Run any Skill in Manus with one click

$pwd:

lite-code-quality

Name: Lite Code Quality
Author: mindspore-ai

// Code formatting, naming conventions, security checks and CI verification. Use when running clang-format, checking code style, writing secure code for model parsing, reviewing code quality, or configuring CI/Jenkins pipelines.

Run Skill in Manus

$ git log --oneline --stat

stars:5

forks:1

updated:April 2, 2026 at 02:57

SKILL.md

readonly

name	lite-code-quality
description	Code formatting, naming conventions, security checks and CI verification. Use when running clang-format, checking code style, writing secure code for model parsing, reviewing code quality, or configuring CI/Jenkins pipelines.
paths	[".clang-format","scripts/check_clang_format.sh","scripts/format_source_code.sh","scripts/pre-push",".jenkins/**"]

MindSpore Lite Code Standards and Security Checks

Formatting Standards

clang-format

The project uses .clang-format for C/C++ formatting. Core rules:

Rule	Setting
Indent width	2 spaces
Brace style	Allman (new line)
Line width limit	120 characters
Pointer/reference alignment	Left (`int *p`)
include sorting	Grouped by angle brackets/project

Formatting Commands

bash scripts/format_source_code.sh       # Format all source files
bash scripts/check_clang_format.sh       # Check formatting (no modifications)
clang-format -i path/to/file.cc          # Format single file

CI Checks

Jenkins CI

.jenkins/ defines CI pipelines:

.jenkins/
  check/        # Code check rules
  rules/        # Build rules
  task/         # Build task definitions

CI check items:

clang-format format check
Compilation warnings (-Werror enabled in CI)
Unit tests
Model benchmark regression tests

Local pre-push Hook

scripts/pre-push runs checks before pushing:

cp scripts/pre-push .git/hooks/pre-push
chmod +x .git/hooks/pre-push

Checks: clang-format, blocked branches, commit message format.

Naming Conventions

File Naming

Type	Rule	Example
Kernel implementation	`operator_datatype.cc`	`conv2d_fp32.cc`, `matmul_int8.cc`
NNACL C files	`operator_datatype.c`	`conv_fp32.c`, `matmul_fp16.c`
Header files	Corresponds to implementation	`conv2d_fp32.h`
Test files	`test_module.cc` or `module_test.cc`	`test_conv2d.cc`

Class Naming

// PascalCase
class LiteKernel;
class ModelImpl;
class AscendDeviceInfo;

// Kernel class: operator + architecture + data type
class Conv2DCPUKernel;
class MatMulOpenCLKernel;

Function Naming

// Public API: PascalCase
Model::Build();
Context::SetThreadNum();

// Internal: snake_case
int init_executor();
void free_buffer();

// NNACL pure C: snake_case + module prefix
int NnaclConvFp32();

Variable Naming

int thread_num;                      // local: snake_case
class LiteKernel { int thread_num_; }; // member: trailing underscore
const int kMaxThreadNum = 8;          // constant: k + PascalCase
enum class DataType : int {            // enum: k + PascalCase
  kFloat32 = 0,
  kFloat16 = 1,
};

Security Checks

Input Validation

// FlatBuffers boundary check
const auto *model = flatbuffers::GetMutableRoot<Model>(buffer);
if (!model || !model->Verify(flatbuffers::Verifier(buffer, size))) {
  return RET_ERROR;
}

// Tensor shape validation
if (input_tensor.Shape().size() != expected_dims) {
  MS_LOG(ERROR) << "Invalid input shape";
  return RET_ERROR;
}

Memory Safety

auto tensor = std::make_shared<Tensor>();               // Smart pointers
auto buffer = std::unique_ptr<float[]>(new float[size]);

if (input_size > buffer_capacity) { return RET_ERROR; } // Buffer overflow
size_t total = num_elements * sizeof(float);
if (total / sizeof(float) != num_elements) { return RET_ERROR; } // Integer overflow

Common Security Risks

Model file parsing -- Treat as untrusted input. FlatBuffers Verify() is first defense.
Uninitialized memory -- Always zero-initialize: new float[size]() or std::vector<float>(size, 0.0f).
Race conditions -- Model objects must not be shared across threads. Context is read-only after Build.
Operator security -- Check divide-by-zero, numeric overflow, dimension validity.

Dependency Security

third_party/
  securec/        # Security utility library
  eigen/          # Linear algebra (with patches)
  protobuf/       # Protobuf 3.x (with patches)
  ...

Monitor CVE advisories for third-party dependencies
Update patches when upgrading dependencies

Code Review Checklist

clang-format format check passes
No compilation warnings (-Werror)
New code has corresponding unit tests
Error codes use mindspore::StatusCode not custom values
Logging uses MS_LOG macros not printf/cout
External inputs have validation checks
Memory allocations have failure handling
Thread safety: no shared mutable state or properly locked

related-skills.json

same repository

lite-cloud-side-infer.md

from "mindspore-ai/mindspore-lite"

Cloud-side inference with ExtendRT and Ascend backends. Use for server-side inference, Ascend 310/910 deployment, ModelParallelRunner for concurrent serving, ModelGroup for weight sharing, distributed inference, or .mindir format loading.

2026-04-165

lite-converter.md

from "mindspore-ai/mindspore-lite"

Model conversion pipeline, parser development, optimization passes and quantization. Use when converting models to .ms, writing parser code, implementing optimizer passes, or configuring quantization.

2026-04-165

open-model-convert-deploy.md

from "mindspore-ai/mindspore-lite"

实现开源模型从PyTorch→ONNX→MindIR→MindSpore Lite的端到端导出/验证/部署/性能评测。用户要求模型拆分导出、精度对齐、MindIR转换或部署工具链时调用。

2026-04-145

lite-build.md

from "mindspore-ai/mindspore-lite"

Build configuration, CMake options, cross-compilation and packaging. Use when building MindSpore Lite, configuring CMake, cross-compiling for ARM/iOS/MCU, packaging release archives, or troubleshooting build errors.

2026-04-025

lite-debug-test.md

from "mindspore-ai/mindspore-lite"

Debugging, unit testing, benchmarking and performance analysis. Use when running gtest, benchmark tools, profiling latency or accuracy, diagnosing operator precision issues, delegate fallback, or memory leaks.

2026-04-025

lite-device-side-infer.md

from "mindspore-ai/mindspore-lite"

Device-side inference with LiteRT, NNACL and hardware delegates. Use for mobile/IoT inference, Android/iOS integration, NPU/GPU/CoreML delegates, Micro codegen for MCU, on-device training, or C/C++/Java/Python API usage with .ms models.

2026-04-025

package.json

"author": "mindspore-ai"

"repository": "mindspore-ai/mindspore-lite"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Software Quality Assurance Analysts and TestersComputer and Mathematical Occupations15-1253L4

name	lite-code-quality
description	Code formatting, naming conventions, security checks and CI verification. Use when running clang-format, checking code style, writing secure code for model parsing, reviewing code quality, or configuring CI/Jenkins pipelines.
paths	[".clang-format","scripts/check_clang_format.sh","scripts/format_source_code.sh","scripts/pre-push",".jenkins/**"]

MindSpore Lite Code Standards and Security Checks

Formatting Standards

clang-format

The project uses .clang-format for C/C++ formatting. Core rules:

Rule	Setting
Indent width	2 spaces
Brace style	Allman (new line)
Line width limit	120 characters
Pointer/reference alignment	Left (`int *p`)
include sorting	Grouped by angle brackets/project

Formatting Commands

bash scripts/format_source_code.sh       # Format all source files
bash scripts/check_clang_format.sh       # Check formatting (no modifications)
clang-format -i path/to/file.cc          # Format single file

CI Checks

Jenkins CI

.jenkins/ defines CI pipelines:

.jenkins/
  check/        # Code check rules
  rules/        # Build rules
  task/         # Build task definitions

CI check items:

clang-format format check
Compilation warnings (-Werror enabled in CI)
Unit tests
Model benchmark regression tests

Local pre-push Hook

scripts/pre-push runs checks before pushing:

cp scripts/pre-push .git/hooks/pre-push
chmod +x .git/hooks/pre-push

Checks: clang-format, blocked branches, commit message format.

Naming Conventions

File Naming

Type	Rule	Example
Kernel implementation	`operator_datatype.cc`	`conv2d_fp32.cc`, `matmul_int8.cc`
NNACL C files	`operator_datatype.c`	`conv_fp32.c`, `matmul_fp16.c`
Header files	Corresponds to implementation	`conv2d_fp32.h`
Test files	`test_module.cc` or `module_test.cc`	`test_conv2d.cc`

Class Naming

// PascalCase
class LiteKernel;
class ModelImpl;
class AscendDeviceInfo;

// Kernel class: operator + architecture + data type
class Conv2DCPUKernel;
class MatMulOpenCLKernel;

Function Naming

// Public API: PascalCase
Model::Build();
Context::SetThreadNum();

// Internal: snake_case
int init_executor();
void free_buffer();

// NNACL pure C: snake_case + module prefix
int NnaclConvFp32();

Variable Naming

int thread_num;                      // local: snake_case
class LiteKernel { int thread_num_; }; // member: trailing underscore
const int kMaxThreadNum = 8;          // constant: k + PascalCase
enum class DataType : int {            // enum: k + PascalCase
  kFloat32 = 0,
  kFloat16 = 1,
};

Security Checks

Input Validation

// FlatBuffers boundary check
const auto *model = flatbuffers::GetMutableRoot<Model>(buffer);
if (!model || !model->Verify(flatbuffers::Verifier(buffer, size))) {
  return RET_ERROR;
}

// Tensor shape validation
if (input_tensor.Shape().size() != expected_dims) {
  MS_LOG(ERROR) << "Invalid input shape";
  return RET_ERROR;
}

Memory Safety

auto tensor = std::make_shared<Tensor>();               // Smart pointers
auto buffer = std::unique_ptr<float[]>(new float[size]);

if (input_size > buffer_capacity) { return RET_ERROR; } // Buffer overflow
size_t total = num_elements * sizeof(float);
if (total / sizeof(float) != num_elements) { return RET_ERROR; } // Integer overflow

Common Security Risks

Model file parsing -- Treat as untrusted input. FlatBuffers Verify() is first defense.
Uninitialized memory -- Always zero-initialize: new float[size]() or std::vector<float>(size, 0.0f).
Race conditions -- Model objects must not be shared across threads. Context is read-only after Build.
Operator security -- Check divide-by-zero, numeric overflow, dimension validity.

Dependency Security

third_party/
  securec/        # Security utility library
  eigen/          # Linear algebra (with patches)
  protobuf/       # Protobuf 3.x (with patches)
  ...

Monitor CVE advisories for third-party dependencies
Update patches when upgrading dependencies

Code Review Checklist

clang-format format check passes
No compilation warnings (-Werror)
New code has corresponding unit tests
Error codes use mindspore::StatusCode not custom values
Logging uses MS_LOG macros not printf/cout
External inputs have validation checks
Memory allocations have failure handling
Thread safety: no shared mutable state or properly locked

lite-code-quality

MindSpore Lite Code Standards and Security Checks

Formatting Standards

clang-format

Formatting Commands

CI Checks

Jenkins CI

Local pre-push Hook

Naming Conventions

File Naming

Class Naming

Function Naming

Variable Naming

Security Checks

Input Validation

Memory Safety

Common Security Risks

Dependency Security

Code Review Checklist

More from this repository

More from this repository

MindSpore Lite Code Standards and Security Checks

Formatting Standards

clang-format

Formatting Commands

CI Checks

Jenkins CI

Local pre-push Hook

Naming Conventions

File Naming

Class Naming

Function Naming

Variable Naming

Security Checks

Input Validation

Memory Safety

Common Security Risks

Dependency Security

Code Review Checklist