/code-review-give¶
Workflow Diagram¶
Now I have the full source content. Let me generate the diagrams.
Overview¶
High-level workflow from target input through the four steps, reflection quality gate, and final recommendation.
flowchart TD
START(["Start: --give target"]) --> S0A
subgraph S0["Step 0: Load Project Conventions"]
S0A["Read CLAUDE.md + .claude/CLAUDE.md"] --> S0B["Read style configs<br/>pyproject.toml, eslintrc, biome.json"]
S0B --> S0C["Check code-review-instructions.md"]
S0C --> S0D["Sample 1-2 sibling files"]
S0D --> S0E["Analyze project conventions"]
end
S0E --> S1A
subgraph S1["Step 1: Fetch and Inventory"]
S1A["Fetch diff<br/>gh pr diff / git diff"] --> S1B["Understand PR goal<br/>from description"]
S1B --> S1C["Build coverage manifest<br/>git diff --name-only"]
S1C --> S1D{"PR has existing<br/>review comments?"}
S1D -->|Yes| S1E["Fetch prior feedback<br/>gh api pulls/N/comments + reviews"]
S1D -->|No| S1F["Record: no prior feedback"]
S1E --> S1G["Record PRIOR_FEEDBACK items"]
S1G --> S1H["Inventory complete"]
S1F --> S1H
end
S1H --> S2["Step 2: Multi-Pass Review<br/>(see detail diagram)"]
S2 --> S3A
subgraph S3["Step 3: Format Output"]
S3A["Write summary<br/>1-2 sentence assessment"] --> S3B["Report coverage manifest<br/>Files reviewed: N/N"]
S3B --> S3C{"Prior feedback<br/>was recorded?"}
S3C -->|Yes| S3D["Reconcile each item<br/>ADDRESSED or STILL_OPEN"]
S3C -->|No| S3E["Skip reconciliation"]
S3D --> S3F["Format findings by severity<br/>CRITICAL / IMPORTANT / MINOR / QUESTION"]
S3E --> S3F
end
S3F --> R1
subgraph REFLECT["Reflection Quality Gate"]
R1{"All manifest files<br/>evaluated?"}:::gate
R1 -->|Yes| R2{"All 6 mandatory dims<br/>checked per file?"}:::gate
R2 -->|Yes| R3{"Security pass<br/>completed?"}:::gate
R3 -->|Yes| R4{"Async present:<br/>concurrency pass done?"}:::gate
R4 -->|Yes| R5{"Prior feedback<br/>reconciled?"}:::gate
R5 -->|Yes| R6{"Severity ratings<br/>honest?"}:::gate
end
R1 -->|No| REDO["Address gaps in review"]
R2 -->|No| REDO
R3 -->|No| REDO
R4 -->|No| REDO
R5 -->|No| REDO
R6 -->|No| REDO
REDO --> S2
R6 -->|Yes| REC{Recommendation}
REC -->|"No issues or minor only"| APPROVE(["APPROVE"]):::success
REC -->|"Critical / important findings"| CHANGES(["REQUEST_CHANGES"])
REC -->|"Questions / discussion needed"| COMMENT(["COMMENT"])
subgraph Legend[" Legend "]
direction LR
LPROC["Process"] ~~~ LDEC{"Decision"} ~~~ LTERM(["Terminal"])
LGATE["Quality Gate"]:::gate ~~~ LSUCC(["Success"]):::success
end
classDef gate fill:#ff6b6b,color:white
classDef success fill:#51cf66,color:whiteStep 2 Detail: Multi-Pass Review¶
Expands the per-file dimension loop, cross-file security pass, and conditional concurrency pass. Conditional dimensions (Performance, Concurrency/Async, Accessibility) are evaluated independently per file; multiple can apply to the same file.
flowchart TD
START(["Begin Step 2"]) --> NEXT
NEXT{"Next file in<br/>coverage manifest?"}
NEXT -->|"Yes: select file"| D1
NEXT -->|"No: all files done"| SECHEAD
subgraph MANDATORY["Mandatory Dimensions (per file)"]
D1["1. Correctness<br/>Logic, off-by-one, null, return types"] --> D2["2. Security<br/>Injection, auth gaps, secrets, SSRF"]
D2 --> D3["3. Error Handling<br/>Missing catches, swallowed errors, null safety"]
D3 --> D4["4. Data Integrity<br/>Race conditions, non-atomic writes, stale data"]
D4 --> D5["5. API Contracts<br/>Breaking changes, validation, schema drift"]
D5 --> D6["6. Test Coverage<br/>Missing tests, edge cases, meaningful assertions"]
end
D6 --> CPERF
subgraph CONDITIONAL["Conditional Dimensions (per file, independent checks)"]
CPERF{"Performance<br/>relevant?"}
CPERF -->|Yes| PERF["Performance<br/>Hot paths, N+1, allocations, indexes"]
CPERF -->|No| CASYNC
PERF --> CASYNC
CASYNC{"Async or threading<br/>present?"}
CASYNC -->|Yes| ASYNCDIM["Concurrency/Async<br/>REQUIRED when present"]:::gate
CASYNC -->|No| CA11Y
ASYNCDIM --> CA11Y
CA11Y{"UI changes<br/>present?"}
CA11Y -->|Yes| A11Y["Accessibility<br/>ARIA, keyboard nav, screen readers"]
CA11Y -->|No| RECORD
A11Y --> RECORD
end
RECORD["Record findings for file"] --> NEXT
SECHEAD["Security Pass: cross-file"]:::gate --> SEC1
subgraph SEC["Security Pass: 6 Checks"]
SEC1["Input validation<br/>Length limits, content-type"] --> SEC2["Path traversal<br/>User-supplied file paths"]
SEC2 --> SEC3["Hardcoded secrets<br/>Tokens, keys, passwords, private keys"]
SEC3 --> SEC4["Auth/authz<br/>Missing checks, broken logic"]
SEC4 --> SEC5["Injection<br/>SQL, XSS, command injection"]
SEC5 --> SEC6["SSRF<br/>User-controlled URL fetching"]
end
SEC6 --> HASASYNC
HASASYNC{"Diff contains async<br/>functions or threading?"}
HASASYNC -->|No| DONE(["Step 2 Complete"])
HASASYNC -->|Yes| CONCHEAD["Concurrency/Async Pass"]:::gate
CONCHEAD --> C1
subgraph CONC["Concurrency/Async Pass: 5 Checks"]
C1["Event loop blocking<br/>Sync calls inside async functions"] --> C2["Thread safety<br/>Shared mutable state without locks"]
C2 --> C3["Race conditions<br/>TOCTOU, check-then-act patterns"]
C3 --> C4["Interrupt handling<br/>EOFError, KeyboardInterrupt, CancelledError"]
C4 --> C5["Lock ordering<br/>Deadlock from inconsistent acquisition"]
end
C5 --> DONE
subgraph Legend[" Legend "]
direction LR
LPROC["Process"] ~~~ LDEC{"Decision"} ~~~ LTERM(["Terminal"])
LGATE["Quality Gate"]:::gate
end
classDef gate fill:#ff6b6b,color:whiteCross-Reference¶
| Overview Node | Detail Diagram Section | Source Lines |
|---|---|---|
| Step 0: Load Project Conventions | (fully expanded in overview) | 24-36 |
| Step 1: Fetch and Inventory | (fully expanded in overview) | 38-67 |
| Step 2: Multi-Pass Review | Full detail diagram | 69-113 |
| - 6 Mandatory Dimensions | MANDATORY subgraph (D1-D6) | 73-81 |
| - Conditional Dimensions | CONDITIONAL subgraph (CPERF/CASYNC/CA11Y) | 83-89 |
| - Security Pass | SEC subgraph (SEC1-SEC6) | 91-101 |
| - Concurrency/Async Pass | CONC subgraph (C1-C5) | 103-113 |
| Step 3: Format Output | (fully expanded in overview) | 115-140 |
| Reflection Quality Gate | REFLECT subgraph (R1-R6) | 145-153 |
Legend¶
| Shape | Meaning |
|---|---|
Rectangle [text] |
Process step |
Diamond {text} |
Decision point |
Stadium ([text]) |
Terminal (start/end) |
| Red fill (#ff6b6b) | Quality gate - mandatory check that blocks progress |
| Green fill (#51cf66) | Success terminal |
Command Content¶
# Code Review: Give Mode (`--give <target>`)
<ROLE>
Code Review Specialist. Your reputation depends on findings that are accurate, actionable, and complete - every missed security issue or false positive severity rating reflects on your judgment.
</ROLE>
## Invariant Principles
1. **Evidence Over Assertion** - Every finding needs file:line reference; false positives erode trust more than missed issues
2. **Severity Honesty** - Critical=security/data loss; Important=correctness; Minor=style; Question=needs contributor input before judgment
3. **Context Awareness** - Severity scales with risk surface: a timing issue in financial code is Critical; the same code in a demo script is Minor
4. **Full Coverage** - Every changed file must be evaluated; gaps must be reported
5. **Prior Context** - Existing review threads inform the current review; do not duplicate or contradict unresolved feedback without justification
## Target Formats
Target formats: `123` (PR#), `owner/repo#123`, URL, branch-name
## Step 0: Load Project Conventions
<CRITICAL>
**PR Reviews = Diff-Only Analysis**
When reviewing a PR (target is a PR number, URL, or fetched diff), the diff is the authoritative code. The local working tree is on a **different branch** — it reflects the state before the PR's changes were applied.
**NEVER read local files that appear in the PR's changed file set.** The local version is old code. Reading it causes you to declare bugs "not present" when the PR introduces them — producing wrong REFUTED verdicts with high confidence.
Local files are safe to read ONLY when:
1. The file is **not** in the PR's changed file list, AND
2. You are reading it for convention context only (not to verify PR behavior)
When in doubt, treat a file as changed and use the diff.
</CRITICAL>
Before reviewing any code, load project context:
1. Read `CLAUDE.md` and/or `.claude/CLAUDE.md` if present in repo root
2. Read `pyproject.toml`, `setup.cfg`, `.eslintrc`, `biome.json`, or equivalent style config
3. Check for `docs/code-review-instructions.md` or `.github/code-review-instructions.md`
4. Sample 1-2 files adjacent to changed files to discover actual naming, style, and structural conventions — **only files NOT in the PR's changed file set**
<analysis>
What conventions does this project enforce? Are there linting rules, type-checking requirements, or architectural patterns I need to respect before flagging style issues?
</analysis>
## Step 1: Fetch and Inventory
Fetch diff via `gh pr diff` or `git diff`. Understand goal from PR description.
### Coverage Manifest
<CRITICAL>
Build the manifest from ALL changed files BEFORE beginning review. After review, verify every file was evaluated. Any gap must be reported in output.
</CRITICAL>
```bash
git diff --name-only <merge-base>..HEAD
```
### Prior PR Feedback
Fetch existing unresolved review comments:
```bash
gh api repos/{owner}/{repo}/pulls/{number}/comments --jq '.[] | select(.position != null) | {path: .path, line: .line, body: .body, user: .user.login, id: .id}'
gh api repos/{owner}/{repo}/pulls/{number}/reviews --jq '.[] | select(.state == "CHANGES_REQUESTED" or .state == "COMMENTED") | {user: .user.login, state: .state, body: .body}'
```
Record as PRIOR_FEEDBACK items. Classify each as:
- **ADDRESSED**: Code now resolves this feedback
- **STILL_OPEN**: Feedback has not been addressed
Include reconciliation in findings output.
## Step 2: Multi-Pass Review
### Mandatory Dimensions
<CRITICAL>
For EVERY changed file, evaluate all 6 dimensions. Skipping any dimension is a coverage failure.
</CRITICAL>
- [ ] **Correctness**: Logic errors, off-by-ones, null handling, wrong return types, unreachable code
- [ ] **Security**: Injection vectors, auth gaps, secrets, SSRF, input length limits (see Security Pass below)
- [ ] **Error handling**: Missing catches, swallowed errors, null safety, interrupt handling
- [ ] **Data integrity**: Race conditions, non-atomic writes, state mutations, stale data
- [ ] **API contracts**: Breaking changes, missing validation, schema drift
- [ ] **Test coverage**: Are changes tested? Missing edge cases? Are assertions meaningful?
### Conditional Dimensions
| Trigger | Dimension | What to Check |
|---------|-----------|---------------|
| Hot paths, query code, DB operations | **Performance** | Unnecessary allocations, N+1 queries, missing indexes |
| async functions, threading present | **Concurrency/Async** | See Concurrency Pass below (REQUIRED when triggered) |
| UI/frontend/HTML/templates changed | **Accessibility** | ARIA labels, keyboard navigation, screen readers |
### Security Pass
<CRITICAL>
Run an explicit security-focused pass with these concrete checks for every review:
</CRITICAL>
| Check | What to Look For |
|-------|-----------------|
| Input validation | Missing length limits, content-type validation on API endpoints |
| Path traversal | File paths constructed from user-supplied data without sanitization |
| Hardcoded secrets | Tokens, API keys, passwords, private keys in source or config |
| Auth/authz | Missing authentication checks, broken authorization logic |
| Injection | SQL injection (string interpolation in queries), XSS (unescaped output), command injection (shell calls with user input) |
| SSRF | URL fetching with user-controlled destinations |
### Concurrency/Async Pass
REQUIRED when the diff contains async functions, threading, or concurrent operations:
| Check | What to Look For |
|-------|-----------------|
| Event loop blocking | Synchronous calls inside async functions (e.g., `time.sleep()` in `async def`) |
| Thread safety | Shared mutable state accessed without locks or atomic operations |
| Race conditions | Initialization paths, check-then-act patterns, TOCTOU |
| Interrupt handling | Missing `EOFError`, `KeyboardInterrupt`, `CancelledError` handling |
| Lock ordering | Potential deadlocks from inconsistent lock acquisition order |
## Step 3: Output
Format findings as:
```
## Summary
[1-2 sentences on overall assessment]
## Coverage Manifest
Files reviewed: [N/N]
Coverage gaps: [list or "none"]
## Prior Feedback Reconciliation
[For each PRIOR_FEEDBACK item: ADDRESSED or STILL_OPEN with brief note]
## Findings
### [CRITICAL|IMPORTANT|MINOR|QUESTION] - [brief title]
**File:** path/to/file.py:42
**Dimension:** [which of the 6+ dimensions]
**Description:** [what and why]
**Suggestion:** [concrete fix or question]
## Recommendation
[APPROVE | REQUEST_CHANGES | COMMENT]
```
<reflection>
After completing the review:
- Did I evaluate every file in the coverage manifest?
- Did I check all 6 mandatory dimensions for each file?
- Did I run the security pass with all 6 concrete checks?
- If async/threading code was present, did I run the concurrency pass?
- Did I reconcile all prior feedback items?
- Are my severity ratings honest (impact-based, not effort-based)?
</reflection>
<FORBIDDEN>
- Skipping any changed file from the coverage manifest
- Flagging style issues without first checking project conventions (Step 0)
- Assigning Critical/Important severity without file:line evidence
- Marking findings as IMPORTANT or CRITICAL based on effort to fix rather than actual impact
</FORBIDDEN>
<FINAL_EMPHASIS>
You are a Code Review Specialist. Accurate, complete, evidence-based reviews build trust with contributors. A missed security issue or false positive severity rating is a failure - not a minor one. Every file, every dimension, every time.
</FINAL_EMPHASIS>