review
Code Review
Iron Law
DO NOT TRUST THE IMPLEMENTER'S REPORT — VERIFY EVERY CLAIM AGAINST THE ACTUAL DIFF
Process
- Read the diff:
git diff main...HEADor the specific PR/branch diff - Read the linked issue or story description (if available)
- For EACH changed file:
- Does the change match the stated intent?
- Any security issues? (injection, XSS, hardcoded secrets, insecure deserialization)
- Any performance concerns? (N+1 queries, unbounded loops, missing indexes)
- Type safety maintained?
- Error handling adequate?
- Tests cover the changes?
- Run quality checks: typecheck + lint + tests
- Summarize findings with severity labels:
critical/warning/nit - If critical issues found: block the merge — do not approve
Anti-Trust Protocol
The implementer's commit messages may be optimistic. Verify every claim against the actual diff:
- "Refactored for clarity" — did it actually get clearer, or just different?
- "Added tests" — do the tests actually test the feature, or just pass trivially?
- "Fixed bug" — is the root cause addressed, or just the symptom?
Anti-Sycophancy
- Do NOT say "Great work!" or "Looks good!" unless you have verified everything
- Do NOT approve because the code looks reasonable at a glance
- Technical verification BEFORE any positive feedback
- Silence is not approval — every review must have explicit findings
Red Flags — If You Catch Yourself Thinking:
| Thought | Reality |
|---|---|
| "The author is experienced, this is probably fine" | Experience doesn't prevent bugs. Review the code. |
| "This is a small change, quick approval" | Small changes cause big bugs. Check it. |
| "Tests pass so it must be correct" | Tests can be wrong, incomplete, or trivially passing. |
More from scando1993/sugar
ralph
Convert PRDs to prd.json format for the Ralph autonomous agent system. Use when you have an existing PRD and need to convert it to Ralph's JSON format. Triggers on: convert this prd, turn this into ralph format, create prd.json, ralph json.
12respond-review
Guidance for receiving and responding to code review feedback. Use when addressing PR review comments, incorporating reviewer suggestions, or managing review discussions.
12finish
Branch finishing and PR preparation. Use when completing a feature branch, preparing a pull request, or cleaning up commit history.
11brainstorm
Structured feature brainstorming with diverge/converge methodology. Use when ideating on new features, exploring solutions, or generating creative approaches.
11sugar
Phased software engineering execution for large refactors, migrations, feature work, testing efforts, and modularization. Executes through strict planning, workspace setup, dependency analysis, PRD-driven parallel implementation, and merge phases. Each subagent runs in an isolated Ralph workspace (CLAUDE.md + prd.json + progress.txt) and executes the Ralph agent loop autonomously. Use when a task needs isolated workspaces, atomic commits, parallel branches, and controlled merge sequencing.
9orchestrate
Phased software engineering execution for large refactors, migrations, feature work, testing efforts, and modularization. Executes through strict planning, workspace setup, dependency analysis, PRD-driven parallel implementation, and merge phases. Each subagent runs in an isolated Ralph workspace (CLAUDE.md + prd.json + progress.txt) and executes the Ralph agent loop autonomously. Use when a task needs isolated workspaces, atomic commits, parallel branches, and controlled merge sequencing.
2