원클릭으로
audit
Full-project code audit workflow: audit then fix
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Full-project code audit workflow: audit then fix
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Interview the user relentlessly about a plan or design. Use when the user wants to stress-test a plan before building, or uses any 'grill' trigger phrases.
Surface deepening opportunities in a codebase — shallow modules, seam leaks, missing locality — and grill through whichever one you pick. Architecture-pattern aware (monolith / distributed / serverless).
Reconcile and validate all documents in the project's docs/ directory
Systematic root cause analysis. No fixes without investigation
Principal Engineer persona. Production-first technical judgment
Standalone QA investigation and fix workflow
/audit [scope] [guidance] - Full-project code audit workflow (audit first, then fix)
Broad repository audit for overall code health. Not change-scoped.
scope (optional): module/path to narrow audit. Defaults to full project sweep.guidance (optional): free-form sentence to steer audit focus (e.g. focus areas, priorities, known concerns). Passed to all reviewers.CRITICAL - must fix now | MEDIUM - should fix soon | LOW - suggestion (max 5)
All audit and fix work must be delegated to sub-agents via the Task tool to conserve the main context window. Never read full source files, run analysis, apply fixes, or stream raw findings in the main conversation. The main context only receives: consolidated reports, user prompts, and fix approvals.
Invocation of /audit is treated as explicit approval for read-only git commands in the current repo (git status/diff/log). Do not run git write/destructive operations without separate user confirmation.
Scope (MANDATORY):
.git/, node_modules/, dist/, build/, .next/, .cache/, coverage artifacts, lockfile vendor caches.APPROVED with Actions: none (nothing to audit).Guidance (OPTIONAL):
Context (MANDATORY):
README, docs/architecture.md, docs/requirements.md when present.git status/diff/log) for recent risk areas (context only, not scope selection).Pass 1 - Audit (MANDATORY):
Audit Report (MANDATORY):
APPROVED and stop.Proceed to fix now? (recommended: yes) [Y/n].Pass 2 - Fix (MANDATORY when approved):
Re-audit (MANDATORY):
CHANGES_NEEDED with concrete missing context/actions.Output (MANDATORY, lightweight):
# Audit: {scope}
Scope: source={full_project|explicit}; files_scanned={count}; exclusions={list}
Reviewers: {list}
## Findings
### CRITICAL
- {issue} file:line
Evidence: {exact code/pattern}
Impact: {concrete consequence}
### MEDIUM
- {issue} file:line
Evidence: {exact code/pattern}
Impact: {concrete consequence}
### LOW (max 5)
- {issue} file:line
Evidence: {exact code/pattern}
## Verdict: APPROVED | CHANGES_NEEDED
## Actions: {prioritized list}