Tag: code-audit
API Documentation and Code Coverage Validator
This skill audits the entire HTTP API surface by comparing live controller route registrations against the defined OpenAPI specification. It detects documentation drift, missing endpoints, and discrepancies in authentication or schema defin…
Automated Code Quality Audit Skill
Performs deep code quality audits on files, packages, or directories by combining LSP-based batch analysis with LLM-driven heuristic checks. It identifies issues such as dead symbols, error wrapping gaps, and concurrency safety risks across…
Audit exported symbols for dead code
This skill enumerates exported symbols within a codebase and identifies those lacking any references across the entire workspace. It leverages LSP capabilities to audit for potential dead code, requiring manual review for confirmation.
Deep forensic audit of codebase integrity
This skill performs an exhaustive, forensic audit of the entire codebase, verifying source integrity, import chains, and configuration alignment. It systematically checks for discrepancies across code, environment variables, and external AP…
Comprehensive Security Review and Best Practices
Provides a comprehensive security checklist and implementation patterns to prevent vulnerabilities such as SQL injection, XSS, and CSRF. It covers essential practices for secrets management, input validation, and secure authentication.
MCP Tool Implementation Review
An automated process for auditing MCP tool implementations against project-specific patterns, registration requirements, and best practices.
Scan and fix hardcoded secrets in codebases
This tool scans codebases using entropy analysis and regex heuristics to detect hardcoded secrets and credentials. It can then automatically refactor the code, replacing leaked values with environment variable references and migrating them …
Verify Implementation Against Change Artifacts
Validates that code implementations align with change artifacts including specifications, tasks, and design documents. It assesses completeness, correctness, and coherence by auditing task completion, requirement coverage, and design adhere…
Automated Documentation Coverage and Accuracy Auditor
Identifies documentation gaps and inaccuracies by comparing the main branch implementation and configuration against the existing docs directory. It proposes targeted updates to ensure documentation remains synchronised with the codebase.