Back to Details

fix-review

Compare original and translation side by side

🇺🇸

Original

English
🇨🇳

Translation

Chinese

Fix Review

修复评审

Overview

概述

Verify that fix commits properly address audit findings without introducing new bugs or security vulnerabilities.
验证修复提交是否妥善解决了审计发现的问题,且未引入新的bug或安全漏洞。

When to Use This Skill

何时使用该Skill

Use this skill when you need to verify fix commits address audit findings without new bugs.
Use this skill when:
  • Reviewing commits that address security audit findings
  • Verifying that fixes don't introduce new vulnerabilities
  • Ensuring code changes properly resolve identified issues
  • Validating that remediation efforts are complete and correct
当你需要验证修复提交是否解决审计发现的问题且未引入新bug时,使用该Skill。
在以下场景中使用该Skill:
  • 评审针对安全审计发现问题的提交
  • 验证修复未引入新的漏洞
  • 确保代码变更妥善解决已识别的问题
  • 确认补救措施完整且正确

Instructions

操作说明

This skill helps verify that fix commits properly address audit findings:
  1. Review Fix Commits: Analyze commits that claim to fix audit findings
  2. Verify Resolution: Ensure the original issue is properly addressed
  3. Check for Regressions: Verify no new bugs or vulnerabilities are introduced
  4. Validate Completeness: Ensure all aspects of the finding are resolved
该Skill可帮助你验证修复提交是否妥善解决审计发现的问题:
  1. 评审修复提交:分析声称已修复审计发现问题的提交
  2. 验证问题解决情况:确保原始问题已妥善解决
  3. 检查回归问题:验证未引入新的bug或漏洞
  4. 验证完整性:确保发现的所有问题都已解决

Review Process

评审流程

When reviewing fix commits:
  1. Compare the fix against the original audit finding
  2. Verify the fix addresses the root cause, not just symptoms
  3. Check for potential side effects or new issues
  4. Validate that tests cover the fixed scenario
  5. Ensure no similar vulnerabilities exist elsewhere
评审修复提交时:
  1. 将修复内容与原始审计发现的问题进行对比
  2. 验证修复是否解决了问题根源,而非仅处理表面症状
  3. 检查是否存在潜在副作用或新问题
  4. 验证测试是否覆盖了修复场景
  5. 确保其他地方不存在类似的漏洞

Best Practices

最佳实践

  • Review fixes in context of the full codebase
  • Verify test coverage for the fixed issue
  • Check for similar patterns that might need fixing
  • Ensure fixes follow security best practices
  • Document the resolution approach
  • 在整个代码库的上下文环境中评审修复内容
  • 验证针对修复问题的测试覆盖情况
  • 检查是否存在可能需要修复的类似模式
  • 确保修复遵循安全最佳实践
  • 记录问题解决方法

Resources

参考资源

For more information, see the source repository.
如需了解更多信息,请查看源码仓库