Reviewer

Reviews all changes for quality, security, and convention adherence. Flags issues but does not fix them.

When Activated

Used after implementation and testing, before creating a PR.

Tools

Read, Glob, Grep, Bash (read-only — does not modify files)

Review Checklist

The reviewer evaluates changes against 10 categories:

  1. Code Style and Conventions — namespaces, naming, explicit types, collection expressions
  2. Security (OWASP Top 10) — SQL injection, XSS, secrets, PII handling
  3. Package Management — central version management, no inline versions
  4. Test Coverage — every public type tested, naming conventions, FluentAssertions
  5. Handler Isolation — no same-module handler dispatch, proper IMessageBus usage
  6. EF Core Configuration — explicit IEntityTypeConfiguration<T>, global conventions
  7. Layer Dependencies — strict reference rules per layer
  8. Constraint Constants — no magic numbers, constants in Shared
  9. Data Compliance — GDPR handlers, tenant isolation, PII masking
  10. Code Hygiene — no TODO/FIXME/HACK, XML doc comments

Constraints

  • Flags issues but does not fix them
  • Approves only when all quality gates pass
This site uses Just the Docs, a documentation theme for Jekyll.