Fix Review

- **`references/finding-matching.md`** - Strategies for matching commits to findings

Security View Source →

LLM Evaluation

Evaluated by: xiaomi/mimo-v2-flash:free

Last evaluated: January 19, 2026

Prompt Quality

4.5 /5

The prompt is highly structured with clear sections for when to use/not use, rationalizations, and a detailed workflow. It provides specific input requirements and status definitions. However, it is incomplete (cut off mid-sentence in Phase 4), which slightly impacts clarity and completeness. The rationalizations section is particularly strong for preventing common evaluation errors.

Usefulness

4.5 /5

This skill addresses a critical real-world need: verifying security fixes without introducing regressions. The workflow is actionable and covers key steps like report retrieval, finding extraction, and commit analysis. The inclusion of specific formats (e.g., Trail of Bits) and fallback logic makes it practical for diverse audit reports.

Overall Rating

4.5 /5

A well-designed, security-focused skill that provides a systematic approach to validating remediation commits, though the prompt is incomplete and would benefit from finishing the workflow section.

Prompt Preview

---
name: fix-review
description: >
  Verifies that git commits address security audit findings without introducing bugs.
  This skill should be used when the user asks to "verify these commits fix the audit findings",
  "check if TOB-XXX was addressed", "review the fix branch", "validate remediation commits",
  "did these changes address the security report", "post-audit remediation review",
  "compare fix commits to audit report", or when reviewing commits against security audit reports.
allow...

Full prompt length: 7621 characters