bahayonghang/agents-md-improver
content/skills/developer-tools-integrations/agents-md-improver/SKILL.md
Audit and improve Codex AGENTS.md guidance files in repositories. Use when the user asks to check, audit, update, optimize, or fix AGENTS.md files; asks for Codex project guidance maintenance; mentions nested AGENTS.md conflicts, stale commands, scoped instructions, sandbox or approval boundaries; or says "优化 AGENTS.md", "审计 AGENTS.md", "检查 nested AGENTS.md", or "更新 Codex 项目指导".
$ install --global
skillsauthnpx skillsauth add bahayonghang/my-claude-code-settings agents-md-improverInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 20, 2026, 3:20 AM297.7s4 files scanned
SKILL.md
- name:
- agents-md-improver
- description:
- >-
- version:
- 1.0.0
- category:
- developer-tools-integrations
- argument-hint:
- [audit-or-update-goal]
AGENTS.md Improver
Audit and improve Codex AGENTS.md guidance files so future Codex CLI, Codex App, and native subagent sessions receive concise, accurate, scoped project instructions.
Default mode is report-first. Output a quality report and proposed diff before writing. If the user explicitly asks to implement an approved plan, continue directly to targeted edits and verification.
Core Semantics
- An
AGENTS.mdfile governs the directory that contains it and every descendant directory. - A deeper
AGENTS.mdadds or overrides guidance for its subtree. - System, developer, and direct user instructions outrank any
AGENTS.mdcontent. - Repository
AGENTS.mdfiles are project guidance. User-level~/.codex/AGENTS.mdis global preference guidance and should not be edited unless explicitly requested. - Preserve hook-managed marker blocks such as
<!-- OMX:RUNTIME:START --> ... <!-- OMX:RUNTIME:END -->and<!-- OMX:TEAM:WORKER:START --> ... <!-- OMX:TEAM:WORKER:END -->.
Workflow
Phase 1: Discovery
Find scoped guidance files:
# POSIX shells
find . -name AGENTS.md -not -path './.git/*' -not -path './node_modules/*' -not -path './target/*'
# PowerShell
Get-ChildItem -Recurse -Force -Filter AGENTS.md |
Where-Object { $_.FullName -notmatch '\\.git|node_modules|target' } |
Select-Object -ExpandProperty FullName
Also note, but do not edit by default:
~/.codex/AGENTS.md
.codex/agents/
.codex/skills/
Classify each file:
| Type | Location | Purpose |
|---|---|---|
| root guidance | ./AGENTS.md | repo-wide commands, architecture, gates, safety boundaries |
| nested scoped guidance | ./<subtree>/AGENTS.md | local commands, ownership, generated files, conventions |
| user global guidance | ~/.codex/AGENTS.md | user-wide preferences, outside repo scope |
| generated/runtime guidance | .omx/.../AGENTS.md or similar | runtime state; usually read-only/no-edit |
Phase 2: Evidence Collection
For every repo guidance file, verify claims against the repository:
- commands in
package.json,justfile,Cargo.toml,pyproject.toml,Makefile, CI files - actual directory structure and entry points
- test/lint/typecheck/build commands
- generated, vendored, secret, data, or deployment-sensitive paths
- nested guidance overlap or conflicts
- Codex-specific surfaces:
.codex/skills,.codex/agents,AGENTS.mdscope rules, sandbox/approval notes - optional OMX sections only when present in the repo or current user environment
Phase 3: Quality Assessment
Use references/quality-criteria.md for detailed scoring.
Quick checklist:
| Criterion | Weight | Check | |---|---:|---| | scope and override clarity | 20 | file explains what subtree it governs and how it relates to parent guidance | | executable commands and gates | 20 | build/test/lint/typecheck commands are real and scoped | | architecture and ownership | 15 | enough map to route future edits without restating obvious code | | safety and permissions | 15 | sandbox, approvals, secrets, destructive operations, external services are clear | | Codex workflow fit | 15 | skills/subagents/plugins/OMX guidance is accurate and not overpromised | | conciseness and currency | 15 | current, dense, non-duplicative, no stale file paths |
Grades:
- A (90-100): scoped, current, executable, and concise
- B (70-89): useful with minor gaps
- C (50-69): basic but missing key operational detail
- D (30-49): sparse, stale, or confusing
- F (0-29): missing, misleading, or unsafe
Phase 4: Report Before Editing
Always provide this report before edits unless the user already approved an implementation plan.
## AGENTS.md Quality Report
### Summary
- Files found: X
- Root guidance: present/missing
- Nested scoped files: X
- Average score: X/100
- Files needing update: X
### Scope Map
| File | Governs | Parent guidance | Notes |
|---|---|---|---|
| `AGENTS.md` | repo root | none | ... |
| `packages/api/AGENTS.md` | `packages/api/**` | root | ... |
### File-by-File Assessment
#### 1. `AGENTS.md`
**Score: XX/100 (Grade: X)**
| Criterion | Score | Notes |
|---|---:|---|
| scope and override clarity | X/20 | ... |
| executable commands and gates | X/20 | ... |
| architecture and ownership | X/15 | ... |
| safety and permissions | X/15 | ... |
| Codex workflow fit | X/15 | ... |
| conciseness and currency | X/15 | ... |
**Issues**
- ...
**Proposed changes**
- ...
Phase 5: Targeted Updates
When approved or already authorized by a plan:
- Preserve existing human-authored guidance unless it is demonstrably stale.
- Keep root guidance global and short.
- Move subtree-specific detail to the narrowest applicable nested
AGENTS.mdinstead of duplicating it everywhere. - Preserve marker blocks exactly unless the user explicitly asks to repair them.
- Prefer additions or surgical rewrites over wholesale replacement.
- Remove stale commands only after verifying current replacements.
- Do not add generic advice that Codex already knows.
Phase 6: Verification
Run the smallest checks that prove the edits:
git diff --check- command existence checks for newly documented commands when cheap
- repo docs or lint gates when AGENTS.md is part of a larger docs change
- targeted search for stale names or paths removed by the update
If a documented full gate is expensive, state whether it was run or why it was not.
Reference Files
references/quality-criteria.md— scoring rubric and red flagsreferences/templates.md— root, monorepo package, frontend/backend/docs templatesreferences/update-guidelines.md— what to add, avoid, and preserve
Common Issues to Flag
- root
AGENTS.mdmissing commands required by CI or local development - nested
AGENTS.mdcontradicts parent guidance without saying why - stale paths after a refactor
- Claude-only guidance copied into Codex files without AGENTS.md scope semantics
- dangerous operations not gated by explicit approval language
- external production services or credentials not called out
- skills/subagents/plugins described as available when they are only aspirational
- OMX workflows documented as universal Codex features instead of environment-specific enhancements
Final Output After Edits
## AGENTS.md Update Summary
### Files changed
- `AGENTS.md` — ...
- `packages/api/AGENTS.md` — ...
### What improved
- scope/override clarity
- command/gate accuracy
- safety boundaries
### Verification
- `git diff --check` — passed
- `<targeted command>` — passed/failed/skipped with reason
### Remaining risks
- ...
Related Skills
bahayonghang/goal-meta-skill
development
VerifiedTrustedCommunity
Turn vague or complex Codex tasks into strong `/goal` commands with outcome, verification, constraints, boundaries, iteration policy, completion evidence, and pause/block conditions. Use when the user asks for Codex goal instructions, Goal 指令, 目标指令, `/goal` prompts, 中文 Goal 模板, plan-to-goal interviews, success criteria, verification commands, or bounded agent work definitions.
15SKILL.mdUpdated Jun 13, 2026
bahayonghang/ast-grep
tools
VerifiedTrustedCommunity
Write, debug, and validate ast-grep structural code search rules. Use this skill when the user needs syntax-aware code search, AST pattern matching, structural refactor discovery, language-construct queries, or searches that plain text tools like rg can miss, such as finding functions with particular descendants, calls inside specific contexts, missing error handling, React hook shapes, decorators, or other Tree-sitter-backed code structures.
15SKILL.mdUpdated Jun 9, 2026
bahayonghang/goudi
development
VerifiedTrustedCommunity
Use when the user asks to ground an ambitious proposal, avoid over-grand designs, make a bold direction executable, pressure-test feasibility, prevent "too much vision and too little landing", or turn a strategy/refactor/product idea into the smallest verifiable first move with stop rules. Trigger for requests such as 落地, 先落地, 别太飘, 收一收, 可执行, 可验证, 止损, and for follow-ups after geju-style big-picture thinking. Do not trigger for ordinary code review or implementation unless the user explicitly asks to ground or shrink the plan first.
15SKILL.mdUpdated Jun 7, 2026
bahayonghang/geju
development
VerifiedTrustedCommunity
Use when the user explicitly asks to think bigger, open up the design space, challenge conservative design, avoid over-indexing on backward compatibility, escape local-detail fixation, or make a bold high-level product or architecture direction call. Use for strategic reframing, not for ordinary code review, PRD writing, implementation planning, or adversarial risk review.
15SKILL.mdUpdated Jun 7, 2026