indrasvat/migration-guard
skills/migration-guard/SKILL.md
Analyze database schema migrations for safety — lock risk, backward compatibility, rollback path, and data preservation. Use when the user says "check migration", "migration safe", "migration review", "schema change review", "will this lock", "migration guard", "review schema changes", "database migration check", "is this migration safe", or when a migration file has been created or modified.
$ install --global
skillsauthnpx skillsauth add indrasvat/claude-code-skills migration-guardInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 23, 2026, 8:13 AM139.9s1 file scanned
SKILL.md
- name:
- migration-guard
- description:
- >
- allowed-tools:
- Bash, Read, Grep, Glob
- argument-hint:
- [migration-file-or-directory]
Migration Guard
Read-only structural analysis. CAVEAT: Lock risk predictions require live table size, row counts, and engine metadata which this skill cannot access. Treat lock assessments as directional, not definitive.
1. Detect framework
Check project root: go.mod with goose/golang-migrate/atlas (Go), drizzle.config.* (Drizzle), alembic.ini or alembic/ (Alembic), knexfile.* (Knex), raw .sql files (generic SQL). Report detected framework. If none match, analyze as raw SQL.
2. Scope
$ARGUMENTS files, or changed migration files since last commit:
git diff --name-only HEAD | grep -iE '(migrat|schema|\.sql)'
Fallback to HEAD~1 with same filter. Read every in-scope file before analysis.
3. Analysis checklist
Lock risk:
- ALTER TABLE on large tables (ADD/DROP/RENAME COLUMN, ADD/DROP INDEX)
- ADD COLUMN with DEFAULT on existing rows (Postgres <11 rewrites table)
- CREATE INDEX without CONCURRENTLY
- Column type changes forcing table rewrite
Backward compatibility:
- NOT NULL without DEFAULT (breaks old app inserts)
- Column/table DROP without deprecation period
- Column rename (old queries break immediately)
- New constraints rejecting data the old app still writes
Rollback path:
- Down/rollback migration exists?
- Rollback is data-safe (up's DROP doesn't lose data irrecoverably)?
- Forward-only justified in a comment?
Data preservation:
- Type widening safe (INT->BIGINT); narrowing dangerous (VARCHAR(255)->VARCHAR(50))
- ENUM additions safe; removals may orphan rows
- DROP COLUMN loses data permanently -- flag unless prior migration copies it
4. Output
Print summary table first:
| Check | Status | Detail |
|------------------------|--------|-------------------------------------------|
| Lock risk | WARN | ADD INDEX without CONCURRENTLY on "orders" |
| Backward compatibility | PASS | |
| Rollback path | FAIL | No down migration found |
| Data preservation | PASS | |
For each WARN/FAIL, print a recommendation below the table: the risk and a concrete remediation.
5. Idempotency
Read-only. No files created or modified. Safe to re-run.
$ARGUMENTS
Related Skills
indrasvat/triage-pr
development
VerifiedTrustedCommunity
Fetch, categorize, and address PR review comments in priority order. Classifies each comment as BLOCKER, QUESTION, SUGGESTION, or NITPICK and works through blockers first. Use when the user says "address PR comments", "fix review feedback", "respond to PR", "handle review comments", "triage PR", "what does the reviewer want", "address feedback", "PR comments", "review feedback", or needs to work through pull request review comments systematically.
3SKILL.mdUpdated May 23, 2026
indrasvat/ship-pr
testing
VerifiedTrustedCommunity
Create a pull request with a standards compliance review gate. Reviews the diff against CLAUDE.md and repo conventions before creating the PR, stopping on discrepancies. Supports tiered PR templates (small, standard, complex). Use when the user says "create PR", "open PR", "ship it", "ship PR", "make a pull request", "push and PR", "ready for review", "send for review", "create a pull request", or wants to create a GitHub pull request from the current branch.
3SKILL.mdUpdated May 23, 2026
indrasvat/rollout-check
testing
VerifiedTrustedCommunity
Verify Kubernetes deployment health — pod status, rollout progress, events, readiness, HPA state, and recent errors. Use when the user says "check rollout", "is deploy healthy", "rollout status", "deployment health", "pod status", "check pods", "why is deploy failing", "k8s health", "verify deployment", "are pods ready", "check deployment", or wants to verify a Kubernetes deployment is healthy after a rollout.
3SKILL.mdUpdated May 23, 2026
indrasvat/prd-generator
documentation
VerifiedTrustedCommunity
Generate comprehensive Product Requirements Documents with interactive discovery, progress tracking, and True Ralph Loop support for autonomous implementation. Use when user wants to (1) create a PRD for a new project/feature, (2) implement a PRD autonomously with fresh Claude sessions, (3) track implementation progress, (4) recover context after session loss. Creates docs/PRD.md and docs/PROGRESS.md.
3SKILL.mdUpdated May 23, 2026