sd0xdev/safe-remove
skills/safe-remove/SKILL.md
Safely remove plugin assets (skill/agent/rule/script/hook) with dependency detection and reference cleanup. Use when: user says 'remove skill', 'delete skill', 'deprecate', 'clean up unused', or /safe-remove. Not for: code refactoring (use /simplify), feature removal requiring architecture changes (manual).
$ install --global
skillsauthnpx skillsauth add sd0xdev/sd0x-dev-flow safe-removeInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 18, 2026, 4:14 AM30.8s2 files scanned
SKILL.md
- name:
- safe-remove
- description:
- Safely remove plugin assets (skill/agent/rule/script/hook) with dependency detection and reference cleanup. Use when: user says 'remove skill', 'delete skill', 'deprecate', 'clean up unused', or /safe-remove. Not for: code refactoring (use /simplify), feature removal requiring architecture changes (manual).
- disable-model-invocation:
- true
- allowed-tools:
- Bash(bash:*), Bash(git:*), Read, Grep, Glob, Edit, Write, AskUserQuestion
Safe Remove
Safely remove plugin assets by discovering dependencies, classifying impact, and executing removal with verification.
Input
/safe-remove <type> <name> [--execute] [--dry-run]
| Argument | Description | Default |
|----------|-------------|---------|
| <type> | Asset type: skill, agent, rule, script, hook | Required |
| <name> | Asset name (e.g., create-skill, strict-reviewer) | Required |
| --execute | Apply removal (with AskUserQuestion confirmation) | off |
| --dry-run | Output plan only (default behavior) | on |
If both
--dry-runand--executeare provided,--dry-runwins (safe default).
Workflow
sequenceDiagram
participant U as User
participant S as /safe-remove
participant C as Codebase
S->>C: Phase 1: Resolve target files
S->>C: Phase 2: Build reference graph
S->>S: Phase 3: Classify (BLOCKER/PATCHABLE)
alt Has BLOCKER
S->>U: HALT — show blockers with file:line
else Dry-run (default)
S->>U: Output removal plan
else --execute
U->>S: AskUserQuestion approval
S->>C: Phase 4: Patch → Delete
S->>C: Phase 5: Verify
S->>U: Removal complete
end
Phase 1: Resolve Target
Validate <type> and locate canonical files for the asset.
| Type | Primary Files | Secondary Files |
|------|--------------|-----------------|
| skill | skills/<name>/ (entire directory) | — |
| agent | agents/<name>.md | — |
| rule | rules/<name>.md | .claude/rules/<name>.md (mirror) |
| script | scripts/<name>.* | — |
| hook | Entry in hooks/hooks.json | Hook script file |
If target not found, output error: Target not found: <type> <name> and stop.
Phase 2: Build Reference Graph
Scan the entire codebase for references to the target. Use type-specific patterns from references/removal-policy.md.
# Core scan — find all references
grep -rn "^skills:.*<name>" agents/ --include="*.md"
grep -rn "/<name>" CLAUDE.md .claude/CLAUDE.md CLAUDE.template.md
grep -rn "/<name>" README*.md
grep -rn "/<name>\|<name>" rules/ skills/ --include="*.md"
grep -rn "<name>" hooks/hooks.json
grep -rn "<name>" test/ --include="*.test.js"
Phase 3: Classify Impacts
Apply 2-tier classification per references/removal-policy.md:
| Tier | Definition | Action | |------|-----------|--------| | BLOCKER | Structured runtime binding — removal breaks execution | HALT with file:line details | | PATCHABLE | Prose/documentation reference — safe to auto-edit | Include in patch plan |
Phase 4: Apply (--execute only)
Requires AskUserQuestion confirmation before any changes.
Execution order (patches first, deletes last):
- Patch PATCHABLE references:
- Remove table rows from CLAUDE.md,
.claude/CLAUDE.md, CLAUDE.template.md - Remove/update entries in README.md + locale variants (count + detail row)
- Update prose mentions in other skills/rules
- Remove table rows from CLAUDE.md,
- Delete target files:
- For
skilltype: remove entireskills/<name>/directory +test/skills/<name>*.test.js - For
scripttype: removescripts/<name>.*+test/scripts/<name>.test.js - For
hooktype: remove hook script + JSON entry +test/hooks/<name>.test.js - For other types: remove primary + secondary files per Phase 1 table
- Remove empty directories after deletion
- For
Note:
.claude/CLAUDE.mdmust be patched directly — do not rely on hook auto-sync for content removal.
Phase 5: Verify
Run type-specific verification from references/removal-policy.md:
# Verify no residual references (excluding archived docs)
grep -rn "^skills:.*<name>" agents/ --include="*.md"
grep -rn "/<name>" CLAUDE.md .claude/CLAUDE.md CLAUDE.template.md README*.md skills/ --include="*.md" | grep -v "archived/"
If residual references found, report them. If clean, output Verification passed.
Output Format
Dry-run Plan
## Safe Remove Plan: <type> <name>
### Target Files (to delete)
| File | Status |
|------|--------|
| skills/<name>/SKILL.md | DELETE |
| test/skills/<name>*.test.js | DELETE (if exists) |
### BLOCKER References (must resolve first)
| File:Line | Pattern | Why |
|-----------|---------|-----|
| agents/foo.md:3 | skills: <name> | Agent skills field |
### PATCHABLE References (auto-fix)
| File:Line | Current | Patch |
|-----------|---------|-------|
| CLAUDE.md:90 | \| /name \| desc \| | REMOVE ROW |
| README.md:308 | \| /name \| desc \| | REMOVE ROW |
### Verdict
- BLOCKER count: N → ⛔ HALT (resolve blockers first)
- BLOCKER count: 0, PATCHABLE count: M → ✅ Ready to execute
Prohibited
- Auto-triggering (always explicit invocation only)
- Deleting without
--executeflag + user confirmation - Removing assets referenced in auto-loop rules without user acknowledgment
- Force-deleting when BLOCKERs exist
- Modifying files outside the removal scope (no side-effect changes)
References
| File | Purpose | When to Read |
|------|---------|-------------|
| references/removal-policy.md | BLOCKER/PATCHABLE classification rules + per-asset-type matrix | Always (Phase 2-5) |
Examples
/safe-remove skill create-skill
→ Dry-run plan showing skill dir + tests to delete + 12 PATCHABLE references
/safe-remove skill create-skill --execute
→ AskUserQuestion → patch 12 refs → delete skill dir + test/skills → verify clean
/safe-remove agent unused-agent
→ Dry-run: 1 file to delete, check for BLOCKER in agents skills: field
Related Skills
sd0xdev/zh-tw
documentation
VerifiedTrustedCommunity
Rewrite the previous reply in Traditional Chinese
147SKILL.mdUpdated Apr 28, 2026
sd0xdev/watch-ci
development
VerifiedTrustedCommunity
Monitor GitHub Actions CI runs until completion. Use when: watching CI after push, checking build status, monitoring PR checks, waiting for CI completion, user says 'watch CI', 'check CI', 'CI status', 'monitor build', or /watch-ci. Not for: pushing code (use push-ci), creating PRs (use create-pr). Output: per-run verdict (pass/fail/timeout).
147SKILL.mdUpdated Apr 28, 2026
sd0xdev/verify
development
VerifiedTrustedCommunity
Verification loop — lint -> typecheck -> unit -> integration -> e2e
147SKILL.mdUpdated Apr 28, 2026
sd0xdev/update-docs
development
VerifiedTrustedCommunity
Research current code state then update corresponding docs, ensuring docs stay in sync with code.
147SKILL.mdUpdated Apr 28, 2026