Exécutez n'importe quel Skill dans Manus
en un clic

Exécutez n'importe quel Skill dans Manus en un clic

$pwd:

quality-gates

Name: Quality Gates
Author: duyet

// Engineering discipline and systematic quality verification. Core principles, anti-patterns, decision rules, and gate procedures for code review and delivery.

Exécuter dans Manus

$ git log --oneline --stat

stars:0

forks:0

updated:13 mars 2026 à 14:38

SKILL.md

readonly

related-skills.json

même dépôt

duyet-knowledge.md

from "duyet/skills"

Maintain and update knowledge base about Duyet Le (@duyet) - profile, resume, blog posts, projects.

2026-05-230

good-html.md

from "duyet/skills"

Generate or review high-density, interactive, self-contained HTML artifacts based on Thariq Shihipar's "Unreasonable Effectiveness of HTML" patterns. Use this skill when asked to "create HTML," "build a dashboard," "format a PR review," "make an interactive explainer," or when you need to "review and update" existing HTML using the "good-html" style.

2026-05-230

unsloth-training.md

from "duyet/skills"

Fine-tune LLMs with Unsloth using GRPO or SFT. Supports FP8, vision models, mobile deployment, Docker, packing, GGUF export, dataset preparation, synthetic data, MLX (Apple Silicon). Use when: train with GRPO, fine-tune, reward functions, SFT training, FP8 training, vision fine-tuning, phone deployment, docker training, packing, export to GGUF, prepare dataset, synthetic data, install unsloth, environment flags, MLX training.

2026-05-230

clickhouse.md

from "duyet/skills"

MUST USE when reviewing ClickHouse schemas, queries, or configurations. Contains 28 rules that MUST be checked before providing recommendations. Always read relevant rule files and cite specific rules in responses.

2026-03-130

duyetbot-knowledge.md

from "duyet/skills"

Knowledge base about Duyet Le (@duyet) and duyetbot behavioral patterns. Owner profile, knowledge sources, and execution transparency.

2026-03-130

skills-maintenance.md

from "duyet/skills"

Maintain @duyet/skills repository - add, update, validate skills, generate documentation, and manage releases. Use when making changes to this skills repository.

2026-03-130

package.json

"author": "duyet"

"repository": "duyet/skills"

Ouvrir le dépôt GitHub Voir les dépôts du créateur

$ install --global

$ download --local

Exécuter dans Manus

$ useful --forSOC

Analystes en assurance qualité des logiciels et testeursProfessions informatiques et mathématiques15-1253L4

name	quality-gates
description	Engineering discipline and systematic quality verification. Core principles, anti-patterns, decision rules, and gate procedures for code review and delivery.

This skill provides engineering discipline principles and structured quality gate procedures for verifying code quality, security, performance, and production readiness before delivery.

When to Invoke This Skill

Automatically activate for:

Code review and validation
Pre-merge quality checks
Pre-deployment verification
Release readiness assessment
Post-implementation quality audit
Any work where engineering rigor matters

Engineering Discipline

Core Rules

1. No Shortcuts

Every solution must be sustainable long-term
Temporary fixes become permanent debt
If it feels like a workaround, it is

2. Minimal Changes

One logical change per commit
Touch only what's necessary
Edit over Write (preserve context)

3. Verify Before Complete

Tests pass
Lint clean
Manual verification when needed

Decision Rules

When to Refactor

Refactor when:

Adding features is painful
Bugs cascade
Code confuses

Don't when:

Code works, rarely changes
No immediate need

When to Abstract

Abstract when:

Pattern appears 3+ times
Abstraction reduces complexity

Don't when:

Only 1-2 occurrences
Abstraction more complex

Anti-Patterns

Bad	Why	Good
Magic numbers	Unclear	Named constants
God objects	Unmaintainable	Single responsibility
Copy-paste	Bug multiplication	Extract shared
Commented code	Confusion	Git history
Premature optimization	Wrong focus	Measure first

Quality Gate Levels

Standard (Default)

For routine changes, bug fixes, small features:

┌─────────────────────────────────────────────────────────┐
│                    STANDARD GATES                        │
├─────────────────────────────────────────────────────────┤
│ ✓ All tests pass                                        │
│ ✓ Linting clean (no errors)                             │
│ ✓ TypeScript compiles (no type errors)                  │
│ ✓ Code follows project patterns                         │
│ ✓ No obvious security issues                            │
│ ✓ Changes match requirements                            │
└─────────────────────────────────────────────────────────┘

Strict

For significant features, refactors, public APIs:

┌─────────────────────────────────────────────────────────┐
│                     STRICT GATES                         │
├─────────────────────────────────────────────────────────┤
│ All Standard gates PLUS:                                │
│ ✓ Test coverage ≥ 90% for new code                      │
│ ✓ Security scan passes (no high/critical)               │
│ ✓ Performance benchmarks met                            │
│ ✓ API documentation updated                             │
│ ✓ Breaking changes documented                           │
│ ✓ Peer review completed                                 │
└─────────────────────────────────────────────────────────┘

Critical

For security-sensitive, production-critical, high-risk changes:

┌─────────────────────────────────────────────────────────┐
│                    CRITICAL GATES                        │
├─────────────────────────────────────────────────────────┤
│ All Strict gates PLUS:                                  │
│ ✓ Security audit by security-focused review             │
│ ✓ Load testing completed                                │
│ ✓ Rollback procedure documented and tested              │
│ ✓ Monitoring and alerting configured                    │
│ ✓ Stakeholder sign-off obtained                         │
│ ✓ Incident response plan updated                        │
└─────────────────────────────────────────────────────────┘

Quality Gate Procedures

1. Code Quality Gate

# Run these checks in sequence
npm run lint          # or: bun run lint
npm run type-check    # or: bun run type-check
npm run test          # or: bun run test
npm run build         # Verify build succeeds

Verification checklist:

2. Test Coverage Gate

npm run test:coverage

Coverage requirements by level:

Level	Line Coverage	Branch Coverage	Function Coverage
Standard	≥ 70%	≥ 60%	≥ 70%
Strict	≥ 90%	≥ 80%	≥ 90%
Critical	≥ 95%	≥ 90%	≥ 95%

What to test:

3. Security Gate

Automated checks:

npm audit              # Dependency vulnerabilities
npm run lint:security  # Security-focused lint rules (if configured)

Manual review checklist:

No hardcoded secrets or credentials
Input validation on all user inputs
Output encoding to prevent XSS
SQL/NoSQL injection prevention
Authentication checks on protected routes
Authorization verified for sensitive operations
HTTPS enforced for sensitive data
Sensitive data not logged
CORS configured correctly

For Strict/Critical:

OWASP Top 10 review completed
Security-focused code review by second engineer
Penetration testing (Critical only)

4. Performance Gate

Metrics to verify:

Metric	Standard	Strict	Critical
Page Load	< 3s	< 2s	< 1s
API Response	< 500ms	< 200ms	< 100ms
Bundle Size	< 500KB	< 300KB	< 200KB
Memory Leak	None	None	None

Verification steps:

No N+1 queries introduced
Database queries use indexes
Large lists are paginated
Images are optimized
Caching implemented where appropriate
No blocking operations on main thread
Resource cleanup handled

5. Documentation Gate

Required documentation:

Level	README	API Docs	Changelog	Architecture
Standard	✓	-	✓	-
Strict	✓	✓	✓	-
Critical	✓	✓	✓	✓

Checklist:

README updated with new features/changes
API endpoints documented (Strict+)
Breaking changes clearly noted
Migration guide provided (if applicable)
Architecture decisions recorded (Critical)

6. Integration Gate

Verification steps:

Feature works end-to-end
No regression in existing functionality
Cross-browser testing (if frontend)
Mobile responsiveness verified (if applicable)
Third-party integrations tested

For Strict/Critical:

E2E test suite passes
Staging environment validation
User acceptance testing completed

Quality Gate Report Template

## Quality Gate Report

**Feature**: [Feature Name]
**Level**: [Standard | Strict | Critical]
**Date**: [YYYY-MM-DD]
**Reviewer**: [Name]

### Summary
| Gate | Status | Notes |
|------|--------|-------|
| Code Quality | ✅ PASS | All checks clean |
| Test Coverage | ✅ PASS | 92% coverage |
| Security | ✅ PASS | No vulnerabilities |
| Performance | ⚠️ WARN | API slightly slow |
| Documentation | ✅ PASS | Updated |
| Integration | ✅ PASS | E2E passing |

### Detailed Results

#### Code Quality
- Lint: 0 errors, 0 warnings
- TypeScript: 0 errors
- Tests: 47 passed, 0 failed
- Build: Success

#### Test Coverage
- Lines: 92% (target: 90%)
- Branches: 85% (target: 80%)
- Functions: 94% (target: 90%)

#### Security
- npm audit: 0 vulnerabilities
- Manual review: Completed, no issues
- [x] Input validation verified
- [x] Auth checks verified

#### Performance
- Page load: 1.8s (target: < 2s)
- API response: 180ms (target: < 200ms)
- Bundle size: 287KB (target: < 300KB)

#### Issues Found
1. [WARN] API endpoint `/api/users` responds in 450ms under load
   - Recommendation: Add caching layer
   - Severity: Low
   - Blocking: No

### Verdict

**✅ APPROVED FOR MERGE**

All critical gates pass. Performance warning noted for future optimization.

Gate Failure Handling

When a gate fails:

1. Identify Severity

Severity	Description	Action
Blocker	Prevents deployment	Must fix before merge
Critical	Security/data risk	Must fix before merge
Major	Significant issue	Should fix, can defer with approval
Minor	Quality concern	Can defer to follow-up

2. Document the Issue

### Gate Failure: [Gate Name]

**Severity**: [Blocker | Critical | Major | Minor]
**Description**: [What failed and why]
**Impact**: [What happens if not fixed]
**Remediation**: [How to fix]
**Timeline**: [When it will be fixed]
**Approved By**: [If deferring, who approved]

3. Resolution Path

Blocker/Critical → Fix immediately → Re-run gates
Major → Fix or get approval → Document decision
Minor → Create follow-up ticket → Proceed with caution

Quick Reference Commands

# Standard gate check
npm run lint && npm run type-check && npm run test && npm run build

# Coverage check
npm run test:coverage

# Security audit
npm audit

# Full strict gate
npm run lint && npm run type-check && npm run test:coverage && npm run build && npm audit

quality-gates

Plus depuis ce dépôt

Plus depuis ce dépôt

When to Invoke This Skill

Engineering Discipline

Core Rules

1. No Shortcuts

2. Minimal Changes

3. Verify Before Complete

Decision Rules

When to Refactor

When to Abstract

Anti-Patterns

Quality Gate Levels

Standard (Default)

Strict

Critical

Quality Gate Procedures

1. Code Quality Gate

2. Test Coverage Gate

3. Security Gate

4. Performance Gate

5. Documentation Gate

6. Integration Gate

Quality Gate Report Template

Gate Failure Handling

1. Identify Severity

2. Document the Issue

3. Resolution Path

Quick Reference Commands

Checklist Summary

Pre-Review (Author)

Code Review (Reviewer)

Pre-Merge

Pre-Deploy (Critical)

When to Invoke This Skill

Engineering Discipline

Core Rules

1. No Shortcuts

2. Minimal Changes

3. Verify Before Complete

Decision Rules

When to Refactor

When to Abstract

Anti-Patterns

Quality Gate Levels

Standard (Default)

Strict

Critical

Quality Gate Procedures

1. Code Quality Gate

2. Test Coverage Gate

3. Security Gate

4. Performance Gate

5. Documentation Gate

6. Integration Gate

Quality Gate Report Template

Gate Failure Handling

1. Identify Severity

2. Document the Issue

3. Resolution Path

Quick Reference Commands

Checklist Summary

Pre-Review (Author)

Code Review (Reviewer)

Pre-Merge

Pre-Deploy (Critical)