Run any Skill in Manus with one click

$pwd:

agh-code-guidelines

Name: Agh Code Guidelines
Author: compozy

// Enforces AGH Go code style and concurrency patterns before writing or editing any production Go file: error wrapping with %w, errors.Is/As only (no strings.Contains on err.Error), no underscore-discarded errors, slog over log/fmt, context.Context as first arg, compile-time interface assertions, no hardcoded config, CLI flag presence detection, whitespace normalization at CLI boundary, no comments restating WHAT, goroutine ownership and shutdown via context, no fire-and-forget, no time.Sleep in orchestration. Use whenever creating or modifying any *.go file under cmd/ or internal/ that is not a test file. Do not use for *_test.go (use agh-test-conventions), schema migrations (use agh-schema-migration), or contract changes (use agh-contract-codegen-coship).

Run Skill in Manus

$ git log --oneline --stat

stars:127

forks:6

updated:May 12, 2026 at 18:12

File Explorer

3 files

SKILL.md

readonly

name	agh-code-guidelines
description	Enforces AGH Go code style and concurrency patterns before writing or editing any production Go file: error wrapping with %w, errors.Is/As only (no strings.Contains on err.Error), no underscore-discarded errors, slog over log/fmt, context.Context as first arg, compile-time interface assertions, no hardcoded config, CLI flag presence detection, whitespace normalization at CLI boundary, no comments restating WHAT, goroutine ownership and shutdown via context, no fire-and-forget, no time.Sleep in orchestration. Use whenever creating or modifying any .go file under cmd/ or internal/ that is not a test file. Do not use for _test.go (use agh-test-conventions), schema migrations (use agh-schema-migration), or contract changes (use agh-contract-codegen-coship).
trigger	implicit

AGH Code Guidelines

These are the AGH-specific Go style and concurrency rules. They exist because reviewers will block PRs that violate them, and most violations are caught by lint/CI only after the fact. Activate this skill before writing or editing production Go code so the patterns land correctly the first time.

Companion skills cover narrower domains: agh-test-conventions for tests, agh-cleanup-failure-paths for multi-step error returns, agh-schema-migration for SQLite changes, agh-contract-codegen-coship for contract/OpenAPI edits, golang-pro for general Go idiom guidance. Activate those alongside when their domain applies.

Procedures

Step 1: Identify the Edit Surface

Confirm the target is a production Go file (cmd/** or internal/**, not *_test.go).
Read references/coding-style.md for the canonical style rules.
Read references/concurrency-patterns.md for the canonical concurrency rules.

Step 2: Apply Error Discipline

Wrap every error with context: fmt.Errorf("operation: %w", err). The %w verb is mandatory when the caller may need to match the cause.
Match errors with errors.Is and errors.As exclusively. strings.Contains(err.Error(), ...) is a blocking violation — replace with sentinel errors or typed errors.
Never ignore an error with _. Either handle it or write a one-line justification comment explaining why the error is impossible or irrelevant.
No panic() or log.Fatal() in production paths. The only legitimate use is unrecoverable startup failure in main.

Step 3: Apply Logging and Context Discipline

Use log/slog for every operational log line. log.Printf, fmt.Println, fmt.Printf are forbidden in production paths.
Pass context.Context as the first argument to any function that crosses a runtime boundary (HTTP handler, UDS handler, DB call, subprocess spawn, network call).
Never call context.Background() outside main or a focused test. Caller-supplied context is the rule.
External HTTP calls require an explicit timeout. http.DefaultClient is forbidden (also enforced by agh-cleanup-failure-paths).

Step 4: Apply Type Discipline

Every new exported type that satisfies an interface gets a compile-time assertion: var _ Interface = (*Type)(nil) adjacent to the type definition. Reviewers will block missing assertions.
Replace interface{} / any with the concrete type whenever the type is known statically.
No reflection without a written performance justification.
No defensive nil-checks after make(...). Lint flags if x == nil after make as unreachable.

Step 5: Apply Configuration Discipline

Never hardcode operational values. Pull from TOML config (internal/config) or expose via functional options (NewManager(opts ...Option)).
Disable / zero-value semantics must be explicit — document whether 0 means "off" or "use default".
Resolution chains (e.g., env → flag → config → default) are documented in code as ordered fallbacks ending in an actionable error.
Config lifecycle is part of feature lifecycle: any feature that adds/changes/removes config updates the struct, defaults, validation, examples, config.toml docs, and tests in the same change.

Step 6: Apply CLI Boundary Discipline

Distinguish "flag not set" from "flag set to zero value" via cmd.Flags().Changed(name) (Cobra) or equivalent. Silently ignoring an explicit flag is a bug.
Trim and drop empty entries from string-slice CLI inputs (capabilities, IDs, tags, paths) before sending to the daemon. Whitespace-only strings must not surface as "validation problems".
Stable -o json / -o jsonl are compatibility contracts — do not change their shape without a contract update.

Step 7: Apply Concurrency Discipline

Every goroutine has explicit ownership and shutdown via context.Context cancellation.
No fire-and-forget goroutines. Track with sync.WaitGroup (or equivalent owner-side primitive) and join on shutdown.
Long-running loops use select { case <-ctx.Done(): return; case ... }.
Prefer channels over shared memory with mutexes when practical. sync.RWMutex for read-heavy state, sync.Mutex for write-heavy.
No time.Sleep() in orchestration paths — use timers, tickers, or context deadlines.
Goroutines spawned by internal/session/manager_*.go MUST be tracked by a Manager-owned WaitGroup and joined in Manager shutdown. Never put goroutine-owned channels in a struct field that another goroutine mutates — use a per-run handle.
Subprocess managed-stop respects ctx.Done() between Shutdown and Wait. Wrap proc.Wait() in select { case <-proc.Done(): case <-ctx.Done(): }. Process-group signaling helpers live in internal/procutil.

Step 8: Apply Comment Discipline

Default to writing no comments. Identifiers carry the WHAT.
Comments capture WHY when non-obvious: hidden constraints, invariants, workarounds for a specific bug, behavior that would surprise a reader.
Never reference the current task, fix, callers, or issue number in a comment ("used by X", "added for the Y flow", "handles the case from issue #123"). Those rot — they belong in the PR description.
No multi-paragraph docstrings. One short line max.

Step 9: Pre-Commit Validation

Run make lint for the affected package — zero tolerance for golangci-lint findings.
Run make verify (fmt → lint → test → boundaries → build) before declaring the edit complete.
For race-sensitive packages (internal/session, internal/acp, internal/hooks, internal/subprocess, internal/resources), reproduce CI locally with act workflow_dispatch -W .github/workflows/ci.yml -j verify --container-architecture linux/amd64 before claiming success.

Error Handling

Existing file already violates the rules: fix what the current edit touches; flag the rest as pre-existing tech debt in the task body. Do not silently expand scope.
errors.Is / errors.As is impossible because the dependency returns a string: wrap once at the boundary in a typed error of yours; downstream code matches on your typed error.
Reflection genuinely required (codegen, decoder): keep a written justification adjacent to the reflection call. Lint exception requires a //nolint: directive with a reason.
panic shows up in seemingly-production code: confirm whether the path is reachable post-main. If it is, replace with explicit error return; if it is genuinely unreachable, mark with // unreachable: ... and prefer panic("invariant: ...") over log.Fatal.
CLI command silently ignores a flag: verify with cmd.Flags().Changed(name); if the flag is meaningfully optional, document the resolution chain and emit an explicit slog debug line when the default is taken.

related-skills.json

same repository

agh.md

from "compozy/agh"

AGH runtime and contribution guide. Use for sessions, agents, native tools, skills, memory, network, tasks, capabilities, bundles, QA, docs, and repo work. Do not use for unrelated projects.

2026-05-31127

autoreview.md

from "compozy/agh"

Auto Review closeout. Codex review is the default when no engine is set and is the recommended reviewer.

2026-05-27127

cy-codex-loop.md

from "compozy/agh"

Drives end-to-end execution of a Compozy techspec across many agent restarts by detecting the current phase from state.yaml plus .compozy/tasks/<slug>/, then activating the correct cy-* skill chain or the Compozy -> Claude Opus delegation lane for one iteration before stopping. Each Phase B iteration ends with an atomic checkpoint commit so every completed task or slice becomes a restorable git snapshot. Use when running a Compozy techspec under the codex-loop-plugin in goal mode, or when manually iterating through tasks, qa-report, and qa-execution with persistent memory and state. Do not use for one-off tasks without a .compozy/tasks/<slug>/ directory, for techspec authoring (use cy-create-techspec), or for any work that does not require iteration tracking across agent restarts.

2026-05-22127

cy-impl-peer-review.md

from "compozy/agh"

Runs an optional cross-LLM peer review of an implemented change via compozy exec --ide claude --model opus --reasoning-effort xhigh and requires the reviewer to write a scoped Markdown findings artifact for user-directed remediation. Use after any implementation pass (feature, bug fix, refactor) when the user explicitly asks for an external Opus review of the diff before commit or PR. Do not use for TechSpec review (use cy-spec-peer-review), automatic remediation, batched provider review fetching (use cy-fix-reviews), manual self-review without an external LLM (use cy-review-round), or auto-looped review cycles.

2026-05-22127

cy-spec-peer-review.md

from "compozy/agh"

Runs an optional cross-LLM peer review of a TechSpec via compozy exec --ide claude --model opus --reasoning-effort xhigh and requires the reviewer to write a scoped Markdown findings artifact for user-directed incorporation. Use when a TechSpec draft has already been approved by the user and they want an external review round, especially for autonomy/network/memory-impacting designs. Do not use for PRDs, automatic approval gates, code review batches, or auto-looped review cycles.

2026-05-22127

qa-execution.md

from "compozy/agh"

Executes real-user QA sessions through public interfaces using personas, journeys, exploratory charters, test tours, edge-case probes, CFR checks, and browser evidence. Reads qa-report artifacts from <qa-output-path>/qa/ when present, captures issues/screenshots/reports under the same output tree, and classifies bugs by user impact. Use when validating a release candidate, migration, refactor, or user-facing change against production-like behavior. Do not use for AI implementation audits, task-status reconciliation, CI gate runs, integration/security/performance templates, or flaky-test triage; use agent-output-audit for those.

2026-05-14127

package.json

"author": "compozy"

"repository": "compozy/agh"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name	agh-code-guidelines
description	Enforces AGH Go code style and concurrency patterns before writing or editing any production Go file: error wrapping with %w, errors.Is/As only (no strings.Contains on err.Error), no underscore-discarded errors, slog over log/fmt, context.Context as first arg, compile-time interface assertions, no hardcoded config, CLI flag presence detection, whitespace normalization at CLI boundary, no comments restating WHAT, goroutine ownership and shutdown via context, no fire-and-forget, no time.Sleep in orchestration. Use whenever creating or modifying any .go file under cmd/ or internal/ that is not a test file. Do not use for _test.go (use agh-test-conventions), schema migrations (use agh-schema-migration), or contract changes (use agh-contract-codegen-coship).
trigger	implicit

AGH Code Guidelines

Procedures

Step 1: Identify the Edit Surface

Confirm the target is a production Go file (cmd/** or internal/**, not *_test.go).
Read references/coding-style.md for the canonical style rules.
Read references/concurrency-patterns.md for the canonical concurrency rules.

Step 2: Apply Error Discipline

Wrap every error with context: fmt.Errorf("operation: %w", err). The %w verb is mandatory when the caller may need to match the cause.
Match errors with errors.Is and errors.As exclusively. strings.Contains(err.Error(), ...) is a blocking violation — replace with sentinel errors or typed errors.
Never ignore an error with _. Either handle it or write a one-line justification comment explaining why the error is impossible or irrelevant.
No panic() or log.Fatal() in production paths. The only legitimate use is unrecoverable startup failure in main.

Step 3: Apply Logging and Context Discipline

Use log/slog for every operational log line. log.Printf, fmt.Println, fmt.Printf are forbidden in production paths.
Pass context.Context as the first argument to any function that crosses a runtime boundary (HTTP handler, UDS handler, DB call, subprocess spawn, network call).
Never call context.Background() outside main or a focused test. Caller-supplied context is the rule.
External HTTP calls require an explicit timeout. http.DefaultClient is forbidden (also enforced by agh-cleanup-failure-paths).

Step 4: Apply Type Discipline

Every new exported type that satisfies an interface gets a compile-time assertion: var _ Interface = (*Type)(nil) adjacent to the type definition. Reviewers will block missing assertions.
Replace interface{} / any with the concrete type whenever the type is known statically.
No reflection without a written performance justification.
No defensive nil-checks after make(...). Lint flags if x == nil after make as unreachable.

Step 5: Apply Configuration Discipline

Never hardcode operational values. Pull from TOML config (internal/config) or expose via functional options (NewManager(opts ...Option)).
Disable / zero-value semantics must be explicit — document whether 0 means "off" or "use default".
Resolution chains (e.g., env → flag → config → default) are documented in code as ordered fallbacks ending in an actionable error.
Config lifecycle is part of feature lifecycle: any feature that adds/changes/removes config updates the struct, defaults, validation, examples, config.toml docs, and tests in the same change.

Step 6: Apply CLI Boundary Discipline

Distinguish "flag not set" from "flag set to zero value" via cmd.Flags().Changed(name) (Cobra) or equivalent. Silently ignoring an explicit flag is a bug.
Trim and drop empty entries from string-slice CLI inputs (capabilities, IDs, tags, paths) before sending to the daemon. Whitespace-only strings must not surface as "validation problems".
Stable -o json / -o jsonl are compatibility contracts — do not change their shape without a contract update.

Step 7: Apply Concurrency Discipline

Every goroutine has explicit ownership and shutdown via context.Context cancellation.
No fire-and-forget goroutines. Track with sync.WaitGroup (or equivalent owner-side primitive) and join on shutdown.
Long-running loops use select { case <-ctx.Done(): return; case ... }.
Prefer channels over shared memory with mutexes when practical. sync.RWMutex for read-heavy state, sync.Mutex for write-heavy.
No time.Sleep() in orchestration paths — use timers, tickers, or context deadlines.
Goroutines spawned by internal/session/manager_*.go MUST be tracked by a Manager-owned WaitGroup and joined in Manager shutdown. Never put goroutine-owned channels in a struct field that another goroutine mutates — use a per-run handle.
Subprocess managed-stop respects ctx.Done() between Shutdown and Wait. Wrap proc.Wait() in select { case <-proc.Done(): case <-ctx.Done(): }. Process-group signaling helpers live in internal/procutil.

Step 8: Apply Comment Discipline

Default to writing no comments. Identifiers carry the WHAT.
Comments capture WHY when non-obvious: hidden constraints, invariants, workarounds for a specific bug, behavior that would surprise a reader.
Never reference the current task, fix, callers, or issue number in a comment ("used by X", "added for the Y flow", "handles the case from issue #123"). Those rot — they belong in the PR description.
No multi-paragraph docstrings. One short line max.

Step 9: Pre-Commit Validation

Run make lint for the affected package — zero tolerance for golangci-lint findings.
Run make verify (fmt → lint → test → boundaries → build) before declaring the edit complete.
For race-sensitive packages (internal/session, internal/acp, internal/hooks, internal/subprocess, internal/resources), reproduce CI locally with act workflow_dispatch -W .github/workflows/ci.yml -j verify --container-architecture linux/amd64 before claiming success.

Error Handling

Existing file already violates the rules: fix what the current edit touches; flag the rest as pre-existing tech debt in the task body. Do not silently expand scope.
errors.Is / errors.As is impossible because the dependency returns a string: wrap once at the boundary in a typed error of yours; downstream code matches on your typed error.
Reflection genuinely required (codegen, decoder): keep a written justification adjacent to the reflection call. Lint exception requires a //nolint: directive with a reason.
panic shows up in seemingly-production code: confirm whether the path is reachable post-main. If it is, replace with explicit error return; if it is genuinely unreachable, mark with // unreachable: ... and prefer panic("invariant: ...") over log.Fatal.
CLI command silently ignores a flag: verify with cmd.Flags().Changed(name); if the flag is meaningfully optional, document the resolution chain and emit an explicit slog debug line when the default is taken.

agh-code-guidelines

AGH Code Guidelines

Procedures

Error Handling

More from this repository

More from this repository

AGH Code Guidelines

Procedures

Error Handling