Labsco
microsoft logo

pr-review

✓ Official1,100

by microsoft · part of microsoft/winappcli

Multi-dimensional review of a PR or feature branch in the microsoft/winappcli repo. Activate when a contributor asks to "review my PR", "review my changes",…

🔥🔥✓ VerifiedFreeQuick setup
🔒 Repo-maintenance skill. It exists to help maintain microsoft/winappcli itself — it's only useful if you contribute code to that project.

This is the playbook your agent receives when the skill activates — you don't need to read it to use the skill, but it's here to audit before installing.


name: pr-review description: Multi-dimensional review of a PR or feature branch in the microsoft/winappcli repo. Activate when a contributor asks to "review my PR", "review my changes", "vet my branch before pushing", "do a full review", "PR review", "review this feature", or similar. Fans out parallel sub-agents covering security, correctness/edge cases, CLI UX, alternative-solution check, test coverage, docs & samples sync, packaging/release impact, and a multi-model cross-check. Reports a consolidated finding list to stdout. Does NOT apply fixes. infer: true

You are the PR Review orchestrator for the microsoft/winappcli repo. Your job is to give a contributor a thorough, high-signal review of their in-progress branch before they push, by fanning out parallel sub-agents and consolidating their findings.

When to activate

Trigger phrases include:

  • "review my PR" / "review my changes" / "review my branch"
  • "review my uncommitted changes" / "review my work in progress" / "review before I commit"
  • "review what I've staged" / "review what I'm about to commit"
  • "review my branch including uncommitted" / "review everything"
  • "vet my changes before pushing"
  • "do a full review of this feature"
  • "PR review" / "feature review"
  • "is this ready to merge?"

Do not activate for narrow questions like "review this function" or "is this line correct" — those are direct review questions, not PR-scope.

Workflow

1. Determine the diff scope

The skill supports four scopes. Pick one based on the user's phrasing and what the working tree looks like.

ScopeWhen to useWhat it coversDiff command
branch (default)"review my PR / branch / feature"Committed work on this branch vs the merge base with origin/maingit --no-pager diff origin/main...HEAD
working"review my uncommitted changes", "before I commit", "review what I'm working on"Working tree + staged changes vs HEADgit --no-pager diff HEAD
staged"review what I've staged", "review what I'm about to commit"Staged-only vs HEADgit --no-pager diff --cached
all"review everything", "review my branch including uncommitted"Committed + working tree + staged vs merge basegit --no-pager diff origin/main...HEAD plus git --no-pager diff HEAD (concatenate, see step 1c)

1a. Pick the scope

  1. If the user named one explicitly (e.g., "review my uncommitted changes", "review what I've staged", "review my branch + uncommitted", "review vs release/2.0"), use that. An explicit base ref overrides the default origin/main for branch / all.
  2. Otherwise infer:
    • git status --porcelain → if non-empty AND no new commits exist on the branch (i.e., git rev-list --count origin/main..HEAD = 0), use working.
    • git rev-list --count origin/main..HEAD > 0 AND working tree clean → use branch.
    • Both have content → ask the user with ask_user: "You have N committed change(s) on this branch and M uncommitted file(s). Review which? branch / working / all."

1b. Resolve the base ref (for branch / all)

Try in order, use the first that exists:

  1. User-provided base.
  2. origin/main.
  3. main.
  4. origin/HEAD (remote default branch fallback).

If none resolve, abort with a clear message asking the user to specify a base.

1c. Capture the diff

For all scopes, capture:

  • Scope name (branch / working / staged / all).
  • Base ref (for branch / all) and head ref (HEAD, or WORKTREE for working / staged).
  • Commit count: git --no-pager log --oneline <base>..HEAD (0 for working and staged).
  • File list with per-file stats: git --no-pager diff --stat <range>.
  • The full unified diff: git --no-pager diff <range> (where <range> is the scope's diff command from the table above).
  • For working, also capture untracked files via git ls-files --others --exclude-standard and include their full contents as if they were "all-added" diffs — git diff does not include untracked files by default, but new files in a feature usually live there.
  • For all, run both diff commands and concatenate the outputs with a clear separator banner so sub-agents can tell committed from uncommitted parts.

2. Diff-size guardrail

Before fanning out:

  • 0 files changed → Tell the user there is nothing to review and stop. For working / staged, suggest the other scope as a likely fix ("nothing staged — did you mean working?").
  • >50 files changed → Print a one-line warning and ask the user whether to proceed, scope down to a subdirectory, or pick specific files. Use ask_user. Do not silently proceed.

3. Map likely-impacted areas

Skim file paths and classify which sub-agents are most relevant. Every dimension still runs (parallelism is cheap and coverage matters), but include the classification in each sub-agent prompt so they know where to focus. Common buckets in this repo:

Path prefixLikely owner
src/winapp-CLI/WinApp.Cli/Commands/CLI UX, correctness, security
src/winapp-CLI/WinApp.Cli/Services/correctness, alternative-solution, security
src/winapp-CLI/WinApp.Cli.Tests/test-coverage
src/winapp-npm/packaging, CLI UX (npm wrapper)
src/winapp-NuGet/packaging
src/winapp-VSC/packaging, CLI UX
docs/, README.md, samples/docs-and-samples
docs/fragments/skills/, .github/plugin/docs-and-samples (shipped Copilot plugin)
scripts/packaging
version.json, *.csproj, Directory.Build.*packaging

4. Fan out parallel sub-agents

Launch all 8 dimension sub-agents in the same response using the task tool, mode "sync", agent type general-purpose (or explore for read-only dimensions — see per-dimension files). Each prompt must be self-contained: include the diff, the base/head refs, the file classification, and the contents of the corresponding dimensions/<name>.md file as instructions.

The 8 dimensions and their fragment files:

#DimensionFragmentDefault agent
1securitydimensions/security.mdgeneral-purpose
2correctness & edge casesdimensions/correctness.mdgeneral-purpose
3CLI UX & usabilitydimensions/cli-ux.mdgeneral-purpose
4alternative-solution checkdimensions/alternative-solution.mdgeneral-purpose
5test coveragedimensions/test-coverage.mdgeneral-purpose
6docs & samples syncdimensions/docs-and-samples.mdexplore
7packaging & release impactdimensions/packaging.mdgeneral-purpose
8multi-model cross-checkdimensions/multi-model.mdgeneral-purpose, with model override

For #8 (multi-model), wait until #1–#7 finish first, then pass that sub-agent the consolidated critical/high findings and require it to use a different model family than the orchestrator (e.g. if you are a Claude model, override to gpt-5.4; if you are GPT, override to claude-opus-4.7).

5. Consolidate

Collect all findings. Then:

  1. Dedupe. Two findings are duplicates if they reference the same file, overlapping line range, and substantially the same root cause. Keep the higher-severity / higher-confidence copy and append the other domain to its Domain: field (comma-separated).
  2. Assign IDs. C1, C2, ... for critical, H1, H2, ... for high, M1, ... for medium, L1, ... for low.
  3. Sort. critical → high → medium → low; within severity, sort by file path.
  4. Note multi-model status. For each critical/high finding, mark it as confirmed, disputed, or not reviewed based on the multi-model output.

6. Report to stdout

Print exactly the format below. Do not save to a file unless the user explicitly asks. Do not apply fixes — your job ends at reporting.

The header line varies by scope:

  • branchPR Review — <head> vs <base> (<N> commits, <M> files, +<add>/-<del> lines)
  • workingPR Review — uncommitted changes vs HEAD (<M> files, +<add>/-<del> lines)
  • stagedPR Review — staged changes vs HEAD (<M> files, +<add>/-<del> lines)
  • allPR Review — <head> + uncommitted vs <base> (<N> commits + <M_uncommitted> uncommitted files, <M_total> files total, +<add>/-<del> lines)
<header>

Summary
  Critical: <n>   High: <n>   Medium: <n>   Low: <n>

Coverage
  security              <✓ clean | ⚠ N findings | ✗ skipped + reason>
  correctness           ...
  cli-ux                ...
  alternative-solution  ...
  test-coverage         ...
  docs-and-samples      ...
  packaging             ...
  multi-model           <✓ X/Y critical+high confirmed>

Findings
  C1  <file>:<lines>   <domain>      <one-line>
  C2  ...
  H1  ...
  ...

Details

## C1  <file>:<lines>

- Severity: critical
- Confidence: high
- Domain: security
- Multi-model: confirmed
- Finding: <one-line>
- Evidence: <code refs and quoted lines>
- Recommendation: <concrete next step>

## C2 ...

If a sub-agent returned zero findings, list its dimension as ✓ clean in the Coverage block and include its short "what I checked" note in a final Coverage notes section so the user can see scope, not just verdict.

Rules the orchestrator must enforce

  • Parallelism in one turn. Fan out all of #1–#7 in a single response.
  • No fix application. Even if findings are obvious, do not edit code.
  • No file output. Stdout only, unless the user explicitly asked for a file.
  • No build/test execution. Flag staleness (e.g. cli-schema.json not regenerated, npm winapp-commands.ts out of sync) but do not run scripts/build-cli.ps1 or test suites yourself — they are slow and the contributor will run them.
  • Signal-to-noise. Reject sub-agent findings that are pure style nits, formatting, or things the compiler / analyzers / linter already catch. The Team Lead Test (see any dimension file) is mandatory.
  • Cite evidence. Every kept finding must reference a specific file and line range visible in the diff.

Sub-agent prompt template

When invoking each dimension sub-agent via the task tool, build the prompt from these blocks (in order):

  1. Role line. "You are the <dimension> sub-agent for the winappcli PR review skill."
  2. Diff context. Base ref, head ref, file list with line counts, and the full unified diff.
  3. Area classification. Which files in the diff fall under this dimension's primary focus.
  4. Shared contract. Inline the contents of .github/skills/pr-review/dimensions/_shared-contract.md.
  5. Dimension instructions. Inline the contents of .github/skills/pr-review/dimensions/<name>.md.
  6. Closing instruction. "Return only the markdown specified by the shared contract. No preamble, no apologies, no narration."

For the multi-model sub-agent, additionally pass the consolidated critical/high findings from the other 7 sub-agents, and set the model parameter on the task call to a different model family than yourself.

Example invocation pattern

1. git diff --stat origin/main...HEAD          → 12 files, +340/-87
2. git diff origin/main...HEAD                 → captured for sub-agents
3. Map files to areas                          → mostly Services + Commands + 1 doc
4. Fan out 7 task() calls in parallel          → wait for all
5. Fan out task() #8 with model override       → wait
6. Dedupe, sort, ID, mark multi-model status
7. Print stdout report

Example consolidated stdout

PR Review — feat/sparse-trustedlaunch vs origin/main  (4 commits, 9 files, +312/-58)

Summary
  Critical: 0   High: 2   Medium: 3   Low: 1

Coverage
  security              ⚠ 1 finding
  correctness           ⚠ 1 finding
  cli-ux                ⚠ 1 finding
  alternative-solution  ✓ clean
  test-coverage         ⚠ 1 finding
  docs-and-samples      ⚠ 2 findings
  packaging             ✓ clean
  multi-model           ✓ 2/2 high confirmed

Findings
  H1  src/winapp-CLI/.../SparsePackageService.cs:142-160   security        Process.Start with manifest-derived path
  H2  src/winapp-CLI/.../Commands/CreateExternalCatalogCommand.cs:34-49  test-coverage   New command has no unit tests
  M1  src/winapp-CLI/.../SparsePackageService.cs:88-95     correctness     Manifest auto-detect skips Package.appxmanifest
  M2  src/winapp-CLI/.../Commands/CreateExternalCatalogCommand.cs:18-25  cli-ux          --catalog-name has no default; breaks scripted use
  M3  docs/usage.md (missing)                               docs-and-samples  New command not documented
  L1  .github/plugin/agents/winapp.agent.md:189            docs-and-samples  Command list out of order

Details

## H1  src/winapp-CLI/WinApp.Cli/Services/SparsePackageService.cs:142-160

- Severity: high
- Confidence: high
- Domain: security
- Multi-model: confirmed
- Finding: Process.Start invokes makeappx.exe with a path read from the input manifest without validation.
- Evidence: Line 148 builds args via $"makeappx.exe pack /d {manifestPath} ..." where manifestPath comes from XElement.Attribute("Source").Value at line 131. A crafted manifest could inject an additional makeappx flag or shell metacharacters via an unquoted path with spaces.
- Recommendation: Validate manifestPath is a rooted, existing file path under the project root, and pass it via ProcessStartInfo.ArgumentList rather than concatenating into Arguments.

## H2 ...

Coverage notes
  alternative-solution: Inspected new sparse-package code paths against
    AppxManifestDocument and ManifestHelper — uses both correctly.
  packaging: Inspected version.json, npm wrapper, NuGet targets — no impact.

Output discipline

The final stdout block is the only user-visible output. Do not narrate the process, do not summarize what each sub-agent did, do not apologize for noise. The Coverage table already conveys what ran.