kevinslin/audit
active/audit/SKILL.md
Audit a repo for code quality issues using focused heuristics.
$ install --global
skillsauthnpx skillsauth add kevinslin/skills auditInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 10, 2026, 7:07 AM159.5s2 files scanned
SKILL.md
- name:
- audit
- description:
- Audit a repo for code quality issues using focused heuristics.
- dependencies:
- []
Audit
Keep this file lean. Use it only to route the agent to the right subcommand reference.
Subcommands
When the user clearly asks for one of these flows, lead with that subcommand and read the matching reference before acting. If the user names an unsupported audit, say so instead of inventing a workflow.
slop: Audit a codebase for likely LLM-generated code slop such as cargo-cult abstractions, dead helpers, generic wrappers, and code that looks plausible in isolation but does not fit the repo. See./references/slop.md.
Maintenance Rules
- Put the full workflow, heuristics, guardrails, and output requirements for each subcommand in
./references/{command}.md. - Add one reference file per subcommand and keep filenames identical to the subcommand name.
- Do not duplicate detailed command behavior in this file. Keep only routing guidance here.
- Prefer adding a new subcommand for a new audit heuristic instead of stretching
slopto cover unrelated smells.
Related Skills
kevinslin/dev.shortcuts
development
VerifiedTrustedCommunity
Resolve explicit shortcut triggers and usage. Always read this file at the start of a thread or when user mentions `trigger`.
13SKILL.mdUpdated Apr 6, 2026
kevinslin/ag-learn
testing
VerifiedTrustedCommunity
Improve skills from observed agent friction in sessions, PRs, or audits.
13SKILL.mdUpdated Apr 6, 2026
kevinslin/slack-report
development
VerifiedTrustedCommunity
Generate incremental Slack digests for channels, topics, and categories.
9SKILL.mdUpdated May 29, 2026
kevinslin/claw-score
testing
VerifiedTrustedCommunity
Audit an OpenClaw maturity-scorecard surface into an evidence-backed component score report. Use when given a surface from an OpenClaw maturity-scorecard.md and asked to score coverage, quality, readiness, or generate a detailed surface report plus per-component subreports.
9SKILL.mdUpdated May 29, 2026