alexei-led/fixing-code
plugins/dev-workflow/skills/fixing-code/SKILL.md
Fix code problems with disciplined diagnosis — run checks, build a repro for bugs, rank falsifiable hypotheses, fix one issue at a time, and verify until clean. Use when user says "fix", "debug", "diagnose", "broken", "failing", "throws", "performance regression", "make tests pass", or wants lint/test/build failures resolved.
$ install --global
skillsauthnpx skillsauth add alexei-led/claude-code-config fixing-codeInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 4, 2026, 3:18 AM207.3s2 files scanned
SKILL.md
- name:
- fixing-code
- description:
- Fix code problems with disciplined diagnosis — run checks, build a repro for bugs, rank falsifiable hypotheses, fix one issue at a time, and verify until clean. Use when user says "fix", "debug", "diagnose", "broken", "failing", "throws", "performance regression", "make tests pass", or wants lint/test/build failures resolved.
- user-invocable:
- true
- context:
- fork
- argument-hint:
- [diagnose|investigate] [team]
Fix and Diagnose Code
Fix until clean. For hard bugs, diagnose before editing. No guessing. Confirm before any destructive command; never use git reset --hard, git clean, or force push as a fix.
Parse $ARGUMENTS:
diagnoseorinvestigate→ hard-bug workflow: feedback loop, repro, hypotheses, probes, regression test.team→ parallel analysis agents challenge root causes before fixes.
Use TaskCreate / TaskUpdate to track:
- Run validation or build a repro
- Analyze root causes
- Fix one issue at a time
- Verify after each fix
- Final verification and cleanup
Phase 1: Feedback Loop First
For lint/build/test failures, run validation:
make lint 2>&1 | head -150
make test 2>&1 | head -150
No Makefile? Detect language:
- Go:
golangci-lint run ./... 2>&1 | head -150 && go test -race ./... 2>&1 | head -150 - Python:
ruff check . 2>&1 | head -150 && pytest --tb=short 2>&1 | head -150 - TypeScript:
bun lint 2>&1 | head -150 && bun test 2>&1 | head -150 - Web:
bunx eslint "**/*.js" 2>&1 | head -100 && bunx stylelint "**/*.css" 2>&1 | head -100
If all checks pass: report All checks pass and stop.
For reported bugs or diagnose/investigate, build a fast, deterministic pass/fail signal before editing. Try, in order:
- Failing unit/integration/e2e test at the right seam.
- CLI or HTTP script with fixture input.
- Playwright/headless browser script for UI bugs.
- Replay captured payload/log/trace.
- Throwaway harness around the smallest real code path.
- Property/fuzz loop for intermittent wrong output.
git bisect runharness for regressions.- Human-in-the-loop script if manual steps are unavoidable.
Do not proceed to fixes until the loop reproduces the user's symptom. If no loop is possible, stop and ask for access, logs, HAR/core dump, screen recording with timestamps, or permission to add temporary instrumentation.
Phase 2: Analyze Root Causes
Read the failing output and relevant files. If claude-mem is available, search for prior gotchas on failing files.
For straightforward check failures, catalog every distinct issue:
- file:line
- exact error/test failure
- tool that reported it
- priority: critical / important / minor
For hard bugs, generate 3–5 ranked falsifiable hypotheses before testing any one of them:
If <cause> is true, then <probe/change> will make <specific symptom> disappear or change.
Avoid testing only the first plausible hypothesis; that anchors the fix on guesswork.
If team is set, spawn relevant language QA/test/implementation agents in parallel. Agents analyze only; they must not edit. Ask them for root cause, evidence, suggested fix, priority, and confidence.
Phase 3: Instrument Carefully
Probe one hypothesis at a time.
- Prefer debugger/REPL inspection when available.
- Otherwise add targeted logs at boundaries that distinguish hypotheses.
- Tag temporary logs with a unique prefix like
[DEBUG-a4f2]. - For performance regressions: measure baseline first, then bisect/profile. Do not fix from guesswork.
Phase 4: Fix One Issue at a Time
For each issue, in priority order:
- Read the exact code path.
- Apply the smallest root-cause fix.
- Add or update a regression test at the correct seam when possible.
- Run the narrow check.
- Run broader lint/test before moving on.
If the only available test seam is too shallow, say so. Do not write a fake-confidence test that only proves a helper works while the real bug path stays uncovered.
If a fix causes new failures, revert or adjust it before touching the next issue.
Phase 5: Final Verification and Cleanup
Required before done:
- Original repro no longer reproduces.
- Regression test passes, or missing test seam is explicitly reported.
- Full validation passes.
- All
[DEBUG-...]probes are removed. - Throwaway harnesses are deleted or clearly moved into test fixtures.
Run:
make lint && make test
Or language equivalents.
Loop back to Phase 2 if anything still fails.
Output
FIX COMPLETE
============
Mode: standard | diagnose | team | diagnose+team
Issues found: X
Fixed: Y
Remaining: Z
Status: CLEAN | NEEDS ATTENTION
Root cause:
- <short verified cause>
Changes:
- file:line — fix
Verification:
- <command> — pass/fail
If unresolved, state the blocker and the exact artifact/access needed. Do not pretend clean.
Related Skills
alexei-led/writing-shell
tools
VerifiedTrustedCommunity
Idiomatic shell development for POSIX sh, Bash, Zsh, Fish, hooks, CI shell steps, and scriptable CLI glue. Use when writing or changing `.sh`, `.bash`, `.zsh`, `.fish`, `.bats`, shell functions, shell pipelines, or command-runner recipes. Emphasizes portability, quoting, safe filesystem/process handling, non-TUI CLI tools, ShellCheck, shfmt, Bats, and ShellSpec. NOT for Python, TypeScript, Go, web code, or infrastructure operations.
33SKILL.mdUpdated Jun 5, 2026
alexei-led/spec-flow
tools
VerifiedTrustedCommunity
Use when planning, executing, checkpointing, finishing, or inspecting lightweight spec-driven work. Runs one task at a time using `.spec/` markdown files and the bundled `specctl` helper. NOT for broad product discovery beyond a short requirement interview.
33SKILL.mdUpdated Jun 5, 2026
alexei-led/operating-infra
testing
VerifiedTrustedCommunity
Author, inspect, troubleshoot, and review infrastructure across IaC, Kubernetes, cloud resources, containers, CI/CD, and Linux hosts. Use when changing Terraform/OpenTofu, Kubernetes, Helm, Kustomize, Dockerfiles, GitHub Actions, AWS, GCP, Cloud Run, BigQuery, IAM, logs, instances, or service health. NOT for deploy/apply/rollback workflows (see deploying-infra). NOT for shell scripts or generic command pipelines (see writing-shell).
33SKILL.mdUpdated Jun 5, 2026
alexei-led/configuring-git-hygiene
development
VerifiedTrustedCommunity
Configure safe git workflow hygiene: pre-commit/pre-push hooks, Gitleaks secret scanning, .gitignore rules, local git config, and guardrails. Use when setting up git hooks, gitleaks/git leaks, staged pre-commit checks, pre-push validation, core.hooksPath, .gitignore, or git config best practices. NOT for creating commits (use committing-code), cleaning branches/worktrees (use cleanup-git), or creating worktrees (use using-git-worktrees).
33SKILL.mdUpdated Jun 5, 2026