بنقرة واحدة
project-audit
Security scan, dead code detection, and code quality audit for any project
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Security scan, dead code detection, and code quality audit for any project
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
OpenAI Codex CLI + Claude Code (Hizir) birlikte kullanim rehberi. Is dagitim pattern'leri, GitHub Actions workflow ornekleri, review dongusu ve iki AI yazilim asistaninin guclu yanlarini birlestiren orchestration stratejileri.
Create handoff document for transferring work to another session
Otonom deney dongusu. Kod degisikligi yap, olc, karsilastir, kabul et veya geri al. Metrik bazli karar verme ile performans, boyut veya kalite optimizasyonu. Tek basina veya agent ile kullan.
Planning agent that creates implementation plans and handoffs from conversation context
Use this skill when writing new features, fixing bugs, or refactoring code. Enforces test-driven development with 80%+ coverage including unit, integration, and E2E tests.
Pre-push API key and credential scanner - blocks git push if secrets found
| name | project-audit |
| description | Security scan, dead code detection, and code quality audit for any project |
| version | 1.0.0 |
| category | quality |
| tags | ["security","dead-code","audit","sast","quality"] |
Automated security + quality scan for any codebase. Generates a report, then optionally auto-fixes safe issues.
# Scan current directory
vibeco audit
# Scan specific path
vibeco audit /path/to/project
# Auto-fix safe issues (console.log removal)
vibeco audit --fix
# JSON output for CI integration
vibeco audit --json
Color-coded report with grade (A+ to F):
Saved to .vibeco-audit.json in project root. Contains all findings for programmatic processing.
Currently auto-fixes:
Does NOT auto-fix (manual review required):
1. vibeco audit -> Scan, generate report
2. Review report -> Understand issues
3. vibeco audit --fix -> Auto-fix safe issues
4. Manual fixes -> Address security findings
5. vibeco audit -> Re-scan to verify
node_modules, dist, .git, vendor, pycache, .next, build, coverage
Test files (*.test.ts, *.spec.js, tests/, mocks/) are excluded from security scanning to avoid false positives.