2

    sql-query-reviewer

    by Timoranjes

    Audit SQL and ORM queries for security vulnerabilities, N+1 performance issues, and indexing anti-patterns.

    Updated Jun 2026
    Security scanned
    Claude Code

    $8

    · or 40 credits

    30-day refund guarantee

    Secure checkout via Stripe

    Included in download

    • Detect SQL injection vulnerabilities in dynamic queries and raw SQL.
    • Identify and fix N+1 query problems in ORM-based applications.
    • terminal automation included
    • Ready for Claude Code
    • Instant install

    Sample input

    Audit user_service.py and post_controller.js for security flaws and performance issues. Can you check the Raw SQL and Prisma queries?

    Sample output

    CRITICAL: SQL Injection vulnerability in user_service.py:12. Query uses string formatting. Fix: Use query parameters: cursor.execute("SELECT * FROM users WHERE id = %s", (user_id,))

    HIGH: N+1 detected in post_controller.js. Fix: Add include: { authors: true } to your Prisma query.

    About This Skill

    What it does

    The SQL Query Reviewer is a specialized auditing tool designed to inspect data-access code for security vulnerabilities, performance bottlenecks, and logic errors. It scans raw SQL files, migration scripts, and ORM code (Django, SQLAlchemy, Prisma, ActiveRecord, etc.) to ensure your database interactions are safe and efficient.

    Why use this skill

    Reviewing SQL requires deep domain expertise. This skill automates the detection of critical issues like SQL injection and N+1 query patterns that are often missed in standard code reviews. It provides developer-centric feedback, suggesting specific remediations—such as replacing OFFSET with keyset pagination or identifying missing indexes—saving hours of manual troubleshooting and preventing production outages.

    Key Features

    • Security Audit: Detects critical SQL injection patterns in string interpolations and dynamic queries.
    • Performance Profiling: Flags N+1 issues in ORM loops and identifies full table scans in large datasets.
    • Explain Plan Analysis: Guidance on interpreting EXPLAIN ANALYZE output across PostgreSQL, MySQL, and SQL Server.
    • ORM Support: Specialized checks for popular frameworks and query builders.
    • Correctness Checks: Validates NULL handling, transaction atomicity, and deterministic pagination.

    Use Cases

    • Detect SQL injection vulnerabilities in dynamic queries and raw SQL.
    • Identify and fix N+1 query problems in ORM-based applications.
    • Optimize slow queries by analyzing index usage and EXPLAIN plans.
    • Review database migration scripts for correctness and atomicity.

    Reviews

    No reviews yet - be the first to share your experience.

    Only users who have downloaded or purchased this skill can leave a review.

    Security Scanned

    Passed automated security review

    Permissions

    Terminal / Shell

    File Scopes

    sql-query-reviewer/**

    Tags

    sql
    database
    security-review
    orm
    performance-tuning
    backend

    Compatible with SKILL.md-compatible agents (e.g., Claude Code, Cursor, Windsurf)

    Creator

    Timoranjes

    Frequently Asked Questions

    Learn More About AI Agent Skills

    More Premium Skills

    designing-hybrid-context-layers

    Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.

    $1015 installs

    ai-automation-qa-pack

    Professional QA & UAT documentation generator for AI automation agencies and complex agent deployments.

    $59 installs

    Bounty Security Pattern Master Library — 399 Vulnerability Patterns

    A premium library of 399 vulnerability patterns and DeFi attack vectors for AI-driven bug hunting and security audits.

    $758 installs

    cinematic-sites

    Turn any basic business URL into a high-end cinematic landing page with AI-generated 4K assets and GSAP animations.

    $127 installs

    $8