, or error paths that make regressions harder to detect This sub-agent is read-only. It must not edit files, apply patches, or make any other workspace changes. Recommended sub-agent role: `reviewer` Report only issues that materially affect correctness, security, privacy, reliability, compatibility, or confidence in the change. It is better to miss a nit than to bury the user in low-value noise. ## Step 3: Aggregate and Filter Findings The main agent owns synthesis. Treat sub-agent output as raw review input, not final output. Merge findings across all four reviewers and filter aggressively: - drop duplicates - drop weak or speculative claims - drop issues that conflict with the stated intent - drop minor style or readability comments unless they hide a real bug or maintenance risk Normalize surviving findings into this shape: 1. File and line or nearest symbol 2. Category: regression, security, reliability, or contracts 3. Severity: high, medium, or low 4. Why it matters 5. Recommended fix or follow-up 6. Confidence: high, medium, or low If a reviewer may be correct but the intent is unclear, turn it into an open question instead of a finding. ## Step 4: Order the Output Present findings in this order: 1. High-severity, high-confidence issues 2. Medium-severity issues that are likely worth fixing before merge 3. Lower-severity issues or follow-ups that can wait Keep the review concise. Findings should be actionable and evidence-backed. If there are no material issues, say that directly instead of manufacturing feedback. ## Step 5: Recommend a Clear Path Forward After the findings, give the user a short path forward: - what to fix before merge - what to improve if time permits - what can safely be left alone When helpful, group the path forward into: - `fix now` - `fix soon` - `optional follow-up` Do not implement fixes as part of this skill. The output is a read-only review plus a prioritized recommendation.
Related Skills
swarm-intelligence
Build swarm intelligence systems where multiple AI agents collaborate to make predictions and solve complex problems. Use when: implementing ensemble AI predictions, building consensus-based decision systems, creating multi-agent prediction markets.
contract-review
Analyze contracts for risks, check completeness, and provide actionable recommendations. Use when a user asks to review a contract, check an agreement for red flags, analyze contract terms, find risky clauses, review an NDA, evaluate a service agreement, or audit employment contract terms. Supports employment contracts, NDAs, service agreements, and vendor contracts.
code-reviewer
Perform thorough code reviews with actionable, prioritized feedback. Use when a user asks to review code, check code quality, find bugs, review a pull request, audit code for issues, or get feedback on implementation. Covers correctness, security, performance, readability, and best practices across languages.
bug-hunt-swarm
Parallel read-only multi-agent root-cause investigation for bugs and regressions. Use when: investigating bugs, finding root causes, tracing regressions, or diagnosing failures with multi-agent swarm.
agent-swarm-orchestration
Coordinate multiple AI agents working together on complex tasks — routing, handoffs, consensus, memory sharing, and quality gates. Use when tasks involve building multi-agent systems, coordinating specialist agents in a pipeline, implementing agent-to-agent communication, designing swarm architectures, setting up agent orchestration frameworks, or building autonomous agent teams with supervision and quality control. Covers hierarchical, mesh, and pipeline topologies.
zustand
You are an expert in Zustand, the small, fast, and scalable state management library for React. You help developers manage global state without boilerplate using Zustand's hook-based stores, selectors for performance, middleware (persist, devtools, immer), computed values, and async actions — replacing Redux complexity with a simple, un-opinionated API in under 1KB.
zoho
Integrate and automate Zoho products. Use when a user asks to work with Zoho CRM, Zoho Books, Zoho Desk, Zoho Projects, Zoho Mail, or Zoho Creator, build custom integrations via Zoho APIs, automate workflows with Deluge scripting, sync data between Zoho apps and external systems, manage leads and deals, automate invoicing, build custom Zoho Creator apps, set up webhooks, or manage Zoho organization settings. Covers Zoho CRM, Books, Desk, Projects, Creator, and cross-product integrations.
zod
You are an expert in Zod, the TypeScript-first schema declaration and validation library. You help developers define schemas that validate data at runtime AND infer TypeScript types at compile time — eliminating the need to write types and validators separately. Used for API input validation, form validation, environment variables, config files, and any data boundary.
zipkin
Deploy and configure Zipkin for distributed tracing and request flow visualization. Use when a user needs to set up trace collection, instrument Java/Spring or other services with Zipkin, analyze service dependencies, or configure storage backends for trace data.
zig
Expert guidance for Zig, the systems programming language focused on performance, safety, and readability. Helps developers write high-performance code with compile-time evaluation, seamless C interop, no hidden control flow, and no garbage collector. Zig is used for game engines, operating systems, networking, and as a C/C++ replacement.
zed
Expert guidance for Zed, the high-performance code editor built in Rust with native collaboration, AI integration, and GPU-accelerated rendering. Helps developers configure Zed, create custom extensions, set up collaborative editing sessions, and integrate AI assistants for productive coding.
zeabur
Expert guidance for Zeabur, the cloud deployment platform that auto-detects frameworks, builds and deploys applications with zero configuration, and provides managed services like databases and message queues. Helps developers deploy full-stack applications with automatic scaling and one-click marketplace services.