pkuppens/quality-gate
skills/quality-gate/SKILL.md
Runs lint, format, type check, and security scan; enforces pre-commit hooks. Use before every commit and as the final step before opening a PR. Invokes sub-skills (lint, format, type, security) as needed.
development
Updated May 15, 2026
$ install --global
skillsauthnpx skillsauth add pkuppens/pkuppens quality-gateInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 15, 2026, 5:42 AM22.4s1 file scanned
SKILL.md
- name:
- quality-gate
- description:
- Runs lint, format, type check, and security scan; enforces pre-commit hooks. Use before every commit and as the final step before opening a PR. Invokes sub-skills (lint, format, type, security) as needed.
Quality Gate
Enforces code quality before commits and PRs. Runs the minimum required checks for the repo's toolchain.
When to use
- Before every
git commit - Before opening a PR
- After implementation to catch style and correctness issues early
Standard checks
Run these in order (fail fast):
# 1. Lint — catch style and logic issues
uv run ruff check .
# 2. Format — enforce consistent style
uv run ruff format --check .
# 3. Type check (if configured)
uv run ty # Astral type checker; or: uv run pyright
# 4. Tests
uv run pytest
# 5. Pre-commit (runs all hooks)
pre-commit run --all-files
Per-check sub-skills
When these sub-skills are created, invoke them for per-check focus. Until then, run the commands in Standard checks above.
| Sub-skill | Tool | When | |-----------|------|------| | quality-gate-lint | ruff check | Every commit | | quality-gate-format | ruff format | Every commit | | quality-gate-type | ty / pyright | Before PR | | quality-gate-security | ruff check (S rules) / bandit / npm audit | Before PR / CI |
Fix before commit — not after
- Fix lint and format errors immediately; do not
--no-verify. - If a pre-commit hook blocks a commit, investigate the root cause — do not bypass.
- If a check is not configured for this repo, skip it and note the gap.
OpenClaw projects
When the repo is an OpenClaw project (openclaw config, gateway, or agent code), run openclaw-security as a mandatory check:
openclaw security audit --deep
openclaw security audit --fix
Both must pass before integration-commit. Report in Quality Gate Results.
Repo-specific toolchain
Check the repo's pyproject.toml for:
[tool.ruff]— line length, selected rules[tool.ty]or[tool.pyright]— type checking configuration.pre-commit-config.yaml— active hooks
Output
Report pass/fail per check:
## Quality Gate Results
- [x] ruff check — clean
- [x] ruff format --check — clean
- [ ] ty — 2 errors (see below)
- [x] pytest — 42 passed, 0 failed
List errors with file and line reference for any failures.
Integration
- Run after implementation-construction.
- Must pass before integration-commit.
- Use verification-before-completion before claiming work is ready.
Related Skills
pkuppens/sync-branch
testing
VerifiedTrustedCommunity
Syncs remote default branch locally (checkout, fetch --prune, pull) and returns to the previous branch when it still exists. Reports stashes and worktrees not yet handled. Use when the user asks to sync main, update default branch, fetch/pull origin, or run /sync-branch.
SKILL.mdUpdated Jun 6, 2026
pkuppens/azure-devops-work-items
tools
VerifiedTrustedCommunity
Creates, queries, updates, and links Azure Boards work items via az boards CLI. Use when filing ADO work items, running WIQL queries, or setting area path, iteration, tags, and assignee.
SKILL.mdUpdated May 29, 2026
pkuppens/azure-devops-repos
tools
VerifiedTrustedCommunity
Creates, reviews, and completes Azure Repos pull requests and branch policies via az repos CLI. Use when opening ADO PRs, setting required reviewers, or configuring build validation policies.
SKILL.mdUpdated May 29, 2026
pkuppens/azure-devops-pipelines
development
VerifiedTrustedCommunity
Guides Azure Pipelines YAML structure, build validation on PRs, and staged deployment with environments and approvals. Use when authoring azure-pipelines.yml or configuring CI/CD on Azure DevOps.
SKILL.mdUpdated May 29, 2026