euxx/silent-failure-hunter
skills/silent-failure-hunter/SKILL.md
Audits error handling for silent failures, inadequate user feedback, and unjustified fallback behavior. Finds issues in catch blocks, fallbacks, and error paths. Use after modifying error handling code.
development
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add euxx/claude-skills-for-copilot silent-failure-hunterInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 2:38 PM6.4s1 file scanned
SKILL.md
- name:
- silent-failure-hunter
- description:
- Audits error handling for silent failures, inadequate user feedback, and unjustified fallback behavior. Finds issues in catch blocks, fallbacks, and error paths. Use after modifying error handling code.
- argument-hint:
- [file or directory to audit]
- user-invocable:
- true
Silent Failure Hunter
Audit error handling code for silent failures, inadequate user feedback, and unjustified fallback behavior. Every error that occurs without proper logging and user notification is a critical defect.
Core Principles (non-negotiable)
- Silent failures are unacceptable — any error without proper logging and user notification is a critical defect.
- Users deserve actionable feedback — every error message must tell users what went wrong and what they can do.
- Fallbacks must be explicit and justified — silently falling back to alternative behavior hides problems.
- Catch blocks must be specific — broad exception catching hides unrelated errors and makes debugging impossible.
- Mock/fake implementations belong only in tests — production fallbacks to mocks indicate architectural problems.
Review Process
1. Identify All Error Handling Code
Systematically locate:
- All try/catch blocks
- All error callbacks and error event handlers
- All conditional branches that handle error states
- All fallback logic and default values used on failure
- Optional chaining (
?.) used in error handlers or callbacks where errors should be explicitly handled (not general null-safe property access)
2. Scrutinize Each Error Handler
For every error handling location:
Logging quality: Is the error logged with appropriate severity and context? Would this log help debug the issue months from now?
User feedback: Does the user receive clear, actionable feedback? Is the error message specific enough to be useful?
Catch block specificity: Does the catch block catch only the expected error types? List every unexpected error type that could be accidentally suppressed.
Fallback behavior: Is the fallback explicitly justified? Does it mask the underlying problem? Would the user be confused by the fallback rather than seeing an error?
Error propagation: Should this error propagate to a higher-level handler? Is it being swallowed when it should bubble up?
3. Check for Hidden Failure Patterns
- Empty catch blocks (forbidden)
- Catch blocks that only log and continue without user feedback
- Returning null/undefined/default values on error without logging
- Optional chaining (
?.) used in contexts where an error should be handled explicitly rather than silently skipped - Retry logic that exhausts attempts without informing the user
Output Per Issue
- Location: file path and line number
- Severity: CRITICAL (silent failure, broad catch) / HIGH (poor error message, unjustified fallback) / MEDIUM (missing context)
- Issue: what's wrong and why it's problematic
- Hidden errors: specific error types that could be suppressed
- User impact: how this affects debugging and user experience
- Recommendation: specific code changes with example corrected code
Related Skills
euxx/type-design-analyzer
testing
VerifiedTrustedCommunity
Analyzes type design quality by rating encapsulation, invariant expression, usefulness, and enforcement. Helps design types that make invalid states unrepresentable. Use when reviewing new types or data models.
SKILL.mdUpdated Apr 16, 2026
euxx/test-analyzer
testing
VerifiedTrustedCommunity
Reviews test coverage quality from a behavioral perspective, identifying critical gaps and test quality issues. Does not check line coverage — checks meaningful scenario coverage. Use after adding or modifying tests.
SKILL.mdUpdated Apr 16, 2026
euxx/security-threat-model
development
VerifiedTrustedCommunity
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse paths, or perform AppSec threat modeling. Do not trigger for general architecture summaries, code review, or non-security design work.
SKILL.mdUpdated Apr 16, 2026
euxx/review-toolkit
tools
VerifiedTrustedCommunity
Orchestrates a comprehensive code review using up to 6 specialist skills. Dispatches code-review, code-simplifier, comment-analyzer, silent-failure-hunter, type-design-analyzer, and test-analyzer based on the scope of changes. Use for thorough end-to-end review of code changes.
SKILL.mdUpdated Apr 16, 2026