| name | code-quality |
| description | Authors and reviews code for low cognitive complexity, readability, and long-term maintainability. Applies guard clauses, early returns, single-responsibility functions, type-driven design (illegal states unrepresentable, branded primitives, discriminated unions), schema-first validation with type inference (Zod / Pydantic), single source of truth for union-type metadata, functional core + imperative shell, total functions, idempotency for retryable ops, money in minor units, and neighbour-pattern symmetry. Pairs with `tdd` for new code (drives RED-GREEN-REFACTOR; rules apply in GREEN/REFACTOR). Use during PR review, after writing new code, the GREEN/REFACTOR phases of TDD, or when asked to "improve quality", "make this readable", "reduce complexity", "deduplicate", "clean this up", or "/code-quality". Citations and research grounding in `references/citations.md`.
|
| disable-model-invocation | true |
| license | MIT |
| metadata | {"author":"mthines","version":"1.3.0","workflow_type":"advisory","tags":["code-quality","cognitive-complexity","maintainability","single-source-of-truth","type-driven-design","functional-core","testability","idempotency","api-design","tdd-companion"]} |
Code Quality Skill
Write code that is easy to review, understand, and change. Optimize for the
next developer's mental load before optimizing for machine performance, because
readable code is cheaper to change, debug, and trust โ and most performance
wins come from algorithmic choices and profiling, not micro-optimizations.
The three quality axes this skill targets, in priority order:
- Readability โ a reader understands the code top-to-bottom on first pass.
- Maintainability โ the next variant of a concept is a one-file, one-edit
change; existing utilities are reused rather than re-invented; one concept
has one canonical home.
- Pragmatic performance โ algorithmic wins by default, micro-optimizations
only when a profiler points at them.
This skill applies in two modes:
- Authoring mode โ when writing new code (e.g., GREEN phase of TDD, new
features). Apply principles inline so the first version already meets the
bar.
- Review mode โ when refactoring, reviewing PRs, or being asked to
"clean this up". Diagnose against the rules and propose targeted changes.
Detect the mode from context. If the user says "review" or "audit" or
references existing code, use review mode. Otherwise default to authoring
mode and apply principles silently while you write.
The Core Bet
Cognitive complexity โ how hard code is to understand โ is the single best
proxy for long-term maintainability. SonarSource's research showed that
cyclomatic complexity (path counting) misses what actually hurts humans:
nesting, broken linear flow, and decisions that compound. So the rules below
target cognitive load, not theoretical complexity scores. Full citations
(SonarSource, Clean Code, Knuth, Alexis King, Gary Bernhardt) and the
research grounding for each rule live in
references/citations.md.
When in doubt, the heuristic is: can a reader understand this function
top-to-bottom on one pass without backtracking? If yes, ship it. If they
have to scroll, jump, or hold a stack of conditions in their head, fix it.
The maintainability counterpart: if I add the next obvious variant of this
concept, how many files do I have to edit, and will the type system catch me
if I miss one? One file with full type coverage is excellent; four
hand-synchronised maps in four files is shotgun surgery โ fix the structure
before adding the variant. See rules/maintainability.md.
Quick Reference (load these patterns into working memory)
| Smell | Refactor To | Why |
|---|
Nested if (3+ levels) | Guard clauses + early return | Each indent adds mental load; flat is easier |
| Long function (50+ lines, multiple responsibilities) | Extract by intent, name by what not how | One function = one reason to change |
Cryptic name (d, tmp, data) | Domain noun (priceDifference, pendingOrders) | Names ARE documentation |
| Boolean parameter | Two named functions or an enum | send(true, false, true) is unreadable |
| Comment explaining WHAT | Rename or extract function | Comments rot; names get refactored with code |
| Comment explaining WHY (non-obvious constraint) | Keep it | The one comment that earns its place |
| Defensive checks for impossible states | Delete | Trust your callers; validate at boundaries |
| Flag/option cluster (4+ params) | Object parameter or builder | Working memory holds ~4 chunks |
else after return/throw | Drop the else | Linear flow beats branching |
| Magic number/string | Named constant | Future-you will not remember what 7 meant |
Parallel maps over the same union (LABELS, COLORS, ICONS keyed by Status) | One Record<Status, { label, color, icon }> | Adding a variant becomes one edit, not N |
| Reimplementing a helper that already exists | Search first; use the existing one | Two implementations drift; bugs get fixed in one copy only |
if/else if chain dispatching on a value | Lookup table or single source-of-truth record | Data structure beats control flow; easy to extend |
Same constant (MAX_RETRIES, status strings) duplicated across files | Hoist to one shared module | One concept, one home |
| Adding a new variant requires editing 4+ files | Consolidate before adding the variant | Shotgun surgery compounds with every variant |
Separate type User = {...} and userSchema = z.object({...}) for the same shape | One schema; type User = z.infer<typeof UserSchema> | Two declarations drift; one cannot |
| Re-validating an already-parsed value deep in the stack | Parse once at the boundary; trust the type internally | Validation is a boundary concern, not a per-call concern |
| Splitting every nested object into its own sub-schema "for cleanliness" | Keep flat unless the sub-shape is reused or has its own boundary | Premature decomposition; over-engineering |
| Function mixes orchestration sentences with low-level mechanics | Extract by abstraction level (R16) | Readers stop at the level they care about |
| Runtime check enforcing "these two fields can't both be set" | Discriminated union (R15) | Compiler enforces the invariant; runtime check disappears |
Raw string for Email, UserId, OrderId | Brand the type via the schema (R11) | Mixing IDs becomes a compile error |
any or unjustified cast silencing the type checker | Schema parse, narrowed unknown, or // because: comment (R17) | Unjustified any is the shape most type bugs take |
Function calls Date.now() / Math.random() directly | Inject the clock / RNG (R9) | Pure functions are testable; impure functions are flaky |
Function throws for "not found" or returns sentinels (-1, "") | Total-ise: return null or Result<T, E> (R10) | Total functions are testable exhaustively |
Every error throws the same Error with a parsed message | Discriminated AppError union (R12) | Structured fields beat string parsing |
| Importing a module triggers a side effect | Factory: createX(...) (R20) | Tests stop being accidentally integration tests |
| Operation that may be retried is not safe to invoke twice | Idempotency key, upsert, or right HTTP method (R18) | Retries corrupt state otherwise |
Money stored as number | Integer minor units or decimal library (R19) | Floats cannot represent decimal currency exactly |
Floats compared with === | Compare with epsilon, or use integer ticks | 0.1 + 0.2 !== 0.3 |
await in a for loop where Promise.all was meant | Choose serial or parallel consciously | Accidental serialisation is a perf bug |
Every open without a paired close | try/finally or using | Resource leaks compound silently |
| New file does not match neighbouring files' patterns | Read 2โ3 neighbours and mimic them | Outlier code forces context-switching for every reader |
| Refactor PR mixed with feature PR | Split into two PRs | Mixed PRs get rubber-stamped or rejected on the wrong grounds |
| Helpers at the top of the file, public function 200 lines down | Public surface first; helpers below in call order | Files read top to bottom |
Reaching a.b.c.d.method() to act on a | Tell, don't ask: put the operation on a | Callers shouldn't walk private structure |
Procedure
Authoring Mode
While writing code, apply these in order of impact:
- Compose with the
tdd skill for new code โ when authoring a new
function, module, or behaviour from scratch, invoke the tdd skill
(Skill('tdd')) to drive the implementation through a strict
RED โ GREEN โ REFACTOR cycle. Apply the rules below in GREEN and
REFACTOR. Skip the handoff for trivial edits (typos, config tweaks),
refactors of existing code (no new behaviour), or when the user
explicitly opts out. See rules/testability.md for the integration.
- Match the neighbours โ before writing a new file in an existing
module, read 2โ3 sibling files and mimic their structure (folder
layout, error shape, import order, test style, naming convention).
Outlier code forces every reader to context-switch. See
rules/collaboration.md ยง1.
- Reuse before creating โ before writing a helper, type, constant,
formatter, or hook, search the codebase for one that already exists.
Grep the domain noun and a synonym; check neighbour files; check the
standard library and existing dependencies. A second implementation of
the same concept is worse than the first. See
rules/maintainability.md ยง1.
- Naming first โ before writing the body, name the function and its
parameters so they describe what it does and what it returns. If
you can't name it crisply, the responsibility is unclear; rethink the
boundary, not the implementation.
- Design the type before the body โ model the inputs and outputs so
illegal states cannot be represented (discriminated unions, branded
primitives, total return types,
Result<T, E> for expected failures).
The cheapest place to catch a bug is the place the bug cannot exist.
See rules/abstraction.md ยง2 and rules/api-design.md ยง4โยง5.
- Guard clauses up top โ handle errors, edge cases, and early-exit
conditions at the start of the function. Reserve the indented body for
the happy path.
- One job per function, one level of abstraction per body โ if you
find yourself writing "and" in a docstring or mixing orchestration
sentences with low-level mechanics, split. See
rules/abstraction.md ยง1.
- Limit nesting to 2 levels โ beyond that, extract a helper or
invert a condition.
- Keep parameter count low (โค3 ideally, โค5 hard cap) โ past that,
group into an object/struct.
- One source of truth for union-type metadata โ when a union has
associated data (labels, colours, icons, flags), use one record keyed
by the union with structured values, not N parallel maps. Adding a
variant must be a single edit. See
rules/maintainability.md ยง2.
- Push impurity outward โ keep decision logic pure; push I/O, time,
randomness, and ID generation to the edges. Inject the clock / RNG /
fetcher; do not call them directly from core logic. See
rules/architecture.md ยง3 and rules/correctness.md ยง7.
- Defer generic abstraction, not reuse โ wait for a third real
use case before extracting a flag-driven generic helper. Always reuse
utilities that already exist, and always consolidate parallel maps
over the same union the moment they appear โ those are not
"premature".
Cross-references: rules/cognitive-complexity.md and
rules/control-flow.md for 6 and 8; rules/naming.md for 4;
rules/functions.md for 7 and 9; rules/maintainability.md for 3, 10,
and 12; rules/abstraction.md, rules/architecture.md,
rules/api-design.md, rules/correctness.md, rules/testability.md,
rules/collaboration.md, and rules/refactor-recipes.md for the deeper
patterns.
Review Mode
When asked to review or refactor:
- Read all of the target code first โ don't critique what you
haven't read.
- Score by cognitive load, not style โ pick the function that took
you the longest to understand, that's your highest-priority refactor.
- Score by change footprint โ for each new concept (a union, a
constant, a piece of metadata), count how many files would need to
change if a new variant were added. Anything beyond ~3 files, or
that the type system cannot enforce, is a maintainability finding.
- Check for existing utilities โ grep for similar helpers,
formatters, or constants that the new code could have reused instead
of duplicating.
- Cite recipes by name โ use
rules/refactor-recipes.md so reviews
read as "apply R1 (Consolidate Parallel Maps)" rather than free-form
prose.
- Suggest changes with the diff inline โ don't just say "this is
complex"; show the before/after.
- Prioritize by impact โ fix the thing that hurts readers and
future maintainers most, not the thing that's easiest to nitpick.
Ignore stylistic preferences if a linter would catch them.
- Stop when good enough โ perfect is a moving target. If the
function reads top-to-bottom, names match the domain, and the change
footprint for the next variant is small, leave it.
Load rules/review-checklist.md for the structured review pass.
Rule Files
Load only what's relevant to the code in front of you. Reading every rule
file every time is wasted context.
| When the code involves... | Load |
|---|
| Conditionals, branching, nesting | rules/control-flow.md |
| Long or multi-purpose functions | rules/functions.md |
| Variable, function, class names | rules/naming.md |
| Comments, docstrings, doc | rules/comments.md |
| Performance concerns or hot paths | rules/performance.md |
| Error handling, validation, defensive code, schema-first validation, Zod / Pydantic, inferring types from schemas | rules/error-handling.md |
| Reviewing existing code | rules/review-checklist.md |
| Cognitive complexity scoring | rules/cognitive-complexity.md |
| Union types with associated data, parallel maps, duplicated constants, "where should this live", reuse decisions | rules/maintainability.md |
Abstraction levels, type-driven design, illegal states unrepresentable, branded primitives, generics, any/cast discipline | rules/abstraction.md |
| Module boundaries, public surface, dependency direction, functional core / imperative shell, DTO โ domain โ persistence, immutability defaults, side-effecting imports | rules/architecture.md |
| Function signatures, parameter ordering, total functions, modeling absence, designing the error type system, tell-don't-ask, file reading order | rules/api-design.md |
| Idempotency, money / decimals / floats, dates and time, identifiers, encoding, determinism, assertions, async / concurrency, resource management | rules/correctness.md |
Hard-to-test code, dependency injection of clock / RNG / IDs, when to invoke the tdd skill | rules/testability.md |
| PR scope, neighbour-pattern symmetry, migration & evolution, working with legacy code, diff hygiene | rules/collaboration.md |
| Naming a refactor in review output (R1 Consolidate Parallel Maps, R6 Replace Type Declaration with Inferred Type, etc.) | rules/refactor-recipes.md |
Critical Rules (apply always)
These are non-negotiable because they reflect human cognitive limits, not
style preferences.
1. Linear flow beats branching
A function that flows top-to-bottom โ guards, then logic, then return โ is
always easier than one with deep branching. If you have if/else if/else
spanning 30 lines, restructure.
2. Names carry the load
Code is read 10ร more than it's written. A 30-character name that explains
intent saves more time than the keystrokes it costs to type. Conversely,
single-letter names are fine for tight scopes (loop indices, math
formulas) where the meaning is unambiguous from context.
3. Functions describe one thing
The function name should be a complete description of what it does. If the
honest name is validateAndPersistAndNotifyUser, you have three functions.
4. Don't pre-build for futures that haven't arrived
Configuration parameters, abstraction layers, and feature flags for
hypothetical needs all add cognitive load today with no benefit until the
hypothetical arrives โ and most never do. Build for the case in front of
you; refactor when the second case shows up.
5. Comments explain WHY, never WHAT
A comment that restates the code is noise. A comment that captures a
non-obvious constraint, a subtle invariant, or "we tried X and it broke
because Y" is gold. If you're tempted to write a comment, first try to
rename or extract until the code says it itself.
6. Optimize after measuring
Knuth: "premature optimization is the root of all evil." Until a profiler
points at a hot path, prefer the readable version. Only ~3% of code drives
performance; the other 97% should be optimized for the human reader.
7. Validate at boundaries, trust internally
Validate user input, external API responses, and untrusted data at the
edge. Don't add defensive null checks throughout internal code โ they hide
real bugs by silently swallowing impossible states. If a value can't be
null at this point in the code, don't pretend it can.
8. Reuse before creating
Before writing a helper, type, constant, or formatter, search the codebase
for one that already exists. A second implementation of the same concept
is worse than the first โ behaviours drift, bugs get fixed in only one
copy, and the next reader does not know which one is canonical. Reusing
existing code is never premature.
9. One source of truth for union-type metadata
When a union or enum has associated data (labels, colours, icons, flags,
defaults), put it in one record keyed by the union with structured values
โ not in N parallel maps. Adding a new variant must be a single edit, and
the type system must catch you if you miss a field. Four hand-synchronised
maps over OrderStatus are a bug waiting to ship.
10. Minimise the change footprint
A maintainable change touches few files, all type-checked. Before adding a
new variant of a concept, ask: "if I add the next one, how many places do
I need to edit, and will the compiler tell me if I miss one?" If the
answer is "many" or "no", restructure first โ usually by consolidating
parallel maps, hoisting a duplicated constant, or co-locating data with
the operations on it. See rules/maintainability.md ยง3.
11. Make illegal states unrepresentable
The cheapest place to catch a bug is the place the bug cannot exist. Lift
constraints into the type system: discriminated unions for state machines,
exhaustive switch with assertNever, branded primitives, refined types
(NonEmptyArray<T>). Runtime guards that the type system could enforce
are noise that drifts. See rules/abstraction.md ยง2.
12. Pure core, impure shell
Decision logic is pure: no I/O, no time, no randomness, no global state.
Side effects live in a thin shell at the edges. Pure code is the cheapest
to test and reason about; impure code is unavoidable but should be small
enough to verify by integration tests. Inject the clock, RNG, fetcher,
and ID generator rather than calling them directly. See
rules/architecture.md ยง3 and rules/correctness.md ยง7.
13. Total functions over throw-for-missing
A function is total when every input has a defined output. Return null
for absent-by-design and Result<T, E> for expected failures; reserve
throw for programmer errors and unexpected I/O failures. Sentinels
(-1, "", 0) lie โ every sentinel collides with a real value the
next caller will hit. See rules/api-design.md ยง4.
14. Test-first for new code
When authoring a new function, module, or behaviour, invoke the tdd
skill (Skill('tdd')) to drive the implementation through a strict
RED โ GREEN โ REFACTOR cycle. Apply the rules in this skill silently in
GREEN; apply them explicitly in REFACTOR. Skip the handoff only for
trivial edits, refactors of existing code, or when the user opts out.
See rules/testability.md.
When Things Conflict
These principles will sometimes pull against each other. Defaults:
- Readability vs. performance โ readability wins until a profile says
otherwise.
- DRY vs. clarity โ clarity wins for code shapes that happen to look
alike: two slightly-different 5-line blocks beat one 12-line generic
helper that takes flags. But DRY wins for the same concept โ
duplicated constants, parallel maps over the same union, and
re-implementations of an existing utility must be consolidated. The test
is meaning, not appearance: if the two pieces must always change
together to stay correct, they are one thing; if they merely share a
shape, they are two.
- Reuse vs. premature abstraction โ reuse existing utilities always;
extract a new generic helper only on the third real caller. See the
decision tree in
rules/maintainability.md ยง4.
- Short name vs. clear name โ clear name.
userPendingApproval beats
usr.
- Guard clause vs. single-return-style โ guard clauses, unless the
language/team strongly enforces single-return (e.g., some functional
styles).
- Co-location vs. layered folders โ co-locate the type, its metadata,
and the functions that operate on it. A reader who lands on a union
should not have to grep across
types/, constants/, and utils/ to
understand it.
Output Contract
When invoked in review mode, structure findings as:
## Code Quality Review: [target]
### High Impact (fix these)
- [file:line] [issue] โ [proposed change, citing recipe ID where applicable: R1, R6, etc.]
### Medium Impact (consider)
- [file:line] [issue] โ [proposed change]
### Low Impact / Style (optional)
- [file:line] [issue]
### Maintainability findings
- [file:line] [duplicated concept / parallel maps / shotgun-surgery risk] โ [proposed consolidation, e.g., R1 Consolidate Parallel Maps]
- [estimated change footprint for the next obvious variant: N files, type-checked? yes/no]
### Correctness findings (when relevant)
- [file:line] [idempotency / money / dates / determinism / async / resources]
- [proposed fix, citing recipe ID]
### Testability findings (when relevant)
- [file:line] [hard-to-test surface, missing injection, coupled to global state]
- [proposed fix, e.g., R9 Inject the Clock / RNG / IDs]
### What's already good
- [brief notes on what to preserve]
The Maintainability findings section is required when the reviewed code
introduces or extends union types, enums, shared constants, or new
utilities. Correctness and Testability sections are required when the
reviewed code involves retryable operations, money, dates, async I/O,
resource handles, or non-trivial pure logic. Skip them when not
applicable โ do not manufacture findings to look thorough.
When invoked in authoring mode, just write the code (or hand off to the
tdd skill first for new code). Apply the principles silently. Don't
narrate every guard clause โ the user will see clean code in the diff.
