tacogips/ts-coding-standards
.agents/skills/ts-coding-standards/SKILL.md
Use when writing, reviewing, or refactoring TypeScript code. Provides type safety patterns, error handling, project layout, and async programming guidelines.
development
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add tacogips/codex-agent ts-coding-standardsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 12:56 PM22.6s6 files scanned
SKILL.md
- name:
- ts-coding-standards
- description:
- Use when writing, reviewing, or refactoring TypeScript code. Provides type safety patterns, error handling, project layout, and async programming guidelines.
- allowed-tools:
- Read, Grep, Glob
TypeScript Coding Standards
This skill provides modern TypeScript coding guidelines and best practices for this project.
When to Apply
Apply these standards when:
- Writing new TypeScript code
- Reviewing or refactoring existing TypeScript code
- Designing module APIs and interfaces
- Implementing error handling strategies
Core Principles
- Type Safety Over Convenience - Never sacrifice type safety for shorter code
- Explicit Over Implicit - Make types and intentions clear
- Simple Over Clever - Prefer readable code over clever abstractions
- Fail Fast - Catch errors at compile time, not runtime
Quick Reference
Must-Use Patterns
| Pattern | Use Case |
|---------|----------|
| Discriminated Unions | State machines, API responses, Result types |
| Branded Types | IDs, emails, validated strings |
| readonly | Data that should not mutate |
| unknown in catch | Safe error handling |
| Explicit undefined checks | Array/object indexed access |
Must-Avoid Anti-Patterns
| Anti-Pattern | Alternative |
|--------------|-------------|
| any type | unknown with type guards |
| Throwing exceptions for control flow | Result type pattern |
| Optional chaining without null check | Explicit narrowing |
| Deep folder nesting (>3 levels) | Flat, feature-based structure |
| Implicit undefined in optional props | Explicit T \| undefined |
Detailed Guidelines
For comprehensive guidance, see:
- Error Handling Patterns - Result types, discriminated unions, neverthrow
- Type Safety Best Practices - Branded types, strict config, type guards
- Project Layout Conventions - Directory structure, file naming, imports
- Async Programming Patterns - Promise handling, concurrent execution
- Security Guidelines - Credential protection, path sanitization, sensitive data handling
tsconfig.json Strict Mode
This project uses maximum TypeScript strictness. Ensure your code compiles with:
{
"compilerOptions": {
"strict": true,
"noUncheckedIndexedAccess": true,
"exactOptionalPropertyTypes": true,
"noPropertyAccessFromIndexSignature": true,
"noFallthroughCasesInSwitch": true,
"noImplicitOverride": true,
"noImplicitReturns": true,
"noUnusedLocals": true,
"noUnusedParameters": true
}
}
References
- TypeScript Advanced Patterns 2025
- The Strictest TypeScript Config
- neverthrow - Type-Safe Errors
Related Skills
tacogips/test-refactor
development
VerifiedTrustedCommunity
Use when refactoring tests for better maintainability. Provides guidelines for removing duplicates, DRYing fixtures/assertions, restructuring test organization, renaming, and splitting oversized files.
SKILL.mdUpdated Apr 16, 2026
tacogips/test-plan
testing
VerifiedTrustedCommunity
Use when creating test plans from implementation and design documents. Provides test plan structure, test case tracking, and coverage guidelines.
SKILL.mdUpdated Apr 16, 2026
tacogips/supply-chain-secure-publish
development
VerifiedTrustedCommunity
Use when creating, publishing, or maintaining npm packages with Bun. Provides Shai-Hulud supply chain attack countermeasures including npm token management, 2FA enforcement, provenance signing, trusted publishing via GitHub Actions, and pre-publish security checklists.
SKILL.mdUpdated Apr 16, 2026
tacogips/supply-chain-secure-install
development
VerifiedTrustedCommunity
Use when installing, updating, or auditing npm dependencies with Bun. Provides Shai-Hulud supply chain attack countermeasures including bunfig.toml hardening, lockfile verification, trustedDependencies management, and CI/CD pipeline security.
SKILL.mdUpdated Apr 16, 2026