lucianghinda/sandi-metz-rules
skills/sandi-metz-rules/SKILL.md
This skill should be used when users request code review, refactoring, or code quality improvements for Ruby codebases. Apply Sandi Metz's four rules for writing maintainable object-oriented code - classes under 100 lines, methods under 5 lines, no more than 4 parameters, and controllers instantiate only one object. Use when users mention "Sandi Metz", "code quality", "refactoring", or when reviewing Ruby code for maintainability.
$ install --global
skillsauthnpx skillsauth add lucianghinda/superpowers-ruby sandi-metz-rulesInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 25, 2026, 1:11 PM173.9s2 files scanned
SKILL.md
- name:
- sandi-metz-rules
- description:
- This skill should be used when users request code review, refactoring, or code quality improvements for Ruby codebases. Apply Sandi Metz's four rules for writing maintainable object-oriented code - classes under 100 lines, methods under 5 lines, no more than 4 parameters, and controllers instantiate only one object. Use when users mention "Sandi Metz", "code quality", "refactoring", or when reviewing Ruby code for maintainability.
Sandi Metz Rules
Overview
This skill helps apply Sandi Metz's four rules for writing maintainable object-oriented code to Ruby codebases. These rules are heuristics that encourage good design practices, making code easier to understand, test, and maintain.
The Four Rules
- Classes can be no longer than 100 lines of code
- Methods can be no longer than 5 lines of code
- Pass no more than 4 parameters into a method
- Controllers can instantiate only one object
When to Use This Skill
Apply this skill when:
- Users explicitly request applying Sandi Metz's rules
- Reviewing Ruby code for maintainability and code quality
- Refactoring existing Ruby code to improve design
- Users ask about "code smells" or improving object-oriented design
- Analyzing Ruby code for complexity or maintainability issues
- Users mention terms like "POODR" or reference Sandi Metz's work
Code Review Workflow
1. Analyze the Code
When reviewing code against Sandi Metz's rules:
Read the reference document: First, load the detailed rules documentation:
Read references/rules.md
Measure accurately:
- For classes: Count lines of actual code (exclude blank lines, comments, class definition, and
endstatements) - For methods: Count lines of actual code (exclude blank lines, comments, method definition, and
endstatements) - For parameters: Count all explicit parameters including keyword arguments (but not
&block) - For controllers: Count object instantiations in each action (excluding finding existing objects)
Identify violations: Scan the codebase for violations of each rule. Use grep or file searching to find classes and methods, then analyze them systematically.
2. Prioritize Issues
Not all violations are equal:
High priority:
- Classes over 200 lines (severe violations)
- Methods over 10 lines (severe violations)
- Methods with 6+ parameters
- Controllers with complex business logic
Medium priority:
- Classes between 100-200 lines
- Methods between 5-10 lines
- Methods with 5 parameters
Low priority:
- Borderline cases (e.g., 6-line methods)
- Violations in test files, configuration, or DSLs
3. Suggest Specific Refactorings
For each violation, provide concrete refactoring strategies:
Long classes:
- Extract related methods into new classes
- Identify separate responsibilities using Single Responsibility Principle
- Use composition or modules to share behavior
- Apply patterns: Strategy, Decorator, Command, Facade
Long methods:
- Extract sub-methods with descriptive names
- Replace conditionals with polymorphism
- Use guard clauses to reduce nesting
- Apply Composed Method pattern (keep methods at one level of abstraction)
- Extract complex expressions into well-named methods
Too many parameters:
- Introduce Parameter Object for related parameters
- Use Builder pattern for complex construction
- Replace parameters with method calls (use instance variables)
- Consider if the method belongs in a different class
Fat controllers:
- Extract service objects or use cases
- Apply Command or Interactor patterns
- Create Facade objects for complex orchestration
- Move business logic to domain layer
4. Provide Code Examples
When suggesting refactorings:
- Show before and after code examples
- Explain why the refactored version is better
- Name any patterns used
- Highlight how the change improves testability and clarity
5. Consider Context
Remember that rules can be broken with good reason:
- Configuration files (e.g., routes.rb)
- Test files (though they should still be readable)
- DSL definitions
- Generated code or database migrations
- When following the rule would make code less clear
Always note when a violation might be acceptable and explain why.
Usage Patterns
Pattern 1: Full Codebase Review
When reviewing an entire codebase:
- Search for Ruby files using glob patterns
- Identify the largest classes and methods first
- Check controllers for business logic
- Prioritize violations by severity
- Provide a summary of findings with specific file locations and line numbers
- Suggest refactorings for the most critical issues
Pattern 2: Specific File or Class Review
When reviewing a specific file:
- Load the file
- Measure each class and method
- Identify all rule violations
- Provide specific refactoring suggestions with code examples
- Explain the benefits of each suggested change
Pattern 3: Refactoring Assistance
When actively refactoring code:
- Load references/rules.md for detailed guidance
- Apply the specific refactoring patterns from the reference
- Ensure refactored code follows all four rules
- Verify that tests still pass
- Explain the design improvements made
Code Counting Rules
Use these precise counting rules to ensure consistency:
Class lines:
class MyClass # Don't count
def method # Count: 1
body # Count: 2
end # Don't count
end # Don't count
Method lines:
def my_method # Don't count
line_1 # Count: 1
line_2 # Count: 2
# Don't count (blank line)
# comment # Don't count
line_3 # Count: 3
end # Don't count
Parameters:
def method(a, b, c, d) # 4 parameters - OK
def method(a, b, c, d, e) # 5 parameters - Violation
def method(a:, b:, c:, d:) # 4 parameters - OK
def method(a, b = nil, c = {}) # 3 parameters - OK (defaults still count)
def method(a, *rest) # 2 parameters - OK
def method(a, &block) # 1 parameter (blocks don't count)
Automation
Suggest using static analysis tools to enforce these rules:
- RuboCop: Configure
Metrics/MethodLength,Metrics/ClassLength,Metrics/ParameterLists - Reek: Detects code smells including LongMethod, LargeClass, LongParameterList
- flog: Measures method complexity
- flay: Detects code duplication
Example RuboCop configuration:
Metrics/ClassLength:
Max: 100
Metrics/MethodLength:
Max: 5
Metrics/ParameterLists:
Max: 4
MaxOptionalParameters: 3
Resources
This skill includes a comprehensive reference document with:
- Detailed explanation of each rule
- Rationale and benefits
- Common violations and their causes
- Specific refactoring strategies with examples
- Guidance on when to break the rules
- Related design principles and patterns
Load this reference when doing detailed code analysis or explaining refactoring approaches:
Read references/rules.md
Related Skills
lucianghinda/ruby
development
VerifiedTrustedCommunity
Use when writing, reviewing, or debugging pure Ruby code — idiomatic patterns, modern 3.x+ features (pattern matching, Data.define, endless methods), error handling conventions (raise vs fail, result objects), memoization, and performance idioms. For Rails use rails-guides. For testing use minitest. For code style use sandi-metz-rules.
317SKILL.mdUpdated Apr 25, 2026
lucianghinda/rails-guides
testing
VerifiedTrustedCommunity
Official Rails documentation. Use when asked about any Rails-specific topic including ActiveRecord, routing, controllers, views, mailers, jobs, Action Cable, Action Text, Active Storage, migrations, validations, callbacks, associations, caching, security, or internals.
316SKILL.mdUpdated Apr 25, 2026
lucianghinda/skills/ruby-upgrade
tools
VerifiedTrustedCommunity
--- name: ruby-upgrade description: Use when upgrading the Ruby interpreter version of a Bundler/Rails app — especially "upgrade to Ruby 4", "bump Ruby to 4.0", "audit Ruby 4 compatibility", "what breaks on Ruby 4", or a specific target like "Ruby 4.0.5". Triggers on Ruby-major risk symptoms: CGI.parse/CGI::Cookie removal, Net::HTTP implicit Content-Type dropped, demoted default gems (ostruct/logger/benchmark/irb), SortedSet, Set#inspect changes, native-extension recompile crashes, openssl 4 pin
306SKILL.mdUpdated May 29, 2026
lucianghinda/consulting-an-oracle
development
VerifiedTrustedCommunity
Use when stuck after multiple debug attempts and want to escalate to a stronger one-shot model (GPT-5 Pro, Opus, Gemini Pro) — packages a self-contained "oracle prompt" with Ruby/Rails project briefing, verbatim error, what-was-tried, constraints, and just-enough attached files. Triggers include "ask the oracle", "write a letter to GPT-5", "I'm stuck, draft a prompt for another model", "/tmp/letter.md".
306SKILL.mdUpdated May 9, 2026