Guide index
Browse the full guide hub for focused review workflows and workflow-specific landing pages.
17 review domains • 34 Claude commands • Parallel Codex wrappers
WordPress skills for Claude Code and Codex.
AI-assisted WordPress code review skills for plugin development, security audits, ACF/content modeling, headless WordPress, WPGraphQL, WooCommerce extensions, REST APIs, admin UI, migrations, accessibility, testing, release engineering, WP-CLI operations, Playground, and PHPStan.
17
WordPress review domains
34
Claude slash commands
2
Agent-ready skill packs
Why this pack
The pack is designed for real WordPress codebases, not toy examples. It keeps the review flow opinionated and practical, with clear severity, file-level guidance, and cross-skill handoffs when a finding belongs in a different domain.
- Structured workflows for real plugin, theme, and WooCommerce code
- Quick triage before deeper review
- Shared references between Claude and Codex
- Installation paths for project, user, and single-skill use
Guides
Workflow pages for search-friendly WordPress development tasks.
These guides target concrete developer intent with commands, checklists, and sample findings instead of generic landing-page copy.
How to review a WordPress plugin with Claude Code
Architecture, security, performance, release readiness, and command handoffs.
WordPress AI code review FAQ
Common questions about Claude Code, Codex, WooCommerce, WPGraphQL, and skill selection.
How to review a WooCommerce plugin with Claude Code
HPOS compatibility, gateways, CRUD usage, templates, Action Scheduler, and performance risk.
How to review a WordPress REST API with Claude Code
Permission callbacks, validation, response design, versioning, and headless API concerns.
How to review a WooCommerce extension with Claude Code
Checkout risk, HPOS, templates, Action Scheduler, gateways, and operational edge cases.
WordPress release engineering checklist for Claude Code
Migrations, WP-CLI safety, PHPStan, test planning, rollout risk, and pre-release sequencing.
Available Skills
Seventeen WordPress domains, one coherent review pack.
Each skill is built to handle a clear slice of WordPress development so the model can review with more precision and less generic advice.
wp-performance-review
Queries, caching, cron, asset loading, and request-level bottlenecks.
wp-security-review
XSS, SQL injection, CSRF, authorization gaps, and unsafe uploads.
wp-plugin-development
Lifecycle hooks, Settings API, structure, i18n, and WordPress.org patterns.
wp-acf-and-content-modeling
Field groups, CPT/taxonomy design, repeaters, flexible content, JSON sync, and meta-query risk.
wp-headless-and-wpgraphql
Schema design, preview/auth flows, resolver performance, caching, and frontend revalidation.
wp-block-development
block.json, editor logic, render callbacks, deprecations, and Interactivity API.
wp-theme-development
theme.json, templates, FSE patterns, template parts, and style variations.
wp-woocommerce-dev
HPOS, CRUD APIs, gateways, cart fragments, template overrides, and scheduling.
wp-rest-api-development
Custom routes, permission callbacks, schema design, validation, and response shape.
wp-admin-ui-development
Settings screens, admin menus, notices, screen targeting, and admin UX structure.
wp-migration-upgrade-review
Version guards, dbDelta(), schema changes, backfills, and rollout safety.
wp-accessibility-review
Semantic markup, keyboard support, focus management, labels, and ARIA usage.
wp-test-strategy
Unit, integration, and E2E test selection for risky WordPress changes.
wp-ci-cd-and-release-engineering
GitHub Actions, artifact packaging, release gating, WordPress.org deploys, and rollback safety.
wp-wpcli-and-ops
Custom CLI commands, multisite operations, search-replace safety, and maintenance runbooks.
wp-playground-development
Blueprints, reproducible demos, Playground CLI workflows, and zero-setup bug repros.
wp-phpstan-review
PHPStan config, baselines, CI wiring, WordPress stubs, and practical static-analysis rollout.
Installation
Pick the install path that matches how you work.
The primary flow is project install, but the site also covers user-account installs, one-skill installs, and the shared-reference setup Codex wrappers need.
Claude project install
Glorious install demo
Slash Commands
Claude commands for quick checks and full reviews.
Every domain includes a deeper review command and a faster triage command so you can start broad or go straight into specifics.
/wp-perf-review
Full performance review with grouped findings.
/wp-perf
Fast scan for critical performance issues.
/wp-sec-review
Full security audit for exploitable patterns.
/wp-sec
Quick security triage.
/wp-plugin-review
Full plugin architecture and standards review.
/wp-plugin
Quick plugin structure scan.
/wp-acf-review
Full ACF and content-modeling review.
/wp-acf
Quick ACF/content-model scan.
/wp-headless-review
Full headless WordPress and WPGraphQL review.
/wp-headless
Quick headless/WPGraphQL scan.
/wp-block-review
Full Gutenberg block review.
/wp-block
Quick block API scan.
/wp-theme-review
Full block or classic theme review.
/wp-theme
Quick theme and FSE scan.
/wp-woo-review
Full WooCommerce extension review.
/wp-woo
Quick WooCommerce compatibility scan.
/wp-rest-review
Full REST API review.
/wp-rest
Quick route and permission scan.
/wp-admin-review
Full admin UI review.
/wp-admin
Quick admin screen scan.
/wp-migration-review
Full migration and upgrade review.
/wp-migration
Quick migration risk scan.
/wp-a11y-review
Full accessibility review.
/wp-a11y
Quick semantic and keyboard scan.
/wp-test-review
Full test strategy review.
/wp-test
Quick coverage and gap scan.
/wp-release-review
Full CI/CD and release engineering review.
/wp-release
Quick release and packaging scan.
/wp-ops-review
Full WP-CLI and operations review.
/wp-ops
Quick operational risk scan.
/wp-playground-review
Full Playground review.
/wp-playground
Quick Blueprint and repro scan.
/wp-phpstan-review
Full PHPStan review.
/wp-phpstan
Quick static-analysis scan.
Natural Language Usage
Ask naturally. Let the right skill take over.
The pack is designed so people can ask for a review the way they actually think about the problem instead of memorizing a wall of commands.
Review this plugin for performance issues
Audit this theme for security problems
Help me debug this block.json setup
Check this WooCommerce extension for HPOS issues
Review these custom REST routes
Check this plugin settings page
Audit this release migration before deploy
Review this theme for accessibility issues
What tests should I add for this change?Coverage
What each skill is built to cover.
A quick way to understand where each domain starts, what it looks for, and how the pack avoids collapsing every review into one vague checklist.
wp-performance-review
Database query anti-patterns, cache strategy, cron misuse, asset loading, N+1 patterns, and slow hooks.
wp-security-review
Output escaping, prepared queries, nonces, capability checks, upload handling, and dangerous functions.
wp-plugin-development
Plugin structure, activation and uninstall flows, Settings API, CPTs, taxonomies, i18n, and standards readiness.
wp-block-development
block.json, editor logic, save behavior, render callbacks, deprecations, and Interactivity API.
wp-theme-development
theme.json, template hierarchy, style variations, block patterns, and classic-to-block migration.
wp-woocommerce-dev
HPOS, CRUD APIs, gateways, template overrides, cart fragments, and Action Scheduler.
wp-rest-api-development
Route registration, permission callbacks, request validation, schema handling, and response design.
wp-admin-ui-development
Settings pages, admin menus, notices, screen targeting, and capability-aware admin flows.
wp-migration-upgrade-review
Versioned upgrades, schema changes, backfills, batching, and rollout risk.
wp-accessibility-review
Semantic HTML, keyboard access, focus management, labels, ARIA, and interactive accessibility.
wp-test-strategy
Unit, integration, and E2E strategy, existing coverage discovery, and regression prioritization.
Repository Layout
Parallel wrappers, shared references, one source of domain truth.
.claude-plugin/ # Claude Code plugin manifest
claude-skills/ # Canonical Claude skill pack with shared reference docs
skills/ # Plugin-compatible alias to claude-skills/
codex-skills/ # Codex-oriented skill wrappers for the same seventeen domains
commands/ # Claude slash commands
public/ # README assets
docs/ # GitHub Pages site and guide hub