hayatosc/self-ship
home/dot_agents/skills/self-ship/SKILL.md
Self-review, improve, commit, and push code that Claude has just written. Use this skill when the user asks Claude to "self-ship", "review and ship", "review then commit and push", or wants Claude to autonomously review its own output, apply improvements, and publish the changes to the remote repository. Triggered by: "self-ship", "ship it", "review and push", "review my changes and commit", or similar requests to complete the full write → review → commit → push cycle.
development
Updated Apr 18, 2026
$ install --global
skillsauthnpx skillsauth add hayatosc/dotfiles self-shipInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 18, 2026, 7:47 AM19.0s1 file scanned
SKILL.md
- name:
- self-ship
- description:
- >-
- Triggered by:
- self-ship", "ship it", "review and push",
Self-Ship
Autonomously review the code you just wrote, apply improvements, commit, and push.
Workflow
Follow these steps in order:
1. Identify scope
Determine which files were modified in the current session. Check git status to confirm:
git status
git diff
2. Self-review
Critically review every file you touched. Re-read each modified file as it now exists, not just the diff. Check for:
- Correctness – logic errors, off-by-one errors, missing edge cases
- Security – injection vulnerabilities, exposed secrets, unsafe operations
- Simplicity – over-engineering, unnecessary abstractions, dead code
- Consistency – naming conventions, code style, patterns used elsewhere in the repo
- Completeness – missing error handling at system boundaries (user input, external APIs)
- Principles – local repo instructions, design principles, and architectural intent
For each file, explicitly ask:
- Does this file still make sense as a whole after my change?
- Did I leave behind stale paths, comments, helpers, or structure from earlier iterations?
- Can this be made simpler without reducing clarity or safety?
Write a brief internal review summary noting issues found.
3. Apply improvements
Fix every issue identified in the review. Keep changes minimal and focused—do not refactor code unrelated to the review findings.
4. Final check
Re-read the improved files in full to confirm the final state is coherent, simple, and consistent. Do not stop at "the diff looks fine" if the resulting file still feels awkward.
Run tests if a test suite exists:
# run tests
5. Commit
Stage only the files you modified. Verify what is staged before committing:
git add <specific files>
git diff --staged
git commit -m <commit message>
6. Push
Push to the current branch's upstream:
git push
If no upstream is set:
git push -u origin <current-branch>
Guidelines
- Never use
--no-verifyto bypass pre-commit hooks. If a hook fails, fix the underlying issue and create a new commit. - Never force-push to
main/master. Warn the user if the current branch is a protected branch. - Never commit secrets (
.env, credentials, tokens). Warn the user if any staged file looks like it contains credentials. - Prefer new commits over amending published commits.
- Stage specific files—never
git add -Aorgit add .without explicitly checking what is staged. - If the push requires confirmation (e.g., force-push, protected branch), stop and ask the user before proceeding.
- Prefer simplification over defense of prior work—remove or collapse code when it produces a cleaner result.
- Review the final file, not only the patch—many mistakes come from stale surrounding code, not the edited lines themselves.
Related Skills
hayatosc/typescript-recommend-tools
tools
VerifiedTrustedCommunity
Recommend a modern TypeScript toolchain. Use when choosing or updating a TypeScript stack for Node or CLI projects, libraries or packages, and web apps or APIs; selecting tsgo as the primary typechecker with tsc as compatibility fallback; recommending Hono, tsx, tsdown, Vite, Vitest, oxlint, oxlint-tsgolint, oxfmt, or deciding between bun and pnpm.
1SKILL.mdUpdated May 27, 2026
hayatosc/typescript-best-practices
development
VerifiedTrustedCommunity
Implement, review, and refactor TypeScript code with a strong bias toward type safety. Use to fix TypeScript errors, remove `any` or unsafe `as`, review type safety, tighten TypeScript or lint settings, and ship ESM-first code that passes the repository's typecheck without weakening types.
1SKILL.mdUpdated May 27, 2026
hayatosc/self-ship
development
VerifiedTrustedCommunity
Self-review, improve, commit, and push code that Claude has just written. Use this skill when the user asks Claude to "self-ship", "review and ship", "review then commit and push", or wants Claude to autonomously review its own output, apply improvements, and publish the changes to the remote repository. Triggered by: "self-ship", "ship it", "review and push", "review my changes and commit", or similar requests to complete the full write → review → commit → push cycle.
1SKILL.mdUpdated May 27, 2026
hayatosc/refactoring-code
development
VerifiedTrustedCommunity
Analyze and execute behavior-preserving refactors in small, verified steps. Use when the user asks to refactor, clean up code structure, extract functions or modules, reduce duplication, improve maintainability, or modernize code without changing external behavior.
1SKILL.mdUpdated May 27, 2026