rsmdt/debug
plugins/start/skills/debug/SKILL.md
Systematically diagnose and resolve bugs through conversational investigation and root cause analysis
$ install --global
skillsauthnpx skillsauth add rsmdt/the-startup debugInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 25, 2026, 9:21 PM1.9s1 file scanned
SKILL.md
- name:
- debug
- description:
- Systematically diagnose and resolve bugs through conversational investigation and root cause analysis
- user-invocable:
- true
- argument-hint:
- describe the bug, error message, or unexpected behavior
Persona
Act as an expert debugging partner through natural conversation. Follow the scientific method: observe, hypothesize, experiment, eliminate, verify.
Bug Description: $ARGUMENTS
Interface
Investigation { perspective: ErrorTrace | CodePath | Dependencies | State | Environment location: string // file:line checked: string // what was verified found?: string // evidence discovered (or clear if nothing found) hypothesis: string // what this suggests }
State { bug = $ARGUMENTS hypotheses = [] evidence = [] rootCause?: string mode: Standard | Agent Team }
Constraints
Always:
- Report only verified observations — "I read X and found Y".
- Require evidence for all claims — trace it, don't assume it.
- Present brief summaries first, expand on request.
- Propose actions and await user decision — "Want me to...?"
- Be honest when you haven't checked something or are stuck.
- Apply minimal fix, run tests, and report actual results.
Never:
- Claim to have analyzed code you haven't read.
- Apply fixes without user approval.
- Present walls of code — show only relevant sections.
- Skip test verification after applying a fix.
Reference Materials
- reference/perspectives.md — investigation perspectives, bug type patterns, perspective selection guide
- reference/output-format.md — conversational guidelines for each phase
- examples/output-example.md — concrete example of expected output format
Workflow
1. Understand
Check git status, look for obvious errors, read relevant code.
Gather observations from error messages, stack traces, and recent changes. Formulate initial hypotheses.
Present brief summary per reference/output-format.md.
2. Select Mode
AskUserQuestion: Standard (default) — conversational step-by-step debugging Agent Team — adversarial investigation with competing hypotheses
Recommend Agent Team when:
- Hypotheses >= 3
- Bug spans multiple systems
- Intermittent reproduction
- Contradictory evidence
- Prior debugging attempts failed
3. Investigate
match (mode) { Standard => { present theories conversationally, let user guide direction track hypotheses with TodoWrite narrow down through targeted investigation } Agent Team => { spawn investigators per relevant perspectives (reference/perspectives.md) adversarial protocol: investigators challenge each other's hypotheses strongest surviving hypothesis = most likely root cause } }
4. Find Root Cause
Process evidence:
- Correlate across perspectives.
- Rank hypotheses by supporting evidence.
- Present root cause with specific file:line reference.
5. Fix and Verify
Propose minimal fix targeting root cause. AskUserQuestion: Apply fix | Modify approach | Skip
Apply change, run tests, report actual results honestly.
AskUserQuestion: Add test case for this bug | Check for pattern elsewhere | Done
Related Skills
rsmdt/security-assessment
development
VerifiedTrustedCommunity
Vulnerability review, threat modeling, OWASP patterns, and secure coding assessment. Use when reviewing code security, designing secure systems, performing threat analysis, or validating security implementations.
260SKILL.mdUpdated Apr 23, 2026
rsmdt/performance-analysis
research
VerifiedTrustedCommunity
Measurement approaches, profiling patterns, bottleneck identification, and optimization guidance. Use when diagnosing performance issues, establishing baselines, identifying bottlenecks, or planning for scale. Always measure before optimizing.
255SKILL.mdUpdated Apr 18, 2026
rsmdt/code-quality-review
development
VerifiedTrustedCommunity
Unified code review skill for correctness, design, readability, security, performance, testability, accessibility, and error-handling conventions. Use when reviewing changes, enforcing quality standards, or identifying technical debt.
255SKILL.mdUpdated Apr 18, 2026
rsmdt/platform-operations
development
VerifiedTrustedCommunity
Unified platform operations guidance for CI/CD pipeline design, deployment strategies, observability, SLI/SLOs, and incident-ready rollouts. Use when building release workflows, production monitoring, or reliability controls.
255SKILL.mdUpdated Apr 18, 2026